ima: policy for RAMFS

Don't measure ramfs files. Signed-off-by: Dmitry Kasatkin <dmitry.kasatkin@intel.com> Signed-off-by: Mimi Zohar <zohar@us.ibm.com>
author: Dmitry Kasatkin 2011-10-18 13:16:28 +0200
committer: Mimi Zohar 2012-01-20 03:30:21 +0100
commit: 4c2c392763a682354fac65b6a569adec4e4b5387 (patch)
tree: 490b840399ed1e010561f4b97018f3c0a3caf8b6 /security/integrity/ima
parent: ima: fix Kconfig dependencies (diff)
download: kernel-qcow2-linux-4c2c392763a682354fac65b6a569adec4e4b5387.tar.gz
kernel-qcow2-linux-4c2c392763a682354fac65b6a569adec4e4b5387.tar.xz
kernel-qcow2-linux-4c2c392763a682354fac65b6a569adec4e4b5387.zip
1 files changed, 1 insertions, 0 deletions
diff --git a/security/integrity/ima/ima_policy.c b/security/integrity/ima/ima_policy.c
index d661afbe474c..1b422bc56264 100644
--- a/security/integrity/ima/ima_policy.c
+++ b/security/integrity/ima/ima_policy.c
@@ -62,6 +62,7 @@ static struct ima_measure_rule_entry default_rules[] = {
 	{.action = DONT_MEASURE,.fsmagic = SYSFS_MAGIC,.flags = IMA_FSMAGIC},
 	{.action = DONT_MEASURE,.fsmagic = DEBUGFS_MAGIC,.flags = IMA_FSMAGIC},
 	{.action = DONT_MEASURE,.fsmagic = TMPFS_MAGIC,.flags = IMA_FSMAGIC},
+	{.action = DONT_MEASURE,.fsmagic = RAMFS_MAGIC,.flags = IMA_FSMAGIC},
 	{.action = DONT_MEASURE,.fsmagic = SECURITYFS_MAGIC,.flags = IMA_FSMAGIC},
 	{.action = DONT_MEASURE,.fsmagic = SELINUX_MAGIC,.flags = IMA_FSMAGIC},
 	{.action = MEASURE,.func = FILE_MMAP,.mask = MAY_EXEC,
author	Dmitry Kasatkin	2011-10-18 13:16:28 +0200
committer	Mimi Zohar	2012-01-20 03:30:21 +0100
commit	4c2c392763a682354fac65b6a569adec4e4b5387 (patch)
tree	490b840399ed1e010561f4b97018f3c0a3caf8b6 /security/integrity/ima
parent	ima: fix Kconfig dependencies (diff)
download	kernel-qcow2-linux-4c2c392763a682354fac65b6a569adec4e4b5387.tar.gz kernel-qcow2-linux-4c2c392763a682354fac65b6a569adec4e4b5387.tar.xz kernel-qcow2-linux-4c2c392763a682354fac65b6a569adec4e4b5387.zip