ima: policy for RAMFS

author Dmitry Kasatkin <dmitry.kasatkin@intel.com>

Tue, 18 Oct 2011 11:16:28 +0000 (14:16 +0300)

committer Mimi Zohar <zohar@linux.vnet.ibm.com>

Fri, 20 Jan 2012 02:30:21 +0000 (21:30 -0500)
author Dmitry Kasatkin <dmitry.kasatkin@intel.com>
Tue, 18 Oct 2011 11:16:28 +0000 (14:16 +0300)
committer Mimi Zohar <zohar@linux.vnet.ibm.com>
Fri, 20 Jan 2012 02:30:21 +0000 (21:30 -0500)
diff --git a/security/integrity/ima/ima_policy.c b/security/integrity/ima/ima_policy.c

index d661afb..1b422bc 100644 (file)
--- a/security/integrity/ima/ima_policy.c
+++ b/security/integrity/ima/ima_policy.c
@@ -62,6 +62,7 @@ static struct ima_measure_rule_entry default_rules[] = {
         {.action = DONT_MEASURE,.fsmagic = SYSFS_MAGIC,.flags = IMA_FSMAGIC},
         {.action = DONT_MEASURE,.fsmagic = DEBUGFS_MAGIC,.flags = IMA_FSMAGIC},
         {.action = DONT_MEASURE,.fsmagic = TMPFS_MAGIC,.flags = IMA_FSMAGIC},
+       {.action = DONT_MEASURE,.fsmagic = RAMFS_MAGIC,.flags = IMA_FSMAGIC},
         {.action = DONT_MEASURE,.fsmagic = SECURITYFS_MAGIC,.flags = IMA_FSMAGIC},
         {.action = DONT_MEASURE,.fsmagic = SELINUX_MAGIC,.flags = IMA_FSMAGIC},
         {.action = MEASURE,.func = FILE_MMAP,.mask = MAY_EXEC,
author	Dmitry Kasatkin <dmitry.kasatkin@intel.com>
	Tue, 18 Oct 2011 11:16:28 +0000 (14:16 +0300)
committer	Mimi Zohar <zohar@linux.vnet.ibm.com>
	Fri, 20 Jan 2012 02:30:21 +0000 (21:30 -0500)