]> asedeno.scripts.mit.edu Git - linux.git/commit
projects / linux.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: c5563ba) | patch
IMA: Add KEY_CHECK func to measure keys
authorLakshmi Ramasubramanian <nramas@linux.microsoft.com>
Wed, 11 Dec 2019 16:47:03 +0000 (08:47 -0800)
committerMimi Zohar <zohar@linux.ibm.com>
Thu, 12 Dec 2019 13:53:50 +0000 (08:53 -0500)
commit5808611cccb28044940d04ebd303dc90f33b77b1
tree078c06ef373bfe2e252910c59060fd54e2e2e4c4tree | snapshot
parentc5563bad88e07017e08cce1142903e501598c80ccommit | diff
IMA: Add KEY_CHECK func to measure keys

Measure keys loaded onto any keyring.

This patch defines a new IMA policy func namely KEY_CHECK to
measure keys. Updated ima_match_rules() to check for KEY_CHECK
and ima_parse_rule() to handle KEY_CHECK.

Signed-off-by: Lakshmi Ramasubramanian <nramas@linux.microsoft.com>
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
Documentation/ABI/testing/ima_policy diff | blob | history
security/integrity/ima/ima.h diff | blob | history
security/integrity/ima/ima_policy.c diff | blob | history
local clone of linux.git