Roberto Sassu 4e8581eefe ima: pass filename to ima_rdwr_violation_check() ... ima_rdwr_violation_check() retrieves the full path of a measured file by calling ima_d_path(). If process_measurement() calls this function, it reuses the pointer and passes it to the functions to measure/appraise/audit an accessed file. After commit bc15ed663e ("ima: fix ima_d_path() possible race with rename"), ima_d_path() first tries to retrieve the full path by calling d_absolute_path() and, if there is an error, copies the dentry name to the buffer passed as argument. However, ima_rdwr_violation_check() passes to ima_d_path() the pointer of a local variable. process_measurement() might be reusing the pointer to an area in the stack which may have been already overwritten after ima_rdwr_violation_check() returned. Correct this issue by passing to ima_rdwr_violation_check() the pointer of a buffer declared in process_measurement(). Fixes: bc15ed663e ("ima: fix ima_d_path() possible race with rename") Signed-off-by: Roberto Sassu <roberto.sassu@huawei.com> Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>		2017-12-18 09:43:48 -05:00
..
evm	EVM: Add support for portable signature format	2017-12-11 17:20:39 -05:00
ima	ima: pass filename to ima_rdwr_violation_check()	2017-12-18 09:43:48 -05:00
digsig_asymmetric.c	integrity: Small code improvements	2017-06-21 14:37:12 -04:00
digsig.c	integrity: use kernel_read_file_from_path() to read x509 certs	2017-11-08 15:16:36 -05:00
iint.c	ima: re-introduce own integrity cache lock	2017-12-11 17:20:47 -05:00
integrity_audit.c	Merge git://git.infradead.org/users/eparis/audit	2014-04-12 12:38:53 -07:00
integrity.h	ima: support new "hash" and "dont_hash" policy actions	2017-12-18 09:43:38 -05:00
Kconfig	security: integrity: Remove select to deleted option PUBLIC_KEY_ALGO_RSA	2016-04-12 19:54:58 +01:00
Makefile	License cleanup: add SPDX GPL-2.0 license identifier to files with no license	2017-11-02 11:10:55 +01:00