 Mimi Zohar
|
3f23d624de
ima: store the builtin/custom template definitions in a list
|
8 年之前 |
 Miklos Szeredi
|
e71b9dff06
ima: use file_dentry()
|
9 年之前 |
 Eric Richter
|
a422638d49
ima: change integrity cache to store measured pcr
|
9 年之前 |
|
Eric Richter
|
14b1da85bb
ima: include pcr for each measurement log entry
|
9 年之前 |
|
Eric Richter
|
725de7fabb
ima: extend ima_get_action() to return the policy pcr
|
9 年之前 |
|
Mimi Zohar
|
05d1a717ec
ima: add support for creating files using the mknodat syscall
|
9 年之前 |
|
Mimi Zohar
|
19f8a84713
ima: measure and appraise the IMA policy itself
|
9 年之前 |
|
Mimi Zohar
|
d9ddf077bb
ima: support for kexec image and initramfs
|
9 年之前 |
|
Mimi Zohar
|
a1db742094
module: replace copy_module_from_fd with kernel version
|
9 年之前 |
|
Mimi Zohar
|
39eeb4fb97
security: define kernel_read_file hook
|
9 年之前 |
|
Mimi Zohar
|
e40ba6d56b
firmware: replace call to fw_read_file_contents() with kernel version
|
9 年之前 |
|
Mimi Zohar
|
cf22221786
ima: define a new hook to measure and appraise a file already in memory
|
9 年之前 |
|
Mimi Zohar
|
4ad87a3d74
ima: use "ima_hooks" enum as function argument
|
9 年之前 |
 Dmitry Kasatkin
|
1525b06d99
ima: separate 'security.ima' reading functionality from collect
|
10 年之前 |
 Al Viro
|
5955102c99
wrappers for ->i_mutex access
|
9 年之前 |
 Roberto Sassu
|
8d94eb9b5c
ima: pass iint to ima_add_violation()
|
10 年之前 |
 Dmitry Kasatkin
|
456f5fd3f6
ima: use path names cache
|
11 年之前 |
 Dmitry Kasatkin
|
0f34a0060a
ima: check ima_policy_flag in the ima_file_free() hook
|
11 年之前 |
 Roberto Sassu
|
1b68bdf9cd
ima: detect violations for mmaped files
|
11 年之前 |
|
Roberto Sassu
|
f7a859ff73
ima: fix race condition on ima_rdwr_violation_check and process_measurement
|
11 年之前 |
|
Roberto Sassu
|
a756024efe
ima: added ima_policy_flag variable
|
11 年之前 |
|
Dmitry Kasatkin
|
31b70f6632
ima: move keyring initialization to ima_init()
|
11 年之前 |
|
Dmitry Kasatkin
|
17f4bad3ab
ima: remove usage of filename parameter
|
11 年之前 |
|
Dmitry Kasatkin
|
3a8a2eadc4
ima: remove unnecessary extra variable
|
11 年之前 |
|
Dmitry Kasatkin
|
f68c05f4d2
ima: simplify conditional statement to improve performance
|
11 年之前 |
|
Dmitry Kasatkin
|
3034a14682
ima: pass 'opened' flag to identify newly created files
|
11 年之前 |
|
Dmitry Kasatkin
|
b151d6b00b
ima: provide flag to identify new empty files
|
11 年之前 |
|
Mimi Zohar
|
5a9196d715
ima: add support for measuring and appraising firmware
|
11 年之前 |
|
Mimi Zohar
|
7d2ce2320e
ima: define '.ima' as a builtin 'trusted' keyring
|
12 年之前 |
|
Dmitry Kasatkin
|
209b43ca64
ima: delay template descriptor lookup until use
|
11 年之前 |
