projects / linux.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 19453ce) | patch
IMA: Define a new hook to measure the kexec boot command line arguments
authorPrakhar Srivastava <prsriva02@gmail.com>
Mon, 24 Jun 2019 06:23:29 +0000 (23:23 -0700)
committerMimi Zohar <zohar@linux.ibm.com>
Mon, 24 Jun 2019 12:29:57 +0000 (08:29 -0400)
commitb0935123a18360d19f1dcc779ea33841cdc304cc
treef7f069f94312da4302ad6b1b793d4f6c90eb5bc0tree | snapshot
parent19453ce0bcfbdf7332a104eebf5d835977af7284commit | diff
IMA: Define a new hook to measure the kexec boot command line arguments

Currently during soft reboot(kexec_file_load) boot command line
arguments are not measured. Define hooks needed to measure kexec
command line arguments during soft reboot(kexec_file_load).

- A new ima hook ima_kexec_cmdline is defined to be called by the
kexec code.
- A new function process_buffer_measurement is defined to measure
the buffer hash into the IMA measurement list.
- A new func policy KEXEC_CMDLINE is defined to control the
 measurement.

Signed-off-by: Prakhar Srivastava <prsriva02@gmail.com>
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
Documentation/ABI/testing/ima_policy diff | blob | history
include/linux/ima.h diff | blob | history
security/integrity/ima/ima.h diff | blob | history
security/integrity/ima/ima_api.c diff | blob | history
security/integrity/ima/ima_main.c diff | blob | history
security/integrity/ima/ima_policy.c diff | blob | history
ep93xx device tree rework repo: git://git.maquefel.me/linux.git