AcoSail/kernel_optimize_test
8
0
Fork 0
forked from luck/tmp_suning_uos_patched
Code Pull Requests Activity
16c267aac8
kernel_optimize_test/security/integrity/ima
History
Mimi Zohar 16c267aac8 ima: based on policy require signed kexec kernel images 
The original kexec_load syscall can not verify file signatures, nor can
the kexec image be measured.  Based on policy, deny the kexec_load
syscall.

Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
Cc: Eric Biederman <ebiederm@xmission.com>
Cc: Kees Cook <keescook@chromium.org>
Reviewed-by: Kees Cook <keescook@chromium.org>
Signed-off-by: James Morris <james.morris@microsoft.com>
2018-07-16 12:31:57 -07:00
..
ima_api.c audit: use inline function to get audit context 2018-05-14 17:24:18 -04:00
ima_appraise.c ima: Improvements in ima_appraise_measurement() 2018-03-25 07:26:30 -04:00
ima_crypto.c ima: Fallback to the builtin hash algorithm 2018-03-25 07:26:32 -04:00
ima_fs.c integrity: Add an integrity directory in securityfs 2018-05-17 08:03:07 -04:00
ima_init.c tpm: use struct tpm_chip for tpm_chip_find_get() 2018-01-08 12:58:36 +02:00
ima_kexec.c ima: Unify logging 2018-05-17 07:49:12 -04:00
ima_main.c ima: based on policy require signed kexec kernel images 2018-07-16 12:31:57 -07:00
ima_mok.c KEYS: Use structure to capture key restriction function and data 2017-04-04 14:10:10 -07:00
ima_policy.c ima: based on policy require signed kexec kernel images 2018-07-16 12:31:57 -07:00
ima_queue.c tpm: use struct tpm_chip for tpm_chip_find_get() 2018-01-08 12:58:36 +02:00
ima_template_lib.c ima: Unify logging 2018-05-17 07:49:12 -04:00
ima_template_lib.h ima: introduce ima_parse_buf() 2017-06-21 14:37:12 -04:00
ima_template.c ima: Fix line continuation format 2017-12-18 09:43:47 -05:00
ima.h ima: based on policy require signed kexec kernel images 2018-07-16 12:31:57 -07:00
Kconfig ima: Fix Kconfig to select TPM 2.0 CRB interface 2018-03-25 07:24:31 -04:00
Makefile License cleanup: add SPDX GPL-2.0 license identifier to files with no license 2017-11-02 11:10:55 +01:00