Received: by 10.223.176.5 with SMTP id f5csp966667wra; Fri, 2 Feb 2018 09:00:33 -0800 (PST) X-Google-Smtp-Source: AH8x224Ila5AS/jlaQ0Uy1f6QLXKZUpfH9xoFVqF5vBhpFzop1Qq9/0P6uE/9h6COtDiGfvcBJLy X-Received: by 2002:a17:902:bf41:: with SMTP id u1-v6mr25823560pls.416.1517590833264; Fri, 02 Feb 2018 09:00:33 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1517590833; cv=none; d=google.com; s=arc-20160816; b=z5QSxCv+KXlLi+qd9u+Vx0JB/8o1Mncty/JrEmahjIy/01gqJDV088syO1LHt6HhIQ hjJ0O+YZScRfXOkoM2JmKIHDUBhyFxhmxDt3Yv6HbO18RuSflkK+dUH7hGsQ4UjVygkO wCC8QqSn/RjChcfgkPSwJh5WzWQOG0T3T5B27R1ikO9EiL8uSKr1CsZdrx3jQndMeWYK vkluGThUU2VKUgvGyQ5Kbz9hRWRJa8cO/aRuTj1zKQXj2mzZ0K3AYMgR8jgMQE72awNi Y13GVg8joFcdmYwzGYu1LtKf3jO6lsdIlujj/cxfSTRTzui3/kptZddXHZKFsdPoP19F f2Dg== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:message-id:content-transfer-encoding :mime-version:references:in-reply-to:date:cc:to:from:subject :arc-authentication-results; bh=PJfHIvj0X61B2pv2F8h35K75XHrxCfS1G1fly9EZ6Kk=; b=rIu19wiAmvdcXre5lHjUoovTpauaWV+a79dP5H/DBo2ea1jVuihcqlnVKazXcyaElS /OoNWFfZtFH9VhjZXeQm1TbVCdElariNNsJkXhmkBks+6PFMYMCNBZuHcVwQ3zMZDY5z 1XsV1fH1hXiNF0TWRasxg+vjASSJ9fAzpe7DH+/JrgTP6oWdE9h3IUw8L5B7B/vVZwbK urXpW9ATCJnQ7ckKeOczAAQ8TKXPgWQTKh6xl5EoL5wd+5qrlgqw/vsbvanL0dvc8Hxs M4AS2PqsPmq+LFcsE9GfMXgnx1uIrj55ChMcjiwiT59ZyqCtd5vhXS0Xf1F6DQQf/P+A aRTg== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=ibm.com Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id a8-v6si48949ple.375.2018.02.02.09.00.17; Fri, 02 Feb 2018 09:00:33 -0800 (PST) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=ibm.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1751833AbeBBQ7Y (ORCPT + 99 others); Fri, 2 Feb 2018 11:59:24 -0500 Received: from mx0b-001b2d01.pphosted.com ([148.163.158.5]:56188 "EHLO mx0a-001b2d01.pphosted.com" rhost-flags-OK-OK-OK-FAIL) by vger.kernel.org with ESMTP id S1752442AbeBBQ7O (ORCPT ); Fri, 2 Feb 2018 11:59:14 -0500 Received: from pps.filterd (m0098421.ppops.net [127.0.0.1]) by mx0a-001b2d01.pphosted.com (8.16.0.22/8.16.0.22) with SMTP id w12Gs1sh065105 for ; Fri, 2 Feb 2018 11:59:14 -0500 Received: from e06smtp15.uk.ibm.com (e06smtp15.uk.ibm.com [195.75.94.111]) by mx0a-001b2d01.pphosted.com with ESMTP id 2fvrwbh8bt-1 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=NOT) for ; Fri, 02 Feb 2018 11:59:13 -0500 Received: from localhost by e06smtp15.uk.ibm.com with IBM ESMTP SMTP Gateway: Authorized Use Only! Violators will be prosecuted for from ; Fri, 2 Feb 2018 16:59:12 -0000 Received: from b06cxnps4075.portsmouth.uk.ibm.com (9.149.109.197) by e06smtp15.uk.ibm.com (192.168.101.145) with IBM ESMTP SMTP Gateway: Authorized Use Only! Violators will be prosecuted; Fri, 2 Feb 2018 16:59:07 -0000 Received: from d06av24.portsmouth.uk.ibm.com (mk.ibm.com [9.149.105.60]) by b06cxnps4075.portsmouth.uk.ibm.com (8.14.9/8.14.9/NCO v10.0) with ESMTP id w12Gx7L532047320; Fri, 2 Feb 2018 16:59:07 GMT Received: from d06av24.portsmouth.uk.ibm.com (unknown [127.0.0.1]) by