On 02.05.2023 16:36, Stefan Berger wrote:
On 3/29/23 04:58, Denis Semakin wrote:
This patch allows to read measurement lists of child namespaces
form init IMA namespace in order to obtain the values of hashes
to perform operations and procedures of remote attestation.
I supposed this type of support would go onto the next stage (current
posted
'stage' is auditing support, next would be measurement support)?
Yes. I agree.
Stefan
Denis Semakin (1):
ima: obtain child measurement list from init namespace
security/integrity/ima/ima.h | 1 +
security/integrity/ima/ima_fs.c | 164 ++++++++++++++++++++++-
security/integrity/ima/ima_init_ima_ns.c | 2 +
security/integrity/ima/ima_ns.c | 31 +++++
4 files changed, 193 insertions(+), 5 deletions(-)
