Google Git
Sign in
kernel / pub / scm / linux / kernel / git / jfern / linux / refs/tags/fw-restrict-3.17
tag59f08096d5917c1733622ea33b0fb741bccc40b0
taggerKees Cook <keescook@chromium.org>Fri Jul 25 11:49:26 2014 -0700
object5a9196d715607f76d6b7d96a0970d6065335e62b 
Firmware validation hooks
commit5a9196d715607f76d6b7d96a0970d6065335e62b[log] [tgz]
authorMimi Zohar <zohar@linux.vnet.ibm.com>Tue Jul 22 10:39:48 2014 -0400
committerKees Cook <keescook@chromium.org>Fri Jul 25 11:47:46 2014 -0700
treedf323588d1026b947e489c5fb9c83299dbcb9689
parent6593d9245bc66e6e3cf4ba6d365a7833110c1402 [diff]
ima: add support for measuring and appraising firmware

The "security: introduce kernel_fw_from_file hook" patch defined a
new security hook to evaluate any loaded firmware that wasn't built
into the kernel.

This patch defines ima_fw_from_file(), which is called from the new
security hook, to measure and/or appraise the loaded firmware's
integrity.

Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
Signed-off-by: Kees Cook <keescook@chromium.org>
8 files changed
tree: df323588d1026b947e489c5fb9c83299dbcb9689
  1. arch/
  2. block/
  3. crypto/
  4. Documentation/
  5. drivers/
  6. firmware/
  7. fs/
  8. include/
  9. init/
  10. ipc/
  11. kernel/
  12. lib/
  13. mm/
  14. net/
  15. samples/
  16. scripts/
  17. security/
  18. sound/
  19. tools/
  20. usr/
  21. virt/
  22. .gitignore
  23. .mailmap
  24. COPYING
  25. CREDITS
  26. Kbuild
  27. Kconfig
  28. MAINTAINERS
  29. Makefile
  30. README
  31. REPORTING-BUGS