...@vger.kernel.org; David Howells; David Woodhouse; Kees Cook; Dmitry
Torokhov; Dmitry Kasatkin; Eric Biederman; Rusty Russell; Dmitry Kasatkin
Subject: Re: [PATCH v3 20/22] ima: load policy using path
On 16-02-08 09:58:16, Dmitry Kasatkin wrote:
>
>
> Fr
adead.org; linux-modu...@vger.kernel.org;
> fsde...@vger.kernel.org; David Howells; David Woodhouse; Kees Cook; Dmitry
> Torokhov; Dmitry Kasatkin; Eric Biederman; Rusty Russell; Dmitry Kasatkin;
> Dmitry Kasatkin
> Subject: Re: [PATCH v3 20/22] ima: load policy using path
>
>
Howells; David Woodhouse; Kees Cook; Dmitry
Torokhov; Dmitry Kasatkin; Eric Biederman; Rusty Russell; Dmitry Kasatkin;
Dmitry Kasatkin
Subject: Re: [PATCH v3 20/22] ima: load policy using path
On 16-02-03 14:06:28, Mimi Zohar wrote:
> From: Dmitry Kasatkin <d.kasat...@samsung.com>
>
&g
On 16-02-08 16:12:16, Mimi Zohar wrote:
> On Mon, 2016-02-08 at 10:45 +, Dmitry Kasatkin wrote:
>
> > > > @@ -286,9 +322,12 @@ static ssize_t ima_write_policy(struct file *file,
> > > > const char __user *buf,
> > > > result = mutex_lock_interruptible(_write_mutex);
> > > > if
On Mon, 2016-02-08 at 10:45 +, Dmitry Kasatkin wrote:
> > > @@ -286,9 +322,12 @@ static ssize_t ima_write_policy(struct file *file,
> > > const char __user *buf,
> > > result = mutex_lock_interruptible(_write_mutex);
> > > if (result < 0)
> > > goto out_free;
> > >
On 16-02-03 14:06:28, Mimi Zohar wrote:
> From: Dmitry Kasatkin
>
> We currently cannot do appraisal or signature vetting of IMA policies
> since we currently can only load IMA policies by writing the contents
> of the policy directly in, as follows:
>
> cat policy-file