Received: by 10.223.176.5 with SMTP id f5csp2566411wra; Mon, 5 Feb 2018 06:17:56 -0800 (PST) X-Google-Smtp-Source: AH8x227AV+EXIhDi3jv0mgc1tDNT247bEzQita/MKTHhyHWW4K0BU0orA2cj3ovd/Y2P7MHGTQVH X-Received: by 2002:a17:902:203:: with SMTP id 3-v6mr45382615plc.413.1517840276061; Mon, 05 Feb 2018 06:17:56 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1517840276; cv=none; d=google.com; s=arc-20160816; b=odRPg2qPn9DjmNstijoC8EMmb5j2qV4mXUG5b8WBMNvY/AmM2t7WJbSwsUuwLwZJB+ 6GspIZXHki2OVwAz71j5RSSymvL8hkfUhDZnUoGEvMZ+QNovwBeQcIJWxJ95khTwnDtu fZ9VdKmOqt2pqpjiWQyDCt+f0XSkxLchsPtJCo28LlOeESOIYeMOUnxwa8tk6Zr/tvKZ ufNwJwZYOZGnhXEKST06ulGO0cK1XG0Q2bOdkjEGWEpe1iCwF9myYvpMBdMzqcijNzpX qp4daDxq8en91FNUHFgMJgFpqBWhSