/linux-master/security/integrity/ima/ |
H A D | ima_modsig.c | 18 struct modsig { struct 23 /* This digest will go in the 'd-modsig' field of the IMA template. */ 36 * ima_read_modsig - Read modsig from buf. 41 struct modsig **modsig) 45 struct modsig *hdr; 85 *modsig = hdr; 92 * @modsig: parsed module signature 96 * Since the modsig is part of the file contents, the hash used in its signature 100 void ima_collect_modsig(struct modsig *modsi argument 40 ima_read_modsig(enum ima_hooks func, const void *buf, loff_t buf_len, struct modsig **modsig) argument 119 ima_modsig_verify(struct key *keyring, const struct modsig *modsig) argument 125 ima_get_modsig_digest(const struct modsig *modsig, enum hash_algo *algo, const u8 **digest, u32 *digest_size) argument 135 ima_get_raw_modsig(const struct modsig *modsig, const void **data, u32 *data_len) argument 144 ima_free_modsig(struct modsig *modsig) argument [all...] |
H A D | ima.h | 76 const struct modsig *modsig; member in struct:ima_event_data 344 struct modsig; 379 struct modsig *modsig); 383 int xattr_len, const struct modsig *modsig, int pcr, 429 const struct modsig *modsig, int pcr); 433 int xattr_len, const struct modsig *modsi 446 ima_check_blacklist(struct ima_iint_cache *iint, const struct modsig *modsig, int pcr) argument 452 ima_appraise_measurement(enum ima_hooks func, struct ima_iint_cache *iint, struct file *file, const unsigned char *filename, struct evm_ima_xattr_data *xattr_value, int xattr_len, const struct modsig *modsig) argument 510 ima_read_modsig(enum ima_hooks func, const void *buf, loff_t buf_len, struct modsig **modsig) argument 516 ima_collect_modsig(struct modsig *modsig, const void *buf, loff_t size) argument 521 ima_get_modsig_digest(const struct modsig *modsig, enum hash_algo *algo, const u8 **digest, u32 *digest_size) argument 528 ima_get_raw_modsig(const struct modsig *modsig, const void **data, u32 *data_len) argument 534 ima_free_modsig(struct modsig *modsig) argument [all...] |
H A D | ima_api.c | 243 struct modsig *modsig) 259 * Always collect the modsig, because IMA might have already collected 260 * the file digest without collecting the modsig in a previous 263 if (modsig) 264 ima_collect_modsig(modsig, buf, size); 351 int xattr_len, const struct modsig *modsig, int pcr, 364 .modsig = modsig }; 241 ima_collect_measurement(struct ima_iint_cache *iint, struct file *file, void *buf, loff_t size, enum hash_algo algo, struct modsig *modsig) argument 348 ima_store_measurement(struct ima_iint_cache *iint, struct file *file, const unsigned char *filename, struct evm_ima_xattr_data *xattr_value, int xattr_len, const struct modsig *modsig, int pcr, struct ima_template_desc *template_desc) argument [all...] |
H A D | ima_appraise.c | 412 * modsig_verify - verify modsig signature 418 static int modsig_verify(enum ima_hooks func, const struct modsig *modsig, argument 423 rc = integrity_modsig_verify(INTEGRITY_KEYRING_IMA, modsig); 427 modsig); 447 const struct modsig *modsig, int pcr) 457 if (iint->flags & IMA_MODSIG_ALLOWED && modsig) { 458 ima_get_modsig_digest(modsig, &hash_algo, &digest, &digestsize); 483 int xattr_len, const struct modsig *modsi 446 ima_check_blacklist(struct ima_iint_cache *iint, const struct modsig *modsig, int pcr) argument 480 ima_appraise_measurement(enum ima_hooks func, struct ima_iint_cache *iint, struct file *file, const unsigned char *filename, struct evm_ima_xattr_data *xattr_value, int xattr_len, const struct modsig *modsig) argument [all...] |
H A D | ima_main.c | 222 struct modsig *modsig = NULL; local 357 * Read the appended modsig if allowed by the policy, and allow 362 rc = ima_read_modsig(func, buf, size, &modsig); 372 rc = ima_collect_measurement(iint, file, buf, size, hash_algo, modsig); 381 xattr_value, xattr_len, modsig, pcr, 384 rc = ima_check_blacklist(iint, modsig, pcr); 389 xattr_len, modsig); 417 ima_free_modsig(modsig);
|
H A D | ima_template_lib.c | 458 if (!event_data->modsig) 469 rc = ima_get_modsig_digest(event_data->modsig, &hash_algo, 586 if (!event_data->modsig) 590 * modsig is a runtime structure containing pointers. Get its raw data 593 rc = ima_get_raw_modsig(event_data->modsig, &data, &data_len);
|
/linux-master/security/integrity/ |
H A D | integrity.h | 122 struct modsig; 128 int integrity_modsig_verify(unsigned int id, const struct modsig *modsig); 144 const struct modsig *modsig) 175 int ima_modsig_verify(struct key *keyring, const struct modsig *modsig); 178 const struct modsig *modsig) 143 integrity_modsig_verify(unsigned int id, const struct modsig *modsig) argument 177 ima_modsig_verify(struct key *keyring, const struct modsig *modsig) argument
|
H A D | digsig.c | 87 int integrity_modsig_verify(const unsigned int id, const struct modsig *modsig) argument 95 return ima_modsig_verify(keyring, modsig);
|