git.maquefel.me Git - linux.git/commit

author	Roberto Sassu <roberto.sassu@huawei.com>
	Thu, 15 Feb 2024 10:31:13 +0000 (11:31 +0100)
committer	Paul Moore <paul@paul-moore.com>
	Fri, 16 Feb 2024 04:43:48 +0000 (23:43 -0500)
commit	b6c0dec9f78bc691166d60347b52b3adf03d5875
tree	b7bb4d4814312b92770129b2c440146aad4a121e	tree \| snapshot
parent	4de2f084fbff41113d9adec3c9e15ab12bf05e21	commit \| diff

integrity: Remove LSM

Since now IMA and EVM use their own integrity metadata, it is safe to
remove the 'integrity' LSM, with its management of integrity metadata.

Keep the iint.c file only for loading IMA and EVM keys at boot, and for
creating the integrity directory in securityfs (we need to keep it for
retrocompatibility reasons).

Signed-off-by: Roberto Sassu <roberto.sassu@huawei.com>
Reviewed-by: Casey Schaufler <casey@schaufler-ca.com>
Reviewed-by: Stefan Berger <stefanb@linux.ibm.com>
Reviewed-by: Mimi Zohar <zohar@linux.ibm.com>
Acked-by: Mimi Zohar <zohar@linux.ibm.com>
Signed-off-by: Paul Moore <paul@paul-moore.com>

include/linux/integrity.h		diff \| blob \| history
security/integrity/iint.c		diff \| blob \| history
security/integrity/integrity.h		diff \| blob \| history
security/security.c		diff \| blob \| history