subject:"\[PATCH v3 5\/6\] IMA\: add hook to measure critical data from kernel components"

Re: [PATCH v3 5/6] IMA: add hook to measure critical data from kernel components

2020-09-11 Thread Tushar Sugandhi

On 2020-08-31 11:23 a.m., Mimi Zohar wrote: diff --git a/security/integrity/ima/ima_main.c b/security/integrity/ima/ima_main.c index 52cbbc1f7ea2..a889bf40cb7e 100644 --- a/security/integrity/ima/ima_main.c +++ b/security/integrity/ima/ima_main.c @@ -869,6 +869,30 @@ void

Re: [PATCH v3 5/6] IMA: add hook to measure critical data from kernel components

2020-08-31 Thread Mimi Zohar

> diff --git a/security/integrity/ima/ima_main.c > b/security/integrity/ima/ima_main.c > index 52cbbc1f7ea2..a889bf40cb7e 100644 > --- a/security/integrity/ima/ima_main.c > +++ b/security/integrity/ima/ima_main.c > @@ -869,6 +869,30 @@ void ima_kexec_cmdline(int kernel_fd, const void *buf, > int

[PATCH v3 5/6] IMA: add hook to measure critical data from kernel components

2020-08-27 Thread Tushar Sugandhi

Currently, IMA does not provide a generic function for kernel components to measure their data. A generic function provided by IMA would enable various parts of the kernel with easier and faster on-boarding to use IMA infrastructure, would avoid code duplication, and consistent usage of IMA policy