linux-sg2042/security/integrity
Mimi Zohar df2c2afba4 ima: eliminate passing d_name.name to process_measurement()
Passing a pointer to the dentry name, as a parameter to
process_measurement(), causes a race condition with rename() and
is unnecessary, as the dentry name is already accessible via the
file parameter.

In the normal case, we use the full pathname as provided by
brpm->filename, bprm->interp, or ima_d_path().  Only on ima_d_path()
failure, do we fallback to using the d_name.name, which points
either to external memory or d_iname.

Reported-by: Al Viro <viro@ZenIV.linux.org.uk>
Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
Signed-off-by: James Morris <james.l.morris@oracle.com>
2013-04-17 17:20:57 -07:00
..
evm Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security 2013-02-21 08:18:12 -08:00
ima ima: eliminate passing d_name.name to process_measurement() 2013-04-17 17:20:57 -07:00
Kconfig ima: digital signature verification using asymmetric keys 2013-02-06 21:22:18 -05:00
Makefile ima: digital signature verification using asymmetric keys 2013-02-06 21:22:18 -05:00
digsig.c ima: digital signature verification using asymmetric keys 2013-02-06 21:22:18 -05:00
digsig_asymmetric.c ima: digital signature verification using asymmetric keys 2013-02-06 21:22:18 -05:00
iint.c ima: per hook cache integrity appraisal status 2013-01-22 16:10:36 -05:00
integrity.h ima: digital signature verification using asymmetric keys 2013-02-06 21:22:18 -05:00