Received: by 10.223.176.5 with SMTP id f5csp966667wra;
        Fri, 2 Feb 2018 09:00:33 -0800 (PST)
X-Google-Smtp-Source: AH8x224Ila5AS/jlaQ0Uy1f6QLXKZUpfH9xoFVqF5vBhpFzop1Qq9/0P6uE/9h6COtDiGfvcBJLy
X-Received: by 2002:a17:902:bf41:: with SMTP id u1-v6mr25823560pls.416.1517590833264;
        Fri, 02 Feb 2018 09:00:33 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; t=1517590833; cv=none;
        d=google.com; s=arc-20160816;
        b=z5QSxCv+KXlLi+qd9u+Vx0JB/8o1Mncty/JrEmahjIy/01gqJDV088syO1LHt6HhIQ
         hjJ0O+YZScRfXOkoM2JmKIHDUBhyFxhmxDt3Yv6HbO18RuSflkK+dUH7hGsQ4UjVygkO
         wCC8QqSn/RjChcfgkPSwJh5WzWQOG0T3T5B27R1ikO9EiL8uSKr1CsZdrx3jQndMeWYK
         vkluGThUU2VKUgvGyQ5Kbz9hRWRJa8cO/aRuTj1zKQXj2mzZ0K3AYMgR8jgMQE72awNi
         Y13GVg8joFcdmYwzGYu1LtKf3jO6lsdIlujj/cxfSTRTzui3/kptZddXHZKFsdPoP19F
         f2Dg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:message-id:content-transfer-encoding
         :mime-version:references:in-reply-to:date:cc:to:from:subject
         :arc-authentication-results;
        bh=PJfHIvj0X61B2pv2F8h35K75XHrxCfS1G1fly9EZ6Kk=;
        b=rIu19wiAmvdcXre5lHjUoovTpauaWV+a79dP5H/DBo2ea1jVuihcqlnVKazXcyaElS
         /OoNWFfZtFH9VhjZXeQm1TbVCdElariNNsJkXhmkBks+6PFMYMCNBZuHcVwQ3zMZDY5z
         1XsV1fH1hXiNF0TWRasxg+vjASSJ9fAzpe7DH+/JrgTP6oWdE9h3IUw8L5B7B/vVZwbK
         urXpW9ATCJnQ7ckKeOczAAQ8TKXPgWQTKh6xl5EoL5wd+5qrlgqw/vsbvanL0dvc8Hxs
         M4AS2PqsPmq+LFcsE9GfMXgnx1uIrj55ChMcjiwiT59ZyqCtd5vhXS0Xf1F6DQQf/P+A
         aRTg==
ARC-Authentication-Results: i=1; mx.google.com;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=ibm.com
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67])
        by mx.google.com with ESMTP id a8-v6si48949ple.375.2018.02.02.09.00.17;
        Fri, 02 Feb 2018 09:00:33 -0800 (PST)
Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67;
Authentication-Results: mx.google.com;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=ibm.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1751833AbeBBQ7Y (ORCPT <rfc822;huangweiredhat@gmail.com>
        + 99 others); Fri, 2 Feb 2018 11:59:24 -0500
Received: from mx0b-001b2d01.pphosted.com ([148.163.158.5]:56188 "EHLO
        mx0a-001b2d01.pphosted.com" rhost-flags-OK-OK-OK-FAIL)
        by vger.kernel.org with ESMTP id S1752442AbeBBQ7O (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Fri, 2 Feb 2018 11:59:14 -0500
Received: from pps.filterd (m0098421.ppops.net [127.0.0.1])
        by mx0a-001b2d01.pphosted.com (8.16.0.22/8.16.0.22) with SMTP id w12Gs1sh065105
        for <linux-kernel@vger.kernel.org>; Fri, 2 Feb 2018 11:59:14 -0500
Received: from e06smtp15.uk.ibm.com (e06smtp15.uk.ibm.com [195.75.94.111])
        by mx0a-001b2d01.pphosted.com with ESMTP id 2fvrwbh8bt-1
        (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=NOT)
        for <linux-kernel@vger.kernel.org>; Fri, 02 Feb 2018 11:59:13 -0500
Received: from localhost
        by e06smtp15.uk.ibm.com with IBM ESMTP SMTP Gateway: Authorized Use Only! Violators will be prosecuted
        for <linux-kernel@vger.kernel.org> from <zohar@linux.vnet.ibm.com>;
        Fri, 2 Feb 2018 16:59:12 -0000
Received: from b06cxnps4075.portsmouth.uk.ibm.com (9.149.109.197)
        by e06smtp15.uk.ibm.com (192.168.101.145) with IBM ESMTP SMTP Gateway: Authorized Use Only! Violators will be prosecuted;
        Fri, 2 Feb 2018 16:59:07 -0000
Received: from d06av24.portsmouth.uk.ibm.com (mk.ibm.com [9.149.105.60])
        by b06cxnps4075.portsmouth.uk.ibm.com (8.14.9/8.14.9/NCO v10.0) with ESMTP id w12Gx7L532047320;
        Fri, 2 Feb 2018 16:59:07 GMT
Received: from d06av24.portsmouth.uk.ibm.com (unknown [127.0.0.1])
        by IMSVA (Postfix) with ESMTP id 850FC42047;
        Fri,  2 Feb 2018 16:52:10 +0000 (GMT)
Received: from d06av24.portsmouth.uk.ibm.com (unknown [127.0.0.1])
        by IMSVA (Postfix) with ESMTP id 931354203F;
        Fri,  2 Feb 2018 16:52:08 +0000 (GMT)
Received: from localhost.localdomain (unknown [9.80.80.37])
        by d06av24.portsmouth.uk.ibm.com (Postfix) with ESMTP;
        Fri,  2 Feb 2018 16:52:08 +0000 (GMT)
Subject: Re: [RFC PATCH v4 1/2] fuse: introduce new fs_type flag
 FS_IMA_NO_CACHE
From:   Mimi Zohar <zohar@linux.vnet.ibm.com>
To:     Miklos Szeredi <miklos@szeredi.hu>
Cc:     Christoph Hellwig <hch@infradead.org>,
        linux-integrity@vger.kernel.org,
        LSM <linux-security-module@vger.kernel.org>,
        linux-fsdevel@vger.kernel.org, Alban Crequy <alban@kinvolk.io>,
        Miklos Szeredi <mszeredi@redhat.com>,
        Alexander Viro <viro@zeniv.linux.org.uk>,
        Dmitry Kasatkin <dmitry.kasatkin@gmail.com>,
        James Morris <jmorris@namei.org>,
        "Serge E . Hallyn" <serge@hallyn.com>,
        Seth Forshee <seth.forshee@canonical.com>,
        Dongsu Park <dongsu@kinvolk.io>, linux-kernel@vger.kernel.org
Date:   Fri, 02 Feb 2018 11:59:04 -0500
In-Reply-To: <CAJfpegvt5W-q0W8_VRML-MNW6+n2ZQYW+51utRXDDKSbvsqf3w@mail.gmail.com>
References: <cover.1517314847.git.dongsu@kinvolk.io>
         <86832c6adb256f29f44b6229222b80964fc8cfcc.1517314847.git.dongsu@kinvolk.io>
         <1517584816.3171.61.camel@linux.vnet.ibm.com>
         <1517585624.3171.64.camel@linux.vnet.ibm.com>
         <CAJfpegvt5W-q0W8_VRML-MNW6+n2ZQYW+51utRXDDKSbvsqf3w@mail.gmail.com>
Content-Type: text/plain; charset="UTF-8"
X-Mailer: Evolution 3.20.5 (3.20.5-1.fc24) 
Mime-Version: 1.0
Content-Transfer-Encoding: 8bit
X-TM-AS-GCONF: 00
x-cbid: 18020216-0020-0000-0000-000003F1C1F2
X-IBM-AV-DETECTION: SAVI=unused REMOTE=unused XFE=unused
x-cbparentid: 18020216-0021-0000-0000-000042842FCA
Message-Id: <1517590744.3171.89.camel@linux.vnet.ibm.com>
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10432:,, definitions=2018-02-02_04:,,
 signatures=0
X-Proofpoint-Spam-Details: rule=outbound_notspam policy=outbound score=0 priorityscore=1501
 malwarescore=0 suspectscore=0 phishscore=0 bulkscore=0 spamscore=0
 clxscore=1015 lowpriorityscore=0 impostorscore=0 adultscore=0
 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.0.1-1709140000
 definitions=main-1802020207
Sender: linux-kernel-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

