From: Mimi Zohar <zohar@linux.ibm.com>
To: Prakhar Srivastava <prsriva02@gmail.com>,
linux-integrity@vger.kernel.org,
inux-security-module@vger.kernel.org,
linux-kernel@vger.kernel.org
Cc: ebiederm@xmission.com, vgoyal@redhat.com, prsriva@microsoft.com,
Dave Young <dyoung@redhat.com>
Subject: Re: [PATCH 3/3 v5] call ima_kexec_cmdline from kexec_file_load path
Date: Tue, 14 May 2019 10:46:06 -0400 [thread overview]
Message-ID: <1557845166.4139.53.camel@linux.ibm.com> (raw)
In-Reply-To: <20190510223744.10154-4-prsriva02@gmail.com>
[Cc'ing Dave Young]
On Fri, 2019-05-10 at 15:37 -0700, Prakhar Srivastava wrote:
> From: Prakhar Srivastava <prsriva02@gmail.com>
The "From" line above should only appear when the patch author and the
sender differ. You can create the patches under one id and post them
from another id. Something is still wrong.
>
> To measure the cmldine args used in case of soft reboot. Call the
> ima hook defined in [PATCH 1/3 v5]:"add a new ima hook and policy to measure the cmdline"
>
> Signed-off-by: Prakhar Srivastava <prsriva02@gmail.com>
> ---
> kernel/kexec_file.c | 2 ++
> 1 file changed, 2 insertions(+)
>
> diff --git a/kernel/kexec_file.c b/kernel/kexec_file.c
> index f1d0e00a3971..e779bcf674a0 100644
> --- a/kernel/kexec_file.c
> +++ b/kernel/kexec_file.c
> @@ -241,6 +241,8 @@ kimage_file_prepare_segments(struct kimage *image, int kernel_fd, int initrd_fd,
> ret = -EINVAL;
> goto out;
> }
> +
> + ima_kexec_cmdline(image->cmdline_buf, image->cmdline_buf_len - 1);
> }
>
> /* Call arch image load handlers */
Much better!
Mimi
next prev parent reply other threads:[~2019-05-14 14:46 UTC|newest]
Thread overview: 14+ messages / expand[flat|nested] mbox.gz Atom feed top
2019-05-10 22:37 [PATCH 0/3 v5] Kexec cmdline bufffer measure Prakhar Srivastava
2019-05-10 22:37 ` [PATCH 1/3 v5] add a new ima hook and policy to measure the cmdline Prakhar Srivastava
2019-05-13 16:56 ` Mimi Zohar
2019-05-14 4:53 ` prakhar srivastava
2019-05-14 14:36 ` Mimi Zohar
2019-05-10 22:37 ` [PATCH 2/3 v5] add a new template field buf to contain the buffer Prakhar Srivastava
2019-05-13 13:48 ` Roberto Sassu
2019-05-14 5:07 ` prakhar srivastava
2019-05-14 13:22 ` Roberto Sassu
2019-05-17 23:32 ` prakhar srivastava
2019-05-20 12:18 ` Roberto Sassu
2019-05-10 22:37 ` [PATCH 3/3 v5] call ima_kexec_cmdline from kexec_file_load path Prakhar Srivastava
2019-05-14 14:46 ` Mimi Zohar [this message]
-- strict thread matches above, loose matches on Subject: below --
2019-05-10 22:32 [PATCH 0/3 v5] Kexec cmdline bufffer measure Prakhar Srivastava
2019-05-10 22:32 ` [PATCH 3/3 v5] call ima_kexec_cmdline from kexec_file_load path Prakhar Srivastava
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=1557845166.4139.53.camel@linux.ibm.com \
--to=zohar@linux.ibm.com \
--cc=dyoung@redhat.com \
--cc=ebiederm@xmission.com \
--cc=inux-security-module@vger.kernel.org \
--cc=linux-integrity@vger.kernel.org \
--cc=linux-kernel@vger.kernel.org \
--cc=prsriva02@gmail.com \
--cc=prsriva@microsoft.com \
--cc=vgoyal@redhat.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).