[Linux-ima-user] [Help]How to start learning IMA source code?

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

Hi,everyone:

I'm a student in college and I'm trying to leaning IMA in linux. I have
read the the part about integrity measurement in [1].

Now I suffer some problem when I start to reading the IMA's  source code in
Linux 2.6.30,(I consider a previous version maybe simple and more suitable
to start learning). I can easily understand the relations between
ima_template_entry and ima_queue_entry, But I don't understand the use of
iint. I am also confused the digests and their relations. Why we need so
much digest (If I'm right ,There is four
digest,ima->digest,ima->template.digest,iint->digest,and one in PCR). I
thought I should figure this out so I can understand how IMA assert one
file is not safe by compare digests.

These is just a part of my confusion but it's most essential for me now.
I'm not seek someone who can answer every question from me, but I search
the wiki of IMA and Google, It's turn out there is too few doc to introduce
the IMA in Linux. So, if there anyone who can give me some guide, It will
be really helpful.

Thanks all of you.

[1]. TCG, "Specification Architecture Overview, Version 1.4."

-- 
Best Regards.
Youren Shen.