Re: [PATCH v24 04/25] IMA: avoid label collisions with stacked LSMs

(off-list ancestor, not in this archive)
[PATCH v24 00/25] LSM: Module stacking for AppArmor · Casey Schaufler <casey@schaufler-ca.com> · 2021-01-27
[PATCH v24 12/25] LSM: Use lsmblob in security_cred_getsecid · Casey Schaufler <casey@schaufler-ca.com> · 2021-01-26
[PATCH v24 03/25] LSM: provide lsm name and id slot mappings · Casey Schaufler <casey@schaufler-ca.com> · 2021-01-26
[PATCH v24 13/25] IMA: Change internal interfaces to use lsmblobs · Casey Schaufler <casey@schaufler-ca.com> · 2021-01-26
[PATCH v24 04/25] IMA: avoid label collisions with stacked LSMs · Casey Schaufler <casey@schaufler-ca.com> · 2021-01-26
Re: [PATCH v24 04/25] IMA: avoid label collisions with stacked LSMs · Mimi Zohar <zohar@linux.ibm.com> · 2021-02-14
Re: [PATCH v24 04/25] IMA: avoid label collisions with stacked LSMs · Casey Schaufler <casey@schaufler-ca.com> · 2021-02-16
Re: [PATCH v24 04/25] IMA: avoid label collisions with stacked LSMs · Casey Schaufler <casey@schaufler-ca.com> · 2021-02-22
Re: [PATCH v24 04/25] IMA: avoid label collisions with stacked LSMs · Mimi Zohar <zohar@linux.ibm.com> · 2021-02-23
[PATCH v24 14/25] LSM: Specify which LSM to display · Casey Schaufler <casey@schaufler-ca.com> · 2021-01-26
[PATCH v24 05/25] LSM: Use lsmblob in security_audit_rule_match · Casey Schaufler <casey@schaufler-ca.com> · 2021-01-26
[PATCH v24 15/25] LSM: Ensure the correct LSM context releaser · Casey Schaufler <casey@schaufler-ca.com> · 2021-01-26
[PATCH v24 06/25] LSM: Use lsmblob in security_kernel_act_as · Casey Schaufler <casey@schaufler-ca.com> · 2021-01-26
[PATCH v24 07/25] LSM: Use lsmblob in security_secctx_to_secid · Casey Schaufler <casey@schaufler-ca.com> · 2021-01-27
[PATCH v24 16/25] LSM: Use lsmcontext in security_secid_to_secctx · Casey Schaufler <casey@schaufler-ca.com> · 2021-01-27
[PATCH v24 17/25] LSM: Use lsmcontext in security_inode_getsecctx · Casey Schaufler <casey@schaufler-ca.com> · 2021-01-27
[PATCH v24 18/25] LSM: security_secid_to_secctx in netlink netfilter · Casey Schaufler <casey@schaufler-ca.com> · 2021-01-27
[PATCH v24 09/25] LSM: Use lsmblob in security_ipc_getsecid · Casey Schaufler <casey@schaufler-ca.com> · 2021-01-27
[PATCH v24 10/25] LSM: Use lsmblob in security_task_getsecid · Casey Schaufler <casey@schaufler-ca.com> · 2021-01-27
[PATCH v24 11/25] LSM: Use lsmblob in security_inode_getsecid · Casey Schaufler <casey@schaufler-ca.com> · 2021-01-27
[PATCH v24 19/25] NET: Store LSM netlabel data in a lsmblob · Casey Schaufler <casey@schaufler-ca.com> · 2021-01-27
[PATCH v24 01/25] LSM: Infrastructure management of the sock security · Casey Schaufler <casey@schaufler-ca.com> · 2021-01-27
[PATCH v24 02/25] LSM: Add the lsmblob data structure. · Casey Schaufler <casey@schaufler-ca.com> · 2021-01-27
[PATCH v24 20/25] LSM: Verify LSM display sanity in binder · Casey Schaufler <casey@schaufler-ca.com> · 2021-01-27
[PATCH v24 21/25] audit: add support for non-syscall auxiliary records · Casey Schaufler <casey@schaufler-ca.com> · 2021-01-27
Re: [PATCH v24 21/25] audit: add support for non-syscall auxiliary records · Richard Guy Briggs <hidden> · 2021-01-27
Re: [PATCH v24 21/25] audit: add support for non-syscall auxiliary records · Casey Schaufler <casey@schaufler-ca.com> · 2021-01-27
Re: [PATCH v24 21/25] audit: add support for non-syscall auxiliary records · Paul Moore <paul@paul-moore.com> · 2021-01-27
Re: [PATCH v24 21/25] audit: add support for non-syscall auxiliary records · Richard Guy Briggs <hidden> · 2021-01-27
[PATCH v24 23/25] Audit: Add a new record for multiple object LSM attributes · Casey Schaufler <casey@schaufler-ca.com> · 2021-01-27
[PATCH v24 22/25] Audit: Add new record for multiple process LSM attributes · Casey Schaufler <casey@schaufler-ca.com> · 2021-01-27
[PATCH v24 24/25] LSM: Add /proc attr entry for full LSM context · Casey Schaufler <casey@schaufler-ca.com> · 2021-01-27
[PATCH v24 25/25] AppArmor: Remove the exclusive flag · Casey Schaufler <casey@schaufler-ca.com> · 2021-01-27
[PATCH v24 08/25] LSM: Use lsmblob in security_secid_to_secctx · Casey Schaufler <casey@schaufler-ca.com> · 2021-01-27
Re: [PATCH v24 00/25] LSM: Module stacking for AppArmor · Topi Miettinen <hidden> · 2021-02-02
Re: [PATCH v24 00/25] LSM: Module stacking for AppArmor · Casey Schaufler <casey@schaufler-ca.com> · 2021-02-02
Re: [PATCH v24 00/25] LSM: Module stacking for AppArmor · Topi Miettinen <hidden> · 2021-02-02
Re: [PATCH v24 00/25] LSM: Module stacking for AppArmor · Casey Schaufler <casey@schaufler-ca.com> · 2021-02-02

