ima: audit log hashes This adds an 'audit' policy action which audit logs file measurements. Changelog v6: - use new action flag handling (Dmitry Kasatkin). - removed whitespace (Mimi) Changelog v5: - use audit_log_untrustedstring. Changelog v4: - cleanup digest -> hash conversion. - use filename rather than d_path in ima_audit_measurement. Changelog v3: - Use newly exported audit_log_task_info for logging pid/ppid/uid/etc. - Update the ima_policy ABI documentation. Changelog v2: - Use 'audit' action rather than 'measure_and_audit' to permit auditing in the absence of measuring.. Changelog v1: - Initial posting. Signed-off-by: Peter Moody <pmoody@google.com> Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>

commit: e7c568e0fd0cf6d9c8ab8ea537ba8f3a3ae7c3d8 [log] [tgz]
author: Peter Moody <pmoody@google.com> Thu Jun 14 10:04:36 2012 -0700
committer: Mimi Zohar <zohar@linux.vnet.ibm.com> Thu Sep 13 14:48:44 2012 -0400
tree: f920b77b98c38e28dd2974564db102160e59f3e9
parent: 45e2472e67bf66f794d507b52e82af92e0614e49 [diff] [blame]
diff --git a/security/integrity/ima/ima.h b/security/integrity/ima/ima.h
index 48aa0d4..8180add 100644
--- a/security/integrity/ima/ima.h
+++ b/security/integrity/ima/ima.h

@@ -114,6 +114,8 @@
 			    struct file *file);
 void ima_store_measurement(struct integrity_iint_cache *iint, struct file *file,
 			   const unsigned char *filename);
+void ima_audit_measurement(struct integrity_iint_cache *iint,
+			   const unsigned char *filename);
 int ima_store_template(struct ima_template_entry *entry, int violation,
 		       struct inode *inode);
 void ima_template_show(struct seq_file *m, void *e, enum ima_show_type show);
commit	e7c568e0fd0cf6d9c8ab8ea537ba8f3a3ae7c3d8	[log] [tgz]
author	Peter Moody <pmoody@google.com>	Thu Jun 14 10:04:36 2012 -0700
committer	Mimi Zohar <zohar@linux.vnet.ibm.com>	Thu Sep 13 14:48:44 2012 -0400
tree	f920b77b98c38e28dd2974564db102160e59f3e9
parent	45e2472e67bf66f794d507b52e82af92e0614e49 [diff] [blame]