IMSVA (Postfix) with ESMTP id 850FC42047; Fri, 2 Feb 2018 16:52:10 +0000 (GMT) Received: from d06av24.portsmouth.uk.ibm.com (unknown [127.0.0.1]) by IMSVA (Postfix) with ESMTP id 931354203F; Fri, 2 Feb 2018 16:52:08 +0000 (GMT) Received: from localhost.localdomain (unknown [9.80.80.37]) by d06av24.portsmouth.uk.ibm.com (Postfix) with ESMTP; Fri, 2 Feb 2018 16:52:08 +0000 (GMT) Subject: Re: [RFC PATCH v4 1/2] fuse: introduce new fs_type flag FS_IMA_NO_CACHE From: Mimi Zohar To: Miklos Szeredi Cc: Christoph Hellwig , linux-integrity@vger.kernel.org, LSM , linux-fsdevel@vger.kernel.org, Alban Crequy , Miklos Szeredi , Alexander Viro , Dmitry Kasatkin , James Morris , "Serge E . Hallyn" , Seth Forshee , Dongsu Park , linux-kernel@vger.kernel.org Date: Fri, 02 Feb 2018 11:59:04 -0500 In-Reply-To: References: <86832c6adb256f29f44b6229222b80964fc8cfcc.1517314847.git.dongsu@kinvolk.io> <1517584816.3171.61.camel@linux.vnet.ibm.com> <1517585624.3171.64.camel@linux.vnet.ibm.com> Content-Type: text/plain; charset="UTF-8" X-Mailer: Evolution 3.20.5 (3.20.5-1.fc24) Mime-Version: 1.0 Content-Transfer-Encoding: 8bit X-TM-AS-GCONF: 00 x-cbid: 18020216-0020-0000-0000-000003F1C1F2 X-IBM-AV-DETECTION: SAVI=unused REMOTE=unused XFE=unused x-cbparentid: 18020216-0021-0000-0000-000042842FCA Message-Id: <1517590744.3171.89.camel@linux.vnet.ibm.com> X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10432:,, definitions=2018-02-02_04:,, signatures=0 X-Proofpoint-Spam-Details: rule=outbound_notspam policy=outbound score=0 priorityscore=1501 malwarescore=0 suspectscore=0 phishscore=0 bulkscore=0 spamscore=0 clxscore=1015 lowpriorityscore=0 impostorscore=0 adultscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.0.1-1709140000 definitions=main-1802020207 Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Fri, 2018-02-02 at 17:10 +0100, Miklos Szeredi wrote: > On Fri, Feb 2, 2018 at 4:33 PM, Mimi Zohar wrote: > > On Fri, 2018-02-02 at 10:20 -0500, Mimi Zohar wrote: > >> Hi Miklos, > >> > >> On Tue, 2018-01-30 at 19:06 +0100, Dongsu Park wrote: > >> > From: Alban Crequy > >> > > >> > This new fs_type flag FS_IMA_NO_CACHE means files should be re-measured, > >> > re-appraised and re-audited each time. Cached integrity results should > >> > not be used. > >> > > >> > It is useful in FUSE because the userspace FUSE process can change the > >> > underlying files at any time without notifying the kernel. > > I don't really have an understanding what IMA is doing, I think the > same thing applies to any network filesystem (i.e. ones with > d_revalidate). > > Isn't that the case? IMA is calculating the file hash, for inclusion in the measurement list, verifying the file signature stored in the xattr, or both.  For the remote filesystem case, re-calculating the file hash would be limited to inclusion in the measurement list.  For FUSE, the kernel has access to the xattr, so re-calculating the file hash could also be used to re-verify the file signature. Mimi