Google Git
Sign in
kernel / pub / scm / linux / kernel / git / zohar / linux-integrity / fd008ff42477ecca858d7ddf5d71a7613fb3c851
commitfd008ff42477ecca858d7ddf5d71a7613fb3c851[log] [tgz]
authorYuqiong Sun <suny@us.ibm.com>Fri Sep 04 10:39:41 2015 -0400
committerMimi Zohar <zohar@linux.vnet.ibm.com>Sun Jul 09 19:38:20 2017 -0400
tree0e6ba42925658c77bcb054f19385ccc7b51a5f31
parenta5552107ac62ae601769e29fee5fc5ad6299f7db [diff]
ima: Add appraisal support to IMA namespace

Enable each IMA namespace to appraise independently according to
their own appraisal policy.  Keys used to check the signature are
stored on a per-namespace IMA keyring.  Appraisal will only check
against keys on the namespace's keyring, but not recursively down
to the native.  Native is responsible for controlling what and when
keys can be loaded on a namespace's IMA keyring.

Signed-off-by: Yuqiong Sun <suny@us.ibm.com>
6 files changed
tree: 0e6ba42925658c77bcb054f19385ccc7b51a5f31
  1. arch/
  2. block/
  3. certs/
  4. crypto/
  5. Documentation/
  6. drivers/
  7. firmware/
  8. fs/
  9. include/
  10. init/
  11. ipc/
  12. kernel/
  13. lib/
  14. mm/
  15. net/
  16. samples/
  17. scripts/
  18. security/
  19. sound/
  20. tools/
  21. usr/
  22. virt/
  23. .cocciconfig
  24. .get_maintainer.ignore
  25. .gitattributes
  26. .gitignore
  27. .mailmap
  28. COPYING
  29. CREDITS
  30. Kbuild
  31. Kconfig
  32. MAINTAINERS
  33. Makefile
  34. README