|
Linux Kernel
3.7.1
|
All Data Structures Namespaces Files Functions Variables Typedefs Enumerations Enumerator Macros Groups Pages
|
Linux Kernel
3.7.1
|
#include <linux/module.h>#include <linux/file.h>#include <linux/binfmts.h>#include <linux/mount.h>#include <linux/mman.h>#include <linux/slab.h>#include <linux/xattr.h>#include <linux/ima.h>#include "ima.h"Go to the source code of this file.
Functions | |
| __setup ("ima_hash=", hash_setup) | |
| void | ima_file_free (struct file *file) |
| int | ima_file_mmap (struct file *file, unsigned long prot) |
| int | ima_bprm_check (struct linux_binprm *bprm) |
| int | ima_file_check (struct file *file, int mask) |
| EXPORT_SYMBOL_GPL (ima_file_check) | |
| late_initcall (init_ima) | |
| MODULE_DESCRIPTION ("Integrity Measurement Architecture") | |
| MODULE_LICENSE ("GPL") | |
Variables | |
| int | ima_initialized |
| int | ima_appraise |
| char * | ima_hash = "sha1" |
| __setup | ( | ) |
| EXPORT_SYMBOL_GPL | ( | ima_file_check | ) |
| int ima_bprm_check | ( | struct linux_binprm * | bprm | ) |
ima_bprm_check - based on policy, collect/store measurement. : contains the linux_binprm structure
The OS protects against an executable file, already open for write, from being executed in deny_write_access() and an executable file, already open for execute, from being modified in get_write_access(). So we can be certain that what we verify and measure here is actually what is being executed.
Return 0 on success, an error code on failure. (Based on the results of appraise_measurement().)
Definition at line 250 of file ima_main.c.
Definition at line 133 of file ima_main.c.
Definition at line 225 of file ima_main.c.
| late_initcall | ( | init_ima | ) |
| MODULE_DESCRIPTION | ( | "Integrity Measurement Architecture" | ) |
| MODULE_LICENSE | ( | "GPL" | ) |
| int ima_appraise |
Definition at line 35 of file ima_main.c.
| char* ima_hash = "sha1" |
Definition at line 38 of file ima_main.c.
| int ima_initialized |
Definition at line 30 of file ima_main.c.
1.8.2