On Fri, 2018-02-02 at 17:10 +0100, Miklos Szeredi wrote:
> On Fri, Feb 2, 2018 at 4:33 PM, Mimi Zohar <zohar@linux.vnet.ibm.com> wrote:
> > On Fri, 2018-02-02 at 10:20 -0500, Mimi Zohar wrote:
> >> Hi Miklos,
> >>
> >> On Tue, 2018-01-30 at 19:06 +0100, Dongsu Park wrote:
> >> > From: Alban Crequy <alban@kinvolk.io>
> >> >
> >> > This new fs_type flag FS_IMA_NO_CACHE means files should be re-measured,
> >> > re-appraised and re-audited each time. Cached integrity results should
> >> > not be used.
> >> >
> >> > It is useful in FUSE because the userspace FUSE process can change the
> >> > underlying files at any time without notifying the kernel.
> 
> I don't really have an understanding what IMA is doing, I think the
> same thing applies to any network filesystem (i.e. ones with
> d_revalidate).
> 
> Isn't that the case?

IMA is calculating the file hash, for inclusion in the measurement
list, verifying the file signature stored in the xattr, or both.  For
the remote filesystem case, re-calculating the file hash would be
limited to inclusion in the measurement list.  For FUSE, the kernel
has access to the xattr, so re-calculating the file hash could also be
used to re-verify the file signature.

Mimi