ima: limit the number of open-writers integrity violations - kernel/linux.git

diff options

author	Mimi Zohar <zohar@linux.ibm.com>	2025-01-27 18:24:13 +0300
committer	Mimi Zohar <zohar@linux.ibm.com>	2025-03-27 19:35:51 +0300
commit	5b3cd801155f0b34b0b95942a5b057c9b8cad33e (patch)
tree	a53bd26b496d35aef749282bb519e213c2b077d4 /scripts/gdb/linux/stackdepot.py
parent	7eb172143d5508b4da468ed59ee857c6e5e01da6 (diff)
download	linux-5b3cd801155f0b34b0b95942a5b057c9b8cad33e.tar.xz

ima: limit the number of open-writers integrity violations

Each time a file in policy, that is already opened for write, is opened for read, an open-writers integrity violation audit message is emitted and a violation record is added to the IMA measurement list. This occurs even if an open-writers violation has already been recorded. Limit the number of open-writers integrity violations for an existing file open for write to one. After the existing file open for write closes (__fput), subsequent open-writers integrity violations may be emitted. Cc: stable@vger.kernel.org # applies cleanly up to linux-6.6 Tested-by: Stefan Berger <stefanb@linux.ibm.com> Reviewed-by: Petr Vorel <pvorel@suse.cz> Tested-by: Petr Vorel <pvorel@suse.cz> Reviewed-by: Roberto Sassu <roberto.sassu@huawei.com> Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>

Diffstat (limited to 'scripts/gdb/linux/stackdepot.py')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: