Function report |
Source Code:security\integrity\ima\ima_appraise.c |
Create Date:2022-07-28 19:59:24 |
| Last Modify:2020-03-12 14:18:49 | Copyright©Brick |
| home page | Tree |
| Annotation kernel can get tool activity | Download SCCT | Chinese |
Name:ma_check_blacklist - determine if the binary is blacklisted.* Add the hash of the blacklisted binary to the measurement list, based* on policy.* Returns -EPERM if the hash is blacklisted.
Proto:int ima_check_blacklist(struct integrity_iint_cache *iint, const struct modsig *modsig, int pcr)
Type:int
Parameter:
| Type | Parameter | Name |
|---|---|---|
| struct integrity_iint_cache * | iint | |
| const struct modsig * | modsig | |
| int | pcr |
| 320 | digestsize = 0 |
| 321 | rc = 0 |
| 323 | If Not (flags & IMA_CHECK_BLACKLIST) Then Return 0 |
| 326 | If flags & IMA_MODSIG_ALLOWED && modsig Then |
| 327 | ima_get_modsig_digest(modsig, & hash_algo, & digest, & digestsize) |
| 329 | rc = is_binary_blacklisted(digest, digestsize) |
| 330 | If rc == -EPERM && flags & action cache flags Then process_buffer_measurement - Measure the buffer to ima log |
| 336 | Return rc |
| Name | Describe |
|---|---|
| process_measurement |
| Source code conversion tool public plug-in interface | X |
|---|---|
| Support c/c++/esqlc/java Oracle/Informix/Mysql Plug-in can realize: logical Report Code generation and batch code conversion |