ima: add support for new "euid" policy condition
authorMimi Zohar <zohar@linux.vnet.ibm.com>
Wed, 5 Nov 2014 12:48:36 +0000 (07:48 -0500)
committerMimi Zohar <zohar@linux.vnet.ibm.com>
Tue, 16 Jun 2015 12:18:43 +0000 (08:18 -0400)
commit139069eff7388407f19794384c42a534d618ccd7
treeb042f562de014a0376ac13b1452f1d9fbd003eb9
parent45b26133b97871896b8c5241d59f4ff7839db7b2
ima: add support for new "euid" policy condition

The new "euid" policy condition measures files with the specified
effective uid (euid).  In addition, for CAP_SETUID files it measures
files with the specified uid or suid.

Changelog:
- fixed checkpatch.pl warnings
- fixed avc denied {setuid} messages - based on Roberto's feedback

Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
Signed-off-by: Dr. Greg Wettstein <gw@idfusion.org>
Cc: stable@vger.kernel.org
Documentation/ABI/testing/ima_policy
security/integrity/ima/ima_policy.c