[PATCH] security/ima: use fs method to read integrity data

Christoph Hellwig hch at lst.de
Thu May 11 08:16:59 UTC 2017


On Wed, May 10, 2017 at 05:00:47PM -0400, Mimi Zohar wrote:
> Without i_version support the file is measured/appraised once.  With
> i_version support it will be re-measured/appraised. As a file system
> is mounted/remounted, some sort of message should be emitted
> indicating whether i_version is supported.

You can check for (sb->s_flags & MS_I_VERSION) to see if it's supported.

>  That does not imply that
> there is no value in measuring/appraising the file only once.
> 
> With this patch, the "opt-in" behavior, is only for measurement, not
> appraisal.  For appraisal, it still enforces file hash/signature
> verification, as it should, based on policy.
> 
> Christoph, could we call ->read_iter() in the NULL case as Boaz
> suggested?

No - that way you get deadlocks for every fs that uses i_rwsem in
->read_iter, which is perfectly valid behavior.

We can set ->integrity_read for every file system that's been tested
with IMA, though.  Do you have a list of known-good file systems?
--
To unsubscribe from this list: send the line "unsubscribe linux-security-module" in
the body of a message to majordomo at vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html



More information about the Linux-security-module-archive mailing list