projects / platform / kernel / linux-exynos.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: d79d72e) | patch
ima: differentiate appraise status only for hook specific rules
authorMimi Zohar <zohar@linux.vnet.ibm.com>
Wed, 5 Dec 2012 20:14:38 +0000 (15:14 -0500)
committerMimi Zohar <zohar@linux.vnet.ibm.com>
Tue, 22 Jan 2013 21:10:39 +0000 (16:10 -0500)
commit5a73fcfa8875a94c2956e7ff8fba54d31a3e2854
tree4f7a55a1f4c7524aaa422fc216717c1c0424d48etree | snapshot
parentd79d72e02485c00b886179538dc8deaffa3be507commit | diff
ima: differentiate appraise status only for hook specific rules

Different hooks can require different methods for appraising a
file's integrity.  As a result, an integrity appraisal status is
cached on a per hook basis.

Only a hook specific rule, requires the inode to be re-appraised.
This patch eliminates unnecessary appraisals.

Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
Signed-off-by: Dmitry Kasatkin <dmitry.kasatkin@intel.com>
security/integrity/ima/ima_main.c diff | blob | history
security/integrity/ima/ima_policy.c diff | blob | history
Domain: System / Kernel;