Home
last modified time | relevance | path

Searched refs:modsig (Results 1 - 16 of 16) sorted by relevance

/kernel/linux/linux-5.10/security/integrity/ima/
H A Dima_modsig.c18 struct modsig { struct
23 /* This digest will go in the 'd-modsig' field of the IMA template. */
36 * ima_read_modsig - Read modsig from buf.
41 struct modsig **modsig) in ima_read_modsig()
45 struct modsig *hdr; in ima_read_modsig()
85 *modsig = hdr; in ima_read_modsig()
92 * @modsig: parsed module signature
96 * Since the modsig is part of the file contents, the hash used in its signature
100 void ima_collect_modsig(struct modsig *modsi argument
40 ima_read_modsig(enum ima_hooks func, const void *buf, loff_t buf_len, struct modsig **modsig) ima_read_modsig() argument
119 ima_modsig_verify(struct key *keyring, const struct modsig *modsig) ima_modsig_verify() argument
125 ima_get_modsig_digest(const struct modsig *modsig, enum hash_algo *algo, const u8 **digest, u32 *digest_size) ima_get_modsig_digest() argument
135 ima_get_raw_modsig(const struct modsig *modsig, const void **data, u32 *data_len) ima_get_raw_modsig() argument
144 ima_free_modsig(struct modsig *modsig) ima_free_modsig() argument
[all...]
H A Dima.h69 const struct modsig *modsig; member
228 struct modsig;
262 enum hash_algo algo, struct modsig *modsig);
266 int xattr_len, const struct modsig *modsig, int pcr,
309 const struct modsig *modsig, int pcr);
314 int xattr_len, const struct modsig *modsi
325 ima_check_blacklist(struct integrity_iint_cache *iint, const struct modsig *modsig, int pcr) ima_check_blacklist() argument
331 ima_appraise_measurement(enum ima_hooks func, struct integrity_iint_cache *iint, struct file *file, const unsigned char *filename, struct evm_ima_xattr_data *xattr_value, int xattr_len, const struct modsig *modsig) ima_appraise_measurement() argument
384 ima_read_modsig(enum ima_hooks func, const void *buf, loff_t buf_len, struct modsig **modsig) ima_read_modsig() argument
390 ima_collect_modsig(struct modsig *modsig, const void *buf, loff_t size) ima_collect_modsig() argument
395 ima_get_modsig_digest(const struct modsig *modsig, enum hash_algo *algo, const u8 **digest, u32 *digest_size) ima_get_modsig_digest() argument
402 ima_get_raw_modsig(const struct modsig *modsig, const void **data, u32 *data_len) ima_get_raw_modsig() argument
408 ima_free_modsig(struct modsig *modsig) ima_free_modsig() argument
[all...]
H A Dima_api.c211 enum hash_algo algo, struct modsig *modsig) in ima_collect_measurement()
227 * Always collect the modsig, because IMA might have already collected in ima_collect_measurement()
228 * the file digest without collecting the modsig in a previous in ima_collect_measurement()
231 if (modsig) in ima_collect_measurement()
232 ima_collect_modsig(modsig, buf, size); in ima_collect_measurement()
304 int xattr_len, const struct modsig *modsig, int pcr, in ima_store_measurement()
317 .modsig = modsig }; in ima_store_measurement()
209 ima_collect_measurement(struct integrity_iint_cache *iint, struct file *file, void *buf, loff_t size, enum hash_algo algo, struct modsig *modsig) ima_collect_measurement() argument
301 ima_store_measurement(struct integrity_iint_cache *iint, struct file *file, const unsigned char *filename, struct evm_ima_xattr_data *xattr_value, int xattr_len, const struct modsig *modsig, int pcr, struct ima_template_desc *template_desc) ima_store_measurement() argument
[all...]
H A Dima_appraise.c298 * modsig_verify - verify modsig signature
304 static int modsig_verify(enum ima_hooks func, const struct modsig *modsig, in modsig_verify() argument
309 rc = integrity_modsig_verify(INTEGRITY_KEYRING_IMA, modsig); in modsig_verify()
313 modsig); in modsig_verify()
333 const struct modsig *modsig, int pcr) in ima_check_blacklist()
343 if (iint->flags & IMA_MODSIG_ALLOWED && modsig) { in ima_check_blacklist()
344 ima_get_modsig_digest(modsig, &hash_algo, &digest, &digestsize); in ima_check_blacklist()
368 int xattr_len, const struct modsig *modsi in ima_appraise_measurement()
332 ima_check_blacklist(struct integrity_iint_cache *iint, const struct modsig *modsig, int pcr) ima_check_blacklist() argument
364 ima_appraise_measurement(enum ima_hooks func, struct integrity_iint_cache *iint, struct file *file, const unsigned char *filename, struct evm_ima_xattr_data *xattr_value, int xattr_len, const struct modsig *modsig) ima_appraise_measurement() argument
[all...]
