diff options
author | Mimi Zohar | 2010-11-02 10:13:07 -0400 |
---|---|---|
committer | Mimi Zohar | 2011-02-10 07:51:44 -0500 |
commit | 890275b5eb79e9933d12290473eab9ac38da0051 (patch) | |
tree | 8fa529a6fdfa7647ed4e14287658b71df8636ddd /security/integrity/ima/ima_iint.c | |
parent | a5c96ebf1d71df0c5fb77ab58c9aeb307cf02372 (diff) |
IMA: maintain i_readcount in the VFS layer
ima_counts_get() updated the readcount and invalidated the PCR,
as necessary. Only update the i_readcount in the VFS layer.
Move the PCR invalidation checks to ima_file_check(), where it
belongs.
Maintaining the i_readcount in the VFS layer, will allow other
subsystems to use i_readcount.
Signed-off-by: Mimi Zohar <zohar@us.ibm.com>
Acked-by: Eric Paris <eparis@redhat.com>
Diffstat (limited to 'security/integrity/ima/ima_iint.c')
-rw-r--r-- | security/integrity/ima/ima_iint.c | 2 |
1 files changed, 0 insertions, 2 deletions
diff --git a/security/integrity/ima/ima_iint.c b/security/integrity/ima/ima_iint.c index f0053552fd58..68efe3b8d993 100644 --- a/security/integrity/ima/ima_iint.c +++ b/security/integrity/ima/ima_iint.c @@ -141,8 +141,6 @@ void ima_inode_free(struct inode *inode) printk(KERN_INFO "%s: readcount: %u\n", __func__, atomic_read(&inode->i_readcount)); - atomic_set(&inode->i_readcount, 0); - if (!IS_IMA(inode)) return; |