diff options
author | Mimi Zohar <zohar@linux.vnet.ibm.com> | 2015-11-19 18:39:22 +0100 |
---|---|---|
committer | Mimi Zohar <zohar@linux.vnet.ibm.com> | 2016-02-21 15:06:13 +0100 |
commit | c6af8efe97d87fa308eb1bbd0cf4feb820a4d622 (patch) | |
tree | 7a7ea8e33a28b7b47ec7c6fa16e14c6838b269ff /Documentation/pnp.txt | |
parent | module: replace copy_module_from_fd with kernel version (diff) | |
download | linux-c6af8efe97d87fa308eb1bbd0cf4feb820a4d622.tar.xz linux-c6af8efe97d87fa308eb1bbd0cf4feb820a4d622.zip |
ima: remove firmware and module specific cached status info
Each time a file is read by the kernel, the file should be re-measured and
the file signature re-appraised, based on policy. As there is no need to
preserve the status information, this patch replaces the firmware and
module specific cache status with a generic one named read_file.
This change simplifies adding support for other files read by the kernel.
Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
Acked-by: Petko Manolov <petkan@mip-labs.com>
Acked-by: Dmitry Kasatkin <dmitry.kasatkin@huawei.com>
Diffstat (limited to 'Documentation/pnp.txt')
0 files changed, 0 insertions, 0 deletions