Gitiles
Code Review Sign In
gerrit-public.fairphone.software / kernel / msm-4.9 / 5a9196d715607f76d6b7d96a0970d6065335e62b
commit5a9196d715607f76d6b7d96a0970d6065335e62b[log] [tgz]
authorMimi Zohar <zohar@linux.vnet.ibm.com>Tue Jul 22 10:39:48 2014 -0400
committerKees Cook <keescook@chromium.org>Fri Jul 25 11:47:46 2014 -0700
treedf323588d1026b947e489c5fb9c83299dbcb9689
parent6593d9245bc66e6e3cf4ba6d365a7833110c1402 [diff]
ima: add support for measuring and appraising firmware

The "security: introduce kernel_fw_from_file hook" patch defined a
new security hook to evaluate any loaded firmware that wasn't built
into the kernel.

This patch defines ima_fw_from_file(), which is called from the new
security hook, to measure and/or appraise the loaded firmware's
integrity.

Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
Signed-off-by: Kees Cook <keescook@chromium.org>
8 files changed
tree: df323588d1026b947e489c5fb9c83299dbcb9689
  1. arch/
  2. block/
  3. crypto/
  4. Documentation/
  5. drivers/
  6. firmware/
  7. fs/
  8. include/
  9. init/
  10. ipc/
  11. kernel/
  12. lib/
  13. mm/
  14. net/
  15. samples/
  16. scripts/
  17. security/
  18. sound/
  19. tools/
  20. usr/
  21. virt/
  22. .gitignore
  23. .mailmap
  24. COPYING
  25. CREDITS
  26. Kbuild
  27. Kconfig
  28. MAINTAINERS
  29. Makefile
  30. README
  31. REPORTING-BUGS