git.baikalelectronics.ru Git - kernel.git/commit

author	Mimi Zohar <zohar@linux.vnet.ibm.com>
	Tue, 16 Oct 2012 02:10:08 +0000 (12:40 +1030)
committer	Rusty Russell <rusty@rustcorp.com.au>
	Fri, 14 Dec 2012 02:35:26 +0000 (13:05 +1030)
commit	1e3f554fd3be1d4b781761b363c7dcfcf71b9d39
tree	0ec17c765406dedc37ac278823d50587d53d1525	tree \| snapshot
parent	a5528115b30a78e95e812cd0405d0668d511801c	commit \| diff

ima: support new kernel module syscall

With the addition of the new kernel module syscall, which defines two
arguments - a file descriptor to the kernel module and a pointer to a NULL
terminated string of module arguments - it is now possible to measure and
appraise kernel modules like any other file on the file system.

This patch adds support to measure and appraise kernel modules in an
extensible and consistent manner.

To support filesystems without extended attribute support, additional
patches could pass the signature as the first parameter.

Signed-off-by: Mimi Zohar <zohar@us.ibm.com>
Signed-off-by: Rusty Russell <rusty@rustcorp.com.au>

Documentation/ABI/testing/ima_policy		diff \| blob \| history
include/linux/ima.h		diff \| blob \| history
security/integrity/ima/ima.h		diff \| blob \| history
security/integrity/ima/ima_api.c		diff \| blob \| history
security/integrity/ima/ima_main.c		diff \| blob \| history
security/integrity/ima/ima_policy.c		diff \| blob \| history
security/security.c		diff \| blob \| history