Google Git
Sign in
linux / linux / kernel / git / zohar / linux-integrity / d0120c8d0882aa5ba91b801465ad5a2e1d6412f2
commitd0120c8d0882aa5ba91b801465ad5a2e1d6412f2[log] [tgz]
authorMimi Zohar <zohar@linux.vnet.ibm.com>Sun Aug 14 18:47:08 2016 -0400
committerMimi Zohar <zohar@linux.vnet.ibm.com>Wed Sep 14 21:29:09 2016 -0400
tree6fbabdd1f52fca370ff29b1f57092012c25445ff
parent6ba629dcd200a940e71127762a33340873a369c0 [diff]
ima: define a canonical binary_runtime_measurements list format

The IMA binary_runtime_measurements list is currently in platform native
format.

To allow restoring a measurement list carried across kexec with a
different endianness than the targeted kernel, this patch defines
little-endian as the canonical format.  For big endian systems wanting
to save/restore the measurement list from a system with a different
endianness, a new boot command line parameter named "ima_canonical_fmt"
is defined.

Considerations: use of the "ima_canonical_fmt" boot command line
option will break existing userspace applications on big endian systems
expecting the binary_runtime_measurements list to be in platform native
format.

Changelog v3:
- restore PCR value properly

Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
6 files changed
tree: 6fbabdd1f52fca370ff29b1f57092012c25445ff
  1. arch/
  2. block/
  3. certs/
  4. crypto/
  5. Documentation/
  6. drivers/
  7. firmware/
  8. fs/
  9. include/
  10. init/
  11. ipc/
  12. kernel/
  13. lib/
  14. mm/
  15. net/
  16. samples/
  17. scripts/
  18. security/
  19. sound/
  20. tools/
  21. usr/
  22. virt/
  23. .cocciconfig
  24. .get_maintainer.ignore
  25. .gitignore
  26. .mailmap
  27. COPYING
  28. CREDITS
  29. Kbuild
  30. Kconfig
  31. MAINTAINERS
  32. Makefile
  33. README
  34. REPORTING-BUGS