Thread (32 messages) 32 messages, 5 authors, 2021-01-06

Re: [PATCH v9 4/8] IMA: add policy rule to measure critical data

From: Tushar Sugandhi <hidden>
Date: 2020-12-13 01:22:36
Also in: dm-devel, linux-integrity, lkml, selinux 


On 2020-12-12 11:20 a.m., Tyler Hicks wrote:
On 2020-12-12 10:02:47, Tushar Sugandhi wrote:
quoted
A new IMA policy rule is needed for the IMA hook
ima_measure_critical_data() and the corresponding func CRITICAL_DATA for
measuring the input buffer. The policy rule should ensure the buffer
would get measured only when the policy rule allows the action. The
policy rule should also support the necessary constraints (flags etc.)
for integrity critical buffer data measurements.

Add a policy rule to define the constraints for restricting integrity
critical data measurements.

Signed-off-by: Tushar Sugandhi <redacted>
This looks nice. Thanks for the changes!

Reviewed-by: Tyler Hicks <redacted>

Tyler
Thanks for the detailed review on this series Tyler.
We really appreciate it.

~Tushar
Keyboard shortcuts
hback out one level
jnext message in thread
kprevious message in thread
ldrill in
Escclose help / fold thread tree
?toggle this help