[PATCH v3 19/22] ima: support for kexec image and initramfs
Dave Young
dyoung at redhat.com
Fri Feb 12 04:53:33 PST 2016
Hi, Mimi
> diff --git a/security/integrity/ima/ima.h b/security/integrity/ima/ima.h
> index a5d2592..832e62a 100644
> --- a/security/integrity/ima/ima.h
> +++ b/security/integrity/ima/ima.h
> @@ -147,6 +147,8 @@ enum ima_hooks {
> POST_SETATTR,
> MODULE_CHECK,
> FIRMWARE_CHECK,
> + KEXEC_CHECK,
> + INITRAMFS_CHECK,
KEXEC_CHECK is actually kexec kernel image check, INITRAMFS_CHECK is for
kexec initramfs check, they are both for checking kexec loaded files.
Do you mind a longer id like KEXEC_KERNEL_CHECK and KEXEC_INITRAMFS_CHECK?
> MAX_CHECK
> };
>
Thanks
Dave
More information about the kexec
mailing list