Skip to content

Commit

Permalink
ima: report policy load status
Browse files Browse the repository at this point in the history 
Audit messages are rate limited, often causing the policy update
info to not be visible.  Report policy loading status also using
pr_info.

Changes in v2:
* reporting moved to ima_release_policy to notice parsing errors
* reporting both completed and failed status

Signed-off-by: Dmitry Kasatkin <d.kasatkin@samsung.com>
Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
  • Loading branch information
Dmitry Kasatkin authored and Mimi Zohar committed Oct 12, 2014
1 parent 456f5fd commit 78bb5d0
Showing 1 changed file with 2 additions and 0 deletions.
2 changes: 2 additions & 0 deletions security/integrity/ima/ima_fs.c
View file
Original file line number Diff line number Diff line change
Expand Up @@ -311,6 +311,8 @@ static int ima_open_policy(struct inode *inode, struct file *filp)
*/
static int ima_release_policy(struct inode *inode, struct file *file)
{
pr_info("IMA: policy update %s\n",
valid_policy ? "completed" : "failed");
if (!valid_policy) {
ima_delete_rules();
valid_policy = 1;
Expand Down

0 comments on commit 78bb5d0

Please sign in to comment.