Google Git
Sign in
linux / linux / kernel / git / zohar / linux-integrity / 8e3558cf3ba560408ecddcae934070fffa891f0c
commit8e3558cf3ba560408ecddcae934070fffa891f0c[log] [tgz]
authorMimi Zohar <zohar@linux.vnet.ibm.com>Wed Dec 30 07:35:30 2015 -0500
committerMimi Zohar <zohar@linux.vnet.ibm.com>Wed Jan 13 09:49:21 2016 -0500
tree30a9b4b4ca1d4cf2b74d76b9898e5a06d9802eb0
parent356f640f6c2c3f594b609ad65eece605ab55ba49 [diff]
module: replace copy_module_from_fd with kernel version

This patch replaces the module copy_module_from_fd() call with the VFS
common kernel_read_file_from_fd() function.  Instead of reading the
kernel module twice, once for measuring/appraising and then loading
the kernel module, the file is read once.

This patch defines a new security hook named security_kernel_read_file(),
which is called before reading the file.  For now, call the module
security hook from security_kernel_read_file until the LSMs have been
converted to use the kernel_read_file hook.

This patch retains the kernel_module_from_file hook, but removes the
security_kernel_module_from_file() function.

Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
11 files changed
tree: 30a9b4b4ca1d4cf2b74d76b9898e5a06d9802eb0
  1. arch/
  2. block/
  3. certs/
  4. crypto/
  5. Documentation/
  6. drivers/
  7. firmware/
  8. fs/
  9. include/
  10. init/
  11. ipc/
  12. kernel/
  13. lib/
  14. mm/
  15. net/
  16. samples/
  17. scripts/
  18. security/
  19. sound/
  20. tools/
  21. usr/
  22. virt/
  23. .get_maintainer.ignore
  24. .gitignore
  25. .mailmap
  26. COPYING
  27. CREDITS
  28. Kbuild
  29. Kconfig
  30. MAINTAINERS
  31. Makefile
  32. README
  33. REPORTING-BUGS