path: root/security/integrity/ima
diff options
authorEric Paris <eparis@redhat.com>2009-05-11 13:59:22 -0400
committerJames Morris <jmorris@namei.org>2009-05-12 11:06:08 +1000
commit1a62e958fa4aaeeb752311b4f5e16b2a86737b23 (patch)
tree53d983ebdde45e00ad2079f8035792450b046d56 /security/integrity/ima
parentf06dd16a03f6f7f72fab4db03be36e28c28c6fd6 (diff)
IMA: open all files O_LARGEFILE
If IMA tried to measure a file which was larger than 4G dentry_open would fail with -EOVERFLOW since IMA wasn't passing O_LARGEFILE. This patch passes O_LARGEFILE to all IMA opens to avoid this problem. Signed-off-by: Eric Paris <eparis@redhat.com> Acked-by: Mimi Zohar <zohar@us.ibm.com> Signed-off-by: James Morris <jmorris@namei.org>
Diffstat (limited to 'security/integrity/ima')
1 files changed, 2 insertions, 1 deletions
diff --git a/security/integrity/ima/ima_main.c b/security/integrity/ima/ima_main.c
index 1987424623c..c4228c0eb2d 100644
--- a/security/integrity/ima/ima_main.c
+++ b/security/integrity/ima/ima_main.c
@@ -180,7 +180,8 @@ int ima_path_check(struct path *path, int mask)
struct dentry *dentry = dget(path->dentry);
struct vfsmount *mnt = mntget(path->mnt);
- file = dentry_open(dentry, mnt, O_RDONLY, current_cred());
+ file = dentry_open(dentry, mnt, O_RDONLY | O_LARGEFILE,
+ current_cred());
if (IS_ERR(file)) {
pr_info("%s dentry_open failed\n", dentry->d_name.name);
rc = PTR_ERR(file);