[PATCH v7 7/8] IMA: define a builtin critical data measurement policy

Tushar Sugandhi tusharsu at linux.microsoft.com
Fri Dec 11 01:30:25 UTC 2020



On 2020-12-10 3:22 p.m., Tyler Hicks wrote:
> On 2020-12-09 11:42:11, Tushar Sugandhi wrote:
>> From: Lakshmi Ramasubramanian <nramas at linux.microsoft.com>
>>
>> Define a new critical data builtin policy to allow measuring
>> early kernel integrity critical data before a custom IMA policy
>> is loaded.
>>
>> Add critical data to built-in IMA rules if the kernel command line
>> contains "ima_policy=critical_data".
>>
>> Update the documentation on kernel parameters to document
>> the new critical data builtin policy.
>>
>> Signed-off-by: Lakshmi Ramasubramanian <nramas at linux.microsoft.com>
> 
> Reviewed-by: Tyler Hicks <tyhicks at linux.microsoft.com>
> 
> Tyler
> 
Thanks for the review.

~Tushar



More information about the Linux-security-module-archive mailing list