git.baikalelectronics.ru Git - kernel.git/commit

author	Lakshmi Ramasubramanian <nramas@linux.microsoft.com>
	Thu, 23 Jan 2020 01:32:05 +0000 (17:32 -0800)
committer	Mimi Zohar <zohar@linux.ibm.com>
	Thu, 23 Jan 2020 12:35:25 +0000 (07:35 -0500)
commit	a98eccb13f69102a0fbdc7bf2a6a2860e1976c39
tree	018516d9456856ed5e5e35f58443cbe1158fdf48	tree \| snapshot
parent	98cb396f172d86935201f2f3c168a323d7d10e58	commit \| diff

IMA: Call workqueue functions to measure queued keys

Measuring keys requires a custom IMA policy to be loaded. Keys should
be queued for measurement if a custom IMA policy is not yet loaded.
Keys queued for measurement, if any, should be processed when a custom
policy is loaded.

This patch updates the IMA hook function ima_post_key_create_or_update()
to queue the key if a custom IMA policy has not yet been loaded. And,
ima_update_policy() function, which is called when a custom IMA policy
is loaded, is updated to process queued keys.

Signed-off-by: Lakshmi Ramasubramanian <nramas@linux.microsoft.com>
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>

security/integrity/ima/ima_asymmetric_keys.c		diff \| blob \| history
security/integrity/ima/ima_policy.c		diff \| blob \| history