Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net

Conflicts: Documentation/networking/ip-sysctl.txt drivers/net/ethernet/broadcom/bnx2x/bnx2x_cmn.c Both conflicts were simply overlapping context. A build fix for qlcnic is in here too, simply removing the added devinit annotations which no longer exist. Signed-off-by: David S. Miller <davem@davemloft.net>
author: David S. Miller <davem@davemloft.net> 2013-01-15 15:05:59 -0500
committer: David S. Miller <davem@davemloft.net> 2013-01-15 15:05:59 -0500
commit: 4b87f922598acf91eee18f71688a33f54f57bcde (patch)
tree: 9cdfe30c6b96c47093da5392ed82d147290cd64c /security/integrity/ima/ima_main.c
parent: 55eb555d9674e2ebe9d4de0146602f96ff18e7d6 (diff)
parent: daf3ec688e057f6060fb9bb0819feac7a8bbf45c (diff)
download: linux-4b87f922598acf91eee18f71688a33f54f57bcde.tar.bz2
1 files changed, 8 insertions, 4 deletions
diff --git a/security/integrity/ima/ima_main.c b/security/integrity/ima/ima_main.c
index 45de18e9a6f2..dba965de90d3 100644
--- a/security/integrity/ima/ima_main.c
+++ b/security/integrity/ima/ima_main.c
@@ -291,11 +291,15 @@ EXPORT_SYMBOL_GPL(ima_file_check);
  */
 int ima_module_check(struct file *file)
 {
-	int rc;
+	int rc = 0;
 
-	if (!file)
-		rc = INTEGRITY_UNKNOWN;
-	else
+	if (!file) {
+		if (ima_appraise & IMA_APPRAISE_MODULES) {
+#ifndef CONFIG_MODULE_SIG_FORCE
+			rc = -EACCES;	/* INTEGRITY_UNKNOWN */
+#endif
+		}
+	} else
 		rc = process_measurement(file, file->f_dentry->d_name.name,
 					 MAY_EXEC, MODULE_CHECK);
 	return (ima_appraise & IMA_APPRAISE_ENFORCE) ? rc : 0;
author	David S. Miller <davem@davemloft.net>	2013-01-15 15:05:59 -0500
committer	David S. Miller <davem@davemloft.net>	2013-01-15 15:05:59 -0500
commit	4b87f922598acf91eee18f71688a33f54f57bcde (patch)
tree	9cdfe30c6b96c47093da5392ed82d147290cd64c /security/integrity/ima/ima_main.c
parent	55eb555d9674e2ebe9d4de0146602f96ff18e7d6 (diff)
parent	daf3ec688e057f6060fb9bb0819feac7a8bbf45c (diff)
download	linux-4b87f922598acf91eee18f71688a33f54f57bcde.tar.bz2