From: Mimi Zohar <zohar@linux.ibm.com>
Date: 2021-02-23 00:28:33
Also in: linux-security-module, lkml

On Mon, 2021-02-22 at 15:45 -0800, Casey Schaufler wrote:

quoted hunk ↗ jump to hunk

On 2/14/2021 10:21 AM, Mimi Zohar wrote:

Would these changes match your suggestion?

 security/integrity/ima/ima_policy.c | 24 ++++++++++++------------
 1 file changed, 12 insertions(+), 12 deletions(-)

diff --git a/security/integrity/ima/ima_policy.c b/security/integrity/ima/ima_policy.c
index 9ac673472781..e80956548243 100644
--- a/security/integrity/ima/ima_policy.c
+++ b/security/integrity/ima/ima_policy.c

@@ -78,11 +78,11 @@ struct ima_rule_entry {
 	bool (*uid_op)(kuid_t, kuid_t);    /* Handlers for operators       */
 	bool (*fowner_op)(kuid_t, kuid_t); /* uid_eq(), uid_gt(), uid_lt() */
 	int pcr;
+	int which_lsm; /* which of the rules to use */
 	struct {
 		void *rules[LSMBLOB_ENTRIES]; /* LSM file metadata specific */

If each IMA policy rule may only contain a single LSM specific
LSM_OBJ_{USER | ROLE | TYPE} and LSM_SUBJ_{USER | ROLE | TYPE}, then
there is no need for rules[LSMBLOB_ENTRIES].  Leave it as "*rule".

Otherwise it looks good.

Mimi

 		char *args_p;	/* audit value */
 		int type;	/* audit type */
-		int which_lsm; /* which of the rules to use */
 	} lsm[MAX_LSM_RULES];
 	char *fsname;
 	struct ima_rule_opt_list *keyrings; /* Measure keys added to these keyrings */

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help