From: Stefan Berger <stefanb@linux.ibm.com>
To: Denis Semakin <denis.semakin@huawei.com>,
linux-integrity@vger.kernel.org
Cc: artem.kuzin@huawei.com, konstantin.meskhidze@huawei.com,
ilya.hanov@huawei-partners.com, yusongping@huawei.com,
hukeping@huawei.com, denis.semakin@huawei-partners.com
Subject: Re: [RFC PATCH v1 0/1] ima: obtain child measurement list from init namespace
Date: Tue, 2 May 2023 09:36:11 -0400 [thread overview]
Message-ID: <70b507f8-aa4d-2efc-a183-790bee0c8ed5@linux.ibm.com> (raw)
In-Reply-To: <20230329085848.278269-1-denis.semakin@huawei.com>
On 3/29/23 04:58, Denis Semakin wrote:
> This patch allows to read measurement lists of child namespaces
> form init IMA namespace in order to obtain the values of hashes
> to perform operations and procedures of remote attestation.
I supposed this type of support would go onto the next stage (current posted
'stage' is auditing support, next would be measurement support)?
Stefan
>
> Denis Semakin (1):
> ima: obtain child measurement list from init namespace
>
> security/integrity/ima/ima.h | 1 +
> security/integrity/ima/ima_fs.c | 164 ++++++++++++++++++++++-
> security/integrity/ima/ima_init_ima_ns.c | 2 +
> security/integrity/ima/ima_ns.c | 31 +++++
> 4 files changed, 193 insertions(+), 5 deletions(-)
>
next prev parent reply other threads:[~2023-05-02 13:51 UTC|newest]
Thread overview: 13+ messages / expand[flat|nested] mbox.gz Atom feed top
2022-10-31 2:55 [RFC PATCH v2 0/4] Virtualize PCR for Container-IMA Denis Semakin
2022-10-31 2:59 ` [RFC PATCH v2 1/4] ima: Introduce PCR virtualization for IMA namespace Denis Semakin
2022-10-31 2:59 ` [RFC PATCH v2 2/4] ima: Use tpm_chip from init " Denis Semakin
2022-10-31 3:00 ` [RFC PATCH v2 3/4] ima: Create vpcr file on securityfs Denis Semakin
2022-10-31 3:00 ` [RFC PATCH v2 4/4] ima: Extend the real PCR12 with tempPCR value Denis Semakin
2023-01-27 8:19 ` [RFC PATCH v1 0/3] ima: vPCR debug/security Ilya Hanov
2023-01-27 8:19 ` [RFC PATCH v1 1/3] ima: Add a UUID value for each vPCR Ilya Hanov
2023-01-27 8:19 ` [RFC PATCH v1 2/3] ima: ascii_vpcr pseudo-file for sysadmins Ilya Hanov
2023-01-27 8:19 ` [RFC PATCH v1 3/3] ima: Use TPM RNG for vPCR.secret if it's presented Ilya Hanov
2023-03-29 8:58 ` [RFC PATCH v1 0/1] ima: obtain child measurement list from init namespace Denis Semakin
2023-05-02 13:36 ` Stefan Berger [this message]
2023-05-02 14:00 ` Denis Semakin
2023-03-29 9:03 ` [RFC PATCH v1 1/1] " Denis Semakin
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=70b507f8-aa4d-2efc-a183-790bee0c8ed5@linux.ibm.com \
--to=stefanb@linux.ibm.com \
--cc=artem.kuzin@huawei.com \
--cc=denis.semakin@huawei-partners.com \
--cc=denis.semakin@huawei.com \
--cc=hukeping@huawei.com \
--cc=ilya.hanov@huawei-partners.com \
--cc=konstantin.meskhidze@huawei.com \
--cc=linux-integrity@vger.kernel.org \
--cc=yusongping@huawei.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).