linux/security/integrity/evm
Mimi Zohar 2fb1c9a4f2 evm: prohibit userspace writing 'security.evm' HMAC value
Calculating the 'security.evm' HMAC value requires access to the
EVM encrypted key.  Only the kernel should have access to it.  This
patch prevents userspace tools(eg. setfattr, cp --preserve=xattr)
from setting/modifying the 'security.evm' HMAC value directly.

Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
Cc: <stable@vger.kernel.org>
2014-06-12 17:58:07 -04:00
..
evm_crypto.c
evm_main.c evm: prohibit userspace writing 'security.evm' HMAC value 2014-06-12 17:58:07 -04:00
evm_posix_acl.c
evm_secfs.c
evm.h
Kconfig
Makefile