diff options
| author | Jia Zhang <zhang.jia@linux.alibaba.com> | 2018-03-19 17:04:03 -0400 |
|---|---|---|
| committer | Jia Zhang <zhang.jia@linux.alibaba.com> | 2018-03-19 17:04:03 -0400 |
| commit | f13d2e0ef8a32b0ad3fe5b06eae8e03179eba943 (patch) | |
| tree | 23e3768e3f9d2eda23160589ccd72ee9ffe962f3 | |
| parent | e9bfbabd5136675380522b7f59a9ca1951292f9b (diff) | |
| download | meta-secure-core-f13d2e0ef8a32b0ad3fe5b06eae8e03179eba943.tar.gz | |
init.ima: Fix the failure when importing the external policy from real rootfs
Signed-off-by: Jia Zhang <zhang.jia@linux.alibaba.com>
| -rwxr-xr-x | meta-integrity/recipes-core/initrdscripts/files/init.ima | 4 |
1 files changed, 3 insertions, 1 deletions
diff --git a/meta-integrity/recipes-core/initrdscripts/files/init.ima b/meta-integrity/recipes-core/initrdscripts/files/init.ima index 6cd7c88..a15cd8f 100755 --- a/meta-integrity/recipes-core/initrdscripts/files/init.ima +++ b/meta-integrity/recipes-core/initrdscripts/files/init.ima | |||
| @@ -121,7 +121,9 @@ done | |||
| 121 | echo "${IMA_POLICY}" > "$securityfs_dir/ima/policy" && { | 121 | echo "${IMA_POLICY}" > "$securityfs_dir/ima/policy" && { |
| 122 | # Attempt to load IMA policies from the real rootfs. | 122 | # Attempt to load IMA policies from the real rootfs. |
| 123 | for policy in ${ROOT_DIR}/etc/ima/ima_policy*; do | 123 | for policy in ${ROOT_DIR}/etc/ima/ima_policy*; do |
| 124 | echo "$policy" > "$securityfs_dir/ima/policy" | 124 | if [ -s "$policy" ]; then |
| 125 | "${ROOT_DIR}/bin/echo.coreutils" "$policy" > "$securityfs_dir/ima/policy" | ||
| 126 | endif | ||
| 125 | done | 127 | done |
| 126 | 128 | ||
| 127 | exit 0 | 129 | exit 0 |