summaryrefslogtreecommitdiffstats
path: root/security/integrity/ima/ima_api.c
diff options
context:
space:
mode:
authorMimi Zohar <zohar@linux.ibm.com>2021-12-28 09:53:14 -0500
committerMimi Zohar <zohar@linux.ibm.com>2022-02-15 11:21:59 -0500
commitaae6ccbd826d26730a6fd9bc01884f0a0a9cbb25 (patch)
tree978973744ca1b7c07dd76ce1afc65a861f069a77 /security/integrity/ima/ima_api.c
parente4e071baea41e43aebd7f17ed1ffceeca6aa9868 (diff)
downloadlinux-stable-aae6ccbd826d26730a6fd9bc01884f0a0a9cbb25.tar.gz
linux-stable-aae6ccbd826d26730a6fd9bc01884f0a0a9cbb25.tar.bz2
linux-stable-aae6ccbd826d26730a6fd9bc01884f0a0a9cbb25.zip
ima: rename IMA_ACTION_FLAGS to IMA_NONACTION_FLAGS
Simple policy rule options, such as fowner, uid, or euid, can be checked immediately, while other policy rule options, such as requiring a file signature, need to be deferred. The 'flags' field in the integrity_iint_cache struct contains the policy action', 'subaction', and non action/subaction. action: measure/measured, appraise/appraised, (collect)/collected, audit/audited subaction: appraise status for each hook (e.g. file, mmap, bprm, read, creds) non action/subaction: deferred policy rule options and state Rename the IMA_ACTION_FLAGS to IMA_NONACTION_FLAGS. Reviewed-by: Stefan Berger <stefanb@linux.ibm.com> Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
Diffstat (limited to 'security/integrity/ima/ima_api.c')
0 files changed, 0 insertions, 0 deletions
generated by cgit v1.2.3 (git 2.25.1) at 2024-06-30 18:57:30 +0000