函数逻辑报告

Linux Kernel

v5.5.9

Brick Technologies Co., Ltd

Source Code:security\integrity\ima\ima_fs.c Create Date:2022-07-27 21:57:47
Last Modify:2020-03-12 14:18:49 Copyright©Brick
首页 函数Tree
注解内核,赢得工具下载SCCTEnglish

函数名称:ma_release_policy - start using the new measure policy rules.* Initially, ima_measure points to the default policy rules, now* point to the new policy rules, and remove the securityfs policy file,* assuming a valid policy.

函数原型:static int ima_release_policy(struct inode *inode, struct file *file)

返回类型:int

参数:

类型参数名称
struct inode *inode
struct file *file
411  cause等于如果valid_policy则"completed"否则"failed"
413  如果f_flags按位与O_ACCMODE的值恒等于O_RDONLY则返回:seq_release(inode, file)
416  如果valid_policyima_check_policy()小于0则
417  cause等于"failed"
418  valid_policy等于0
421  打印信息("policy update %s\n", cause)
422  integrity_audit_msg(Integrity enable status , NULL, NULL, "policy_update", cause, !valid_policy, 0)
425  如果非valid_policy
426  ima_delete_rules()
427  valid_policy等于1
428  lear_bit - Clears a bit in memory*@nr: Bit to clear*@addr: Address to start counting from* This is a relaxed atomic operation (no implied memory barriers).
429  返回:0
432  ima_update_policy()
434  securityfs_remove - removes a file or directory from the securityfs filesystem*@dentry: a pointer to a the dentry of the file or directory to be removed
435  ima_policy = NULL
441  返回:0