evm: posix acls modify i_mode
authorMimi Zohar <zohar@linux.vnet.ibm.com>
Thu, 18 Aug 2011 22:07:44 +0000 (18:07 -0400)
committerMimi Zohar <zohar@linux.vnet.ibm.com>
Wed, 14 Sep 2011 19:24:51 +0000 (15:24 -0400)
commitbf6d0f5dcda17df3cc5577e203d0f8ea1c2ad6aa
treec6c5f39d43fe0d27bc1d3aedbd2f9b3ba2f8f537
parenta924ce0b35875ef9512135b46a32f4150fd700b2
evm: posix acls modify i_mode

The posix xattr acls are 'system' prefixed, which normally would not
affect security.evm.  An interesting side affect of writing posix xattr
acls is their modifying of the i_mode, which is included in security.evm.

This patch updates security.evm when posix xattr acls are written.

Signed-off-by: Mimi Zohar <zohar@us.ibm.com>
include/linux/evm.h
include/linux/xattr.h
security/integrity/evm/Makefile
security/integrity/evm/evm_main.c
security/integrity/evm/evm_posix_acl.c [new file with mode: 0644]