[PATCH 3/4] ima: use existing read file operation method to calculate file hash

[PATCH 0/4] define new fs integrity_read method · Mimi Zohar <hidden> · 2017-06-09
[PATCH 1/4] ima: use fs method to read integrity data · Mimi Zohar <hidden> · 2017-06-09
Re: [PATCH 1/4] ima: use fs method to read integrity data · kbuild test robot <hidden> · 2017-06-15
Re: [PATCH 1/4] ima: use fs method to read integrity data · Christoph Hellwig <hch@lst.de> · 2017-06-16
[PATCH 2/4] tmpfs: define integrity_read file operation method · Mimi Zohar <hidden> · 2017-06-09
[PATCH 3/4] ima: use existing read file operation method to calculate file hash · Mimi Zohar <hidden> · 2017-06-09
Re: [PATCH 3/4] ima: use existing read file operation method to calculate file hash · Christoph Hellwig <hch@lst.de> · 2017-06-13
Re: [PATCH 3/4] ima: use existing read file operation method to calculate file hash · Mimi Zohar <hidden> · 2017-06-13
Re: [PATCH 3/4] ima: use existing read file operation method to calculate file hash · Christoph Hellwig <hch@lst.de> · 2017-06-13
Re: [PATCH 3/4] ima: use existing read file operation method to calculate file hash · Mimi Zohar <hidden> · 2017-06-13
Re: [PATCH 3/4] ima: use existing read file operation method to calculate file hash · Christoph Hellwig <hch@lst.de> · 2017-06-14
Re: [Linux-ima-devel] [PATCH 3/4] ima: use existing read file operation method to calculate file hash · Dmitry Kasatkin <dmitry.kasatkin@gmail.com> · 2017-07-10
Re: [Linux-ima-devel] [PATCH 3/4] ima: use existing read file operation method to calculate file hash · Mimi Zohar <hidden> · 2017-07-10
[PATCH 4/4] ima: use read_iter (generic_file_read_iter) to calculate file hash · Mimi Zohar <hidden> · 2017-06-09
Re: [Linux-ima-devel] [PATCH 4/4] ima: use read_iter (generic_file_read_iter) to calculate file hash · Dmitry Kasatkin <dmitry.kasatkin@gmail.com> · 2017-07-10
Re: [Linux-ima-devel] [PATCH 4/4] ima: use read_iter (generic_file_read_iter) to calculate file hash · Mimi Zohar <hidden> · 2017-07-10
[PATCH] sample xfstests IMA-appraisal test module · Mimi Zohar <hidden> · 2017-06-09
[PATCH] sample xfstests IMA-appraisal test module (resending) · Mimi Zohar <hidden> · 2017-06-09
Re: [PATCH] sample xfstests IMA-appraisal test module (resending) · Christoph Hellwig <hch@lst.de> · 2017-06-13

From: hch@lst.de (Christoph Hellwig)
Date: 2017-06-14 07:03:27
Also in: linux-fsdevel

On Tue, Jun 13, 2017 at 11:07:29AM -0400, Mimi Zohar wrote:

The bigger problem is that files that were previously measured, might
now not be measured, without any indication in the audit logs or the
IMA measurement list.

And that's exactly what I've been preaching for a long time - you
need to decide on what your requirements for IMA are and check
for them when enabling it, not just have things sort of work
or not at runtime.
--
To unsubscribe from this list: send the line "unsubscribe linux-security-module" in
the body of a message to majordomo at vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help