diff options
| author | Linus Torvalds <torvalds@linux-foundation.org> | 2017-05-03 11:50:52 -0400 |
|---|---|---|
| committer | Linus Torvalds <torvalds@linux-foundation.org> | 2017-05-03 11:50:52 -0400 |
| commit | 0302e28dee643932ee7b3c112ebccdbb9f8ec32c (patch) | |
| tree | 405d4cb3f772ef069ed7f291adc4b74a4e73346e /security/keys/proc.c | |
| parent | 89c9fea3c8034cdb2fd745f551cde0b507fd6893 (diff) | |
| parent | 8979b02aaf1d6de8d52cc143aa4da961ed32e5a2 (diff) | |
Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security
Pull security subsystem updates from James Morris:
"Highlights:
IMA:
- provide ">" and "<" operators for fowner/uid/euid rules
KEYS:
- add a system blacklist keyring
- add KEYCTL_RESTRICT_KEYRING, exposes keyring link restriction
functionality to userland via keyctl()
LSM:
- harden LSM API with __ro_after_init
- add prlmit security hook, implement for SELinux
- revive security_task_alloc hook
TPM:
- implement contextual TPM command 'spaces'"
* 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security: (98 commits)
tpm: Fix reference count to main device
tpm_tis: convert to using locality callbacks
tpm: fix handling of the TPM 2.0 event logs
tpm_crb: remove a cruft constant
keys: select CONFIG_CRYPTO when selecting DH / KDF
apparmor: Make path_max parameter readonly
apparmor: fix parameters so that the permission test is bypassed at boot
apparmor: fix invalid reference to index variable of iterator line 836
apparmor: use SHASH_DESC_ON_STACK
security/apparmor/lsm.c: set debug messages
apparmor: fix boolreturn.cocci warnings
Smack: Use GFP_KERNEL for smk_netlbl_mls().
smack: fix double free in smack_parse_opts_str()
KEYS: add SP800-56A KDF support for DH
KEYS: Keyring asymmetric key restrict method with chaining
KEYS: Restrict asymmetric key linkage using a specific keychain
KEYS: Add a lookup_restriction function for the asymmetric key type
KEYS: Add KEYCTL_RESTRICT_KEYRING
KEYS: Consistent ordering for __key_link_begin and restrict check
KEYS: Add an optional lookup_restriction hook to key_type
...
Diffstat (limited to 'security/keys/proc.c')
| -rw-r--r-- | security/keys/proc.c | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/security/keys/proc.c b/security/keys/proc.c index b9f531c9e4fa..bf08d02b6646 100644 --- a/security/keys/proc.c +++ b/security/keys/proc.c | |||
| @@ -252,7 +252,7 @@ static int proc_keys_show(struct seq_file *m, void *v) | |||
| 252 | showflag(key, 'U', KEY_FLAG_USER_CONSTRUCT), | 252 | showflag(key, 'U', KEY_FLAG_USER_CONSTRUCT), |
| 253 | showflag(key, 'N', KEY_FLAG_NEGATIVE), | 253 | showflag(key, 'N', KEY_FLAG_NEGATIVE), |
| 254 | showflag(key, 'i', KEY_FLAG_INVALIDATED), | 254 | showflag(key, 'i', KEY_FLAG_INVALIDATED), |
| 255 | atomic_read(&key->usage), | 255 | refcount_read(&key->usage), |
| 256 | xbuf, | 256 | xbuf, |
| 257 | key->perm, | 257 | key->perm, |
| 258 | from_kuid_munged(seq_user_ns(m), key->uid), | 258 | from_kuid_munged(seq_user_ns(m), key->uid), |
| @@ -340,7 +340,7 @@ static int proc_key_users_show(struct seq_file *m, void *v) | |||
| 340 | 340 | ||
| 341 | seq_printf(m, "%5u: %5d %d/%d %d/%d %d/%d\n", | 341 | seq_printf(m, "%5u: %5d %d/%d %d/%d %d/%d\n", |
| 342 | from_kuid_munged(seq_user_ns(m), user->uid), | 342 | from_kuid_munged(seq_user_ns(m), user->uid), |
| 343 | atomic_read(&user->usage), | 343 | refcount_read(&user->usage), |
| 344 | atomic_read(&user->nkeys), | 344 | atomic_read(&user->nkeys), |
| 345 | atomic_read(&user->nikeys), | 345 | atomic_read(&user->nikeys), |
| 346 | user->qnkeys, | 346 | user->qnkeys, |