[Acl-devel] [PATCH 1/2] xattr.conf: do not copy security.evm

acl-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Acl-devel] [PATCH 1/2] xattr.conf: do not copy security.evm

From:	Stefan Berger
Subject:	[Acl-devel] [PATCH 1/2] xattr.conf: do not copy security.evm
Date:	Tue, 25 Oct 2016 13:36:34 -0400

From: Stefan Berger <address@hidden>

The security.evm extended attribute may only be written by the Linux
kernel. So modify xattr.conf to always skip this extended attribute.

Signed-off-by: Stefan Berger <address@hidden>
---
 xattr.conf | 1 +
 1 file changed, 1 insertion(+)

diff --git a/xattr.conf b/xattr.conf
index e1f2215..dcbc12c 100644
--- a/xattr.conf
+++ b/xattr.conf
@@ -18,3 +18,4 @@ trusted.SGI_DMI_*             skip            # xfs specific
 trusted.SGI_MAC_FILE           skip            # xfs specific
 xfsroot.*                      skip            # xfs specific; obsolete
 user.Beagle.*                  skip            # ignore Beagle index data
+security.evm                   skip            # may only be written by kernel
-- 
2.7.0

[Prev in Thread]

Current Thread

[Next in Thread]

[Acl-devel] [PATCH 0/2] Handling of security.ima and security.evm xattrs, Stefan Berger, 2016/10/25
- [Acl-devel] [PATCH 1/2] xattr.conf: do not copy security.evm, Stefan Berger <=
- [Acl-devel] [PATCH 2/2] Suppress error messages when copying security.ima fails, Stefan Berger, 2016/10/25

Prev by Date: [Acl-devel] [PATCH 0/2] Handling of security.ima and security.evm xattrs
Next by Date: [Acl-devel] [PATCH 2/2] Suppress error messages when copying security.ima fails
Previous by thread: [Acl-devel] [PATCH 0/2] Handling of security.ima and security.evm xattrs
Next by thread: [Acl-devel] [PATCH 2/2] Suppress error messages when copying security.ima fails
Index(es):
- Date
- Thread