diff options
author | Jia Zhang <zhang.jia@linux.alibaba.com> | 2018-03-19 17:04:03 -0400 |
---|---|---|
committer | Jia Zhang <zhang.jia@linux.alibaba.com> | 2018-03-19 17:04:03 -0400 |
commit | f13d2e0ef8a32b0ad3fe5b06eae8e03179eba943 (patch) | |
tree | 23e3768e3f9d2eda23160589ccd72ee9ffe962f3 | |
parent | e9bfbabd5136675380522b7f59a9ca1951292f9b (diff) | |
download | meta-secure-core-f13d2e0ef8a32b0ad3fe5b06eae8e03179eba943.tar.gz |
init.ima: Fix the failure when importing the external policy from real rootfs
Signed-off-by: Jia Zhang <zhang.jia@linux.alibaba.com>
-rwxr-xr-x | meta-integrity/recipes-core/initrdscripts/files/init.ima | 4 |
1 files changed, 3 insertions, 1 deletions
diff --git a/meta-integrity/recipes-core/initrdscripts/files/init.ima b/meta-integrity/recipes-core/initrdscripts/files/init.ima index 6cd7c88..a15cd8f 100755 --- a/meta-integrity/recipes-core/initrdscripts/files/init.ima +++ b/meta-integrity/recipes-core/initrdscripts/files/init.ima | |||
@@ -121,7 +121,9 @@ done | |||
121 | echo "${IMA_POLICY}" > "$securityfs_dir/ima/policy" && { | 121 | echo "${IMA_POLICY}" > "$securityfs_dir/ima/policy" && { |
122 | # Attempt to load IMA policies from the real rootfs. | 122 | # Attempt to load IMA policies from the real rootfs. |
123 | for policy in ${ROOT_DIR}/etc/ima/ima_policy*; do | 123 | for policy in ${ROOT_DIR}/etc/ima/ima_policy*; do |
124 | echo "$policy" > "$securityfs_dir/ima/policy" | 124 | if [ -s "$policy" ]; then |
125 | "${ROOT_DIR}/bin/echo.coreutils" "$policy" > "$securityfs_dir/ima/policy" | ||
126 | endif | ||
125 | done | 127 | done |
126 | 128 | ||
127 | exit 0 | 129 | exit 0 |