From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Subject: Re: [RFC PATCH v4 1/2] fuse: introduce new fs_type flag FS_IMA_NO_CACHE From: Mimi Zohar To: Miklos Szeredi Cc: Christoph Hellwig , linux-integrity@vger.kernel.org, LSM , linux-fsdevel@vger.kernel.org, Alban Crequy , Miklos Szeredi , Alexander Viro , Dmitry Kasatkin , James Morris , "Serge E . Hallyn" , Seth Forshee , Dongsu Park , linux-kernel@vger.kernel.org Date: Fri, 02 Feb 2018 11:59:04 -0500 In-Reply-To: References: <86832c6adb256f29f44b6229222b80964fc8cfcc.1517314847.git.dongsu@kinvolk.io> <1517584816.3171.61.camel@linux.vnet.ibm.com> <1517585624.3171.64.camel@linux.vnet.ibm.com> Content-Type: text/plain; charset="UTF-8" Mime-Version: 1.0 Content-Transfer-Encoding: 8bit Message-Id: <1517590744.3171.89.camel@linux.vnet.ibm.com> Sender: linux-kernel-owner@vger.kernel.org List-ID: On Fri, 2018-02-02 at 17:10 +0100, Miklos Szeredi wrote: > On Fri, Feb 2, 2018 at 4:33 PM, Mimi Zohar wrote: > > On Fri, 2018-02-02 at 10:20 -0500, Mimi Zohar wrote: > >> Hi Miklos, > >> > >> On Tue, 2018-01-30 at 19:06 +0100, Dongsu Park wrote: > >> > From: Alban Crequy > >> > > >> > This new fs_type flag FS_IMA_NO_CACHE means files should be re-measured, > >> > re-appraised and re-audited each time. Cached integrity results should > >> > not be used. > >> > > >> > It is useful in FUSE because the userspace FUSE process can change the > >> > underlying files at any time without notifying the kernel. > > I don't really have an understanding what IMA is doing, I think the > same thing applies to any network filesystem (i.e. ones with > d_revalidate). > > Isn't that the case? IMA is calculating the file hash, for inclusion in the measurement list, verifying the file signature stored in the xattr, or both.  For the remote filesystem case, re-calculating the file hash would be limited to inclusion in the measurement list.  For FUSE, the kernel has access to the xattr, so re-calculating the file hash could also be used to re-verify the file signature. Mimi