projects / linux-2.6-block.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
ima: define an init_module critical data record
[linux-2.6-block.git] / security / integrity / ima / ima_main.c
diff --git a/security/integrity/ima/ima_main.c b/security/integrity/ima/ima_main.c
index c84e8c55333d7531aac48f1e05776c7d1469ed1c..4b4348d681a67cbeb514b54bdd9b12a60eec9d11 100644 (file)
--- a/security/integrity/ima/ima_main.c
+++ b/security/integrity/ima/ima_main.c
@@ -902,6 +902,13 @@ static int ima_post_load_data(char *buf, loff_t size,
                return 0;
        }
 
+       /*
+        * Measure the init_module syscall buffer containing the ELF image.
+        */
+       if (load_id == LOADING_MODULE)
+               ima_measure_critical_data("modules", "init_module",
+                                         buf, size, true, NULL, 0);
+
        return 0;
 }
 
Linux 6.x block layer and io_uring tree(s)