Gitiles
Code Review Sign In
gerrit-public.fairphone.software / kernel / msm-5.4 / 4351c294b8c1028077280f761e158d167b592974
commit4351c294b8c1028077280f761e158d167b592974[log] [tgz]
authorMimi Zohar <zohar@linux.vnet.ibm.com>Wed Nov 05 07:53:55 2014 -0500
committerMimi Zohar <zohar@linux.vnet.ibm.com>Tue Jun 16 08:18:44 2015 -0400
treecc7dface0ae4de97545e26df97a42171034e9443
parent139069eff7388407f19794384c42a534d618ccd7 [diff]
ima: extend "mask" policy matching support

The current "mask" policy option matches files opened as MAY_READ,
MAY_WRITE, MAY_APPEND or MAY_EXEC.  This patch extends the "mask"
option to match files opened containing one of these modes.  For
example, "mask=^MAY_READ" would match files opened read-write.

Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
Signed-off-by: Dr. Greg Wettstein <gw@idfusion.org>
Cc: stable@vger.kernel.org
2 files changed
tree: cc7dface0ae4de97545e26df97a42171034e9443
  1. arch/
  2. block/
  3. crypto/
  4. Documentation/
  5. drivers/
  6. firmware/
  7. fs/
  8. include/
  9. init/
  10. ipc/
  11. kernel/
  12. lib/
  13. mm/
  14. net/
  15. samples/
  16. scripts/
  17. security/
  18. sound/
  19. tools/
  20. usr/
  21. virt/
  22. .gitignore
  23. .mailmap
  24. COPYING
  25. CREDITS
  26. Kbuild
  27. Kconfig
  28. MAINTAINERS
  29. Makefile
  30. README
  31. REPORTING-BUGS