Dmitry Kasatkin 2faa6ef3b2 ima: provide 'ima_appraise=log' kernel option ... The kernel boot parameter "ima_appraise" currently defines 'off', 'enforce' and 'fix' modes. When designing a policy and labeling the system, access to files are either blocked in the default 'enforce' mode or automatically fixed in the 'fix' mode. It is beneficial to be able to run the system in a logging only mode, without fixing it, in order to properly analyze the system. This patch adds a 'log' mode to run the system in a permissive mode and log the appraisal results. Signed-off-by: Dmitry Kasatkin <d.kasatkin@samsung.com> Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>		2014-09-17 16:14:23 -04:00
..
Kconfig	integrity: base integrity subsystem kconfig options on integrity	2014-09-09 10:28:56 -04:00
Makefile	ima: define template fields library and new helpers	2013-10-25 17:17:05 -04:00
ima.h	ima: provide 'ima_appraise=log' kernel option	2014-09-17 16:14:23 -04:00
ima_api.c	ima: remove usage of filename parameter	2014-09-09 10:28:52 -04:00
ima_appraise.c	ima: provide 'ima_appraise=log' kernel option	2014-09-17 16:14:23 -04:00
ima_crypto.c	ima: add missing '__init' keywords	2014-09-09 10:28:50 -04:00
ima_fs.c	integrity: fix checkpatch errors	2014-03-07 12:15:45 -05:00
ima_init.c	ima: move keyring initialization to ima_init()	2014-09-17 16:10:59 -04:00
ima_main.c	ima: move keyring initialization to ima_init()	2014-09-17 16:10:59 -04:00
ima_policy.c	ima: add support for measuring and appraising firmware	2014-07-25 11:47:46 -07:00
ima_queue.c	integrity: fix checkpatch errors	2014-03-07 12:15:45 -05:00
ima_template.c	ima: initialize only required template	2014-09-09 10:28:54 -04:00
ima_template_lib.c	ima: reduce memory usage when a template containing the n field is used	2014-03-07 11:32:30 -05:00
ima_template_lib.h	ima: extend the measurement list to include the file signature	2013-10-31 20:19:35 -04:00