H A Dima_main.c210 struct modsig *modsig = NULL; in process_measurement() local
329 * Read the appended modsig if allowed by the policy, and allow in process_measurement()
334 rc = ima_read_modsig(func, buf, size, &modsig); in process_measurement()
344 rc = ima_collect_measurement(iint, file, buf, size, hash_algo, modsig); in process_measurement()
353 xattr_value, xattr_len, modsig, pcr, in process_measurement()
356 rc = ima_check_blacklist(iint, modsig, pcr); in process_measurement()
361 xattr_len, modsig); in process_measurement()
379 ima_free_modsig(modsig); in process_measurement()
H A Dima_template_lib.c359 if (!event_data->modsig) in ima_eventdigest_modsig_init()
370 rc = ima_get_modsig_digest(event_data->modsig, &hash_algo, in ima_eventdigest_modsig_init()
473 if (!event_data->modsig) in ima_eventmodsig_init()
477 * modsig is a runtime structure containing pointers. Get its raw data in ima_eventmodsig_init()
480 rc = ima_get_raw_modsig(event_data->modsig, &data, &data_len); in ima_eventmodsig_init()
/kernel/linux/linux-6.6/security/integrity/ima/
H A Dima_modsig.c18 struct modsig { struct
23 /* This digest will go in the 'd-modsig' field of the IMA template. */
36 * ima_read_modsig - Read modsig from buf.
41 struct modsig **modsig) in ima_read_modsig()
45 struct modsig *hdr; in ima_read_modsig()
85 *modsig = hdr; in ima_read_modsig()
92 * @modsig: parsed module signature
96 * Since the modsig is part of the file contents, the hash used in its signature
100 void ima_collect_modsig(struct modsig *modsi argument
40 ima_read_modsig(enum ima_hooks func, const void *buf, loff_t buf_len, struct modsig **modsig) ima_read_modsig() argument
119 ima_modsig_verify(struct key *keyring, const struct modsig *modsig) ima_modsig_verify() argument
125 ima_get_modsig_digest(const struct modsig *modsig, enum hash_algo *algo, const u8 **digest, u32 *digest_size) ima_get_modsig_digest() argument
135 ima_get_raw_modsig(const struct modsig *modsig, const void **data, u32 *data_len) ima_get_raw_modsig() argument
144 ima_free_modsig(struct modsig *modsig) ima_free_modsig() argument
[all...]
H A Dima.h68 const struct modsig *modsig; member
231 struct modsig;
266 enum hash_algo algo, struct modsig *modsig);
270 int xattr_len, const struct modsig *modsig, int pcr,
316 const struct modsig *modsig, int pcr);
321 int xattr_len, const struct modsig *modsi
333 ima_check_blacklist(struct integrity_iint_cache *iint, const struct modsig *modsig, int pcr) ima_check_blacklist() argument
339 ima_appraise_measurement(enum ima_hooks func, struct integrity_iint_cache *iint, struct file *file, const unsigned char *filename, struct evm_ima_xattr_data *xattr_value, int xattr_len, const struct modsig *modsig) ima_appraise_measurement() argument
394 ima_read_modsig(enum ima_hooks func, const void *buf, loff_t buf_len, struct modsig **modsig) ima_read_modsig() argument
400 ima_collect_modsig(struct modsig *modsig, const void *buf, loff_t size) ima_collect_modsig() argument
405 ima_get_modsig_digest(const struct modsig *modsig, enum hash_algo *algo, const u8 **digest, u32 *digest_size) ima_get_modsig_digest() argument
412 ima_get_raw_modsig(const struct modsig *modsig, const void **data, u32 *data_len) ima_get_raw_modsig() argument
418 ima_free_modsig(struct modsig *modsig) ima_free_modsig() argument
[all...]
H A Dima_api.c242 enum hash_algo algo, struct modsig *modsig) in ima_collect_measurement()
256 * Always collect the modsig, because IMA might have already collected in ima_collect_measurement()
257 * the file digest without collecting the modsig in a previous in ima_collect_measurement()
260 if (modsig) in ima_collect_measurement()
261 ima_collect_modsig(modsig, buf, size); in ima_collect_measurement()
344 int xattr_len, const struct modsig *modsig, int pcr, in ima_store_measurement()
357 .modsig = modsig }; in ima_store_measurement()
240 ima_collect_measurement(struct integrity_iint_cache *iint, struct file *file, void *buf, loff_t size, enum hash_algo algo, struct modsig *modsig) ima_collect_measurement() argument
341 ima_store_measurement(struct integrity_iint_cache *iint, struct file *file, const unsigned char *filename, struct evm_ima_xattr_data *xattr_value, int xattr_len, const struct modsig *modsig, int pcr, struct ima_template_desc *template_desc) ima_store_measurement() argument
[all...]
H A Dima_appraise.c412 * modsig_verify - verify modsig signature
418 static int modsig_verify(enum ima_hooks func, const struct modsig *modsig, in modsig_verify() argument
423 rc = integrity_modsig_verify(INTEGRITY_KEYRING_IMA, modsig); in modsig_verify()
427 modsig); in modsig_verify()
447 const struct modsig *modsig, int pcr) in ima_check_blacklist()
457 if (iint->flags & IMA_MODSIG_ALLOWED && modsig) { in ima_check_blacklist()
458 ima_get_modsig_digest(modsig, &hash_algo, &digest, &digestsize); in ima_check_blacklist()
484 int xattr_len, const struct modsig *modsi in ima_appraise_measurement()
446 ima_check_blacklist(struct integrity_iint_cache *iint, const struct modsig *modsig, int pcr) ima_check_blacklist() argument
480 ima_appraise_measurement(enum ima_hooks func, struct integrity_iint_cache *iint, struct file *file, const unsigned char *filename, struct evm_ima_xattr_data *xattr_value, int xattr_len, const struct modsig *modsig) ima_appraise_measurement() argument
[all...]
H A Dima_main.c220 struct modsig *modsig = NULL; in process_measurement() local
344 * Read the appended modsig if allowed by the policy, and allow in process_measurement()
349 rc = ima_read_modsig(func, buf, size, &modsig); in process_measurement()
359 rc = ima_collect_measurement(iint, file, buf, size, hash_algo, modsig); in process_measurement()
368 xattr_value, xattr_len, modsig, pcr, in process_measurement()
371 rc = ima_check_blacklist(iint, modsig, pcr); in process_measurement()
376 xattr_len, modsig); in process_measurement()
404 ima_free_modsig(modsig); in process_measurement()
H A Dima_template_lib.c456 if (!event_data->modsig) in ima_eventdigest_modsig_init()
467 rc = ima_get_modsig_digest(event_data->modsig, &hash_algo, in ima_eventdigest_modsig_init()
573 if (!event_data->modsig) in ima_eventmodsig_init()
577 * modsig is a runtime structure containing pointers. Get its raw data in ima_eventmodsig_init()
580 rc = ima_get_raw_modsig(event_data->modsig, &data, &data_len); in ima_eventmodsig_init()
/kernel/linux/linux-5.10/security/integrity/
H A Dintegrity.h160 struct modsig;
166 int integrity_modsig_verify(unsigned int id, const struct modsig *modsig);
182 const struct modsig *modsig) in integrity_modsig_verify()
213 int ima_modsig_verify(struct key *keyring, const struct modsig *modsig);
216 const struct modsig *modsig) in ima_modsig_verify()
181 integrity_modsig_verify(unsigned int id, const struct modsig *modsig) integrity_modsig_verify() argument
215 ima_modsig_verify(struct key *keyring, const struct modsig *modsig) ima_modsig_verify() argument
H A Ddigsig.c85 int integrity_modsig_verify(const unsigned int id, const struct modsig *modsig) in integrity_modsig_verify() argument
93 return ima_modsig_verify(keyring, modsig); in integrity_modsig_verify()
/kernel/linux/linux-6.6/security/integrity/
H A Dintegrity.h194 struct modsig;
200 int integrity_modsig_verify(unsigned int id, const struct modsig *modsig);
216 const struct modsig *modsig) in integrity_modsig_verify()
247 int ima_modsig_verify(struct key *keyring, const struct modsig *modsig);
250 const struct modsig *modsig) in ima_modsig_verify()
215 integrity_modsig_verify(unsigned int id, const struct modsig *modsig) integrity_modsig_verify() argument
249 ima_modsig_verify(struct key *keyring, const struct modsig *modsig) ima_modsig_verify() argument
H A Ddigsig.c87 int integrity_modsig_verify(const unsigned int id, const struct modsig *modsig) in integrity_modsig_verify() argument
95 return ima_modsig_verify(keyring, modsig); in integrity_modsig_verify()

Completed in 12 milliseconds