Hi,
On Mon, Jan 29, 2018 at 6:40 PM, Dongsu Park wrote:
> On Mon, Jan 29, 2018 at 5:33 PM, Mimi Zohar wrote:
>> On Thu, 2018-01-25 at 06:56 -0500, Mimi Zohar wrote:
...
>> Did you get a chance to make the change and test it?
>
> Alban has been on holidays, so he will be back on Wednesday or so.
Hi Mimi,
On Mon, Jan 29, 2018 at 5:33 PM, Mimi Zohar wrote:
> Hi Alban,
>
> On Thu, 2018-01-25 at 06:56 -0500, Mimi Zohar wrote:
>> > > @@ -228,9 +229,28 @@ static int process_measurement(struct file *file,
>> > > char *buf, loff_t size,
>> > >IMA_APPRAISE_SUBMASK | I
Hi Alban,
On Thu, 2018-01-25 at 06:56 -0500, Mimi Zohar wrote:
> > > @@ -228,9 +229,28 @@ static int process_measurement(struct file *file,
> > > char *buf, loff_t size,
> > >IMA_APPRAISE_SUBMASK | IMA_APPRAISED_SUBMASK |
> > >IMA_ACTION_FLA
> > @@ -228,9 +229,28 @@ static int process_measurement(struct file *file, char
> > *buf, loff_t size,
> > IMA_APPRAISE_SUBMASK | IMA_APPRAISED_SUBMASK |
> > IMA_ACTION_FLAGS);
> >
> > - if (test_and_clear_bit(IMA_CHANGE_XATTR, &iint->
Quoting Seth Forshee (seth.fors...@canonical.com):
> On Mon, Jan 22, 2018 at 05:24:52PM +0100, Alban Crequy wrote:
> > From: Alban Crequy
> >
> > This patch forces files to be re-measured, re-appraised and re-audited
> > on file systems with the feature flag FS_IMA_NO_CACHE. In that way,
> > cach
Quoting Alban Crequy (alban.cre...@gmail.com):
> From: Alban Crequy
>
> This patch forces files to be re-measured, re-appraised and re-audited
> on file systems with the feature flag FS_IMA_NO_CACHE. In that way,
> cached integrity results won't be used.
>
> How to test this:
>
> The test I did
On Mon, Jan 22, 2018 at 05:24:52PM +0100, Alban Crequy wrote:
> From: Alban Crequy
>
> This patch forces files to be re-measured, re-appraised and re-audited
> on file systems with the feature flag FS_IMA_NO_CACHE. In that way,
> cached integrity results won't be used.
>
> How to test this:
>
>
From: Alban Crequy
This patch forces files to be re-measured, re-appraised and re-audited
on file systems with the feature flag FS_IMA_NO_CACHE. In that way,
cached integrity results won't be used.
How to test this:
The test I did was using a patched version of the memfs FUSE driver
[1][2] and
8 matches
Mail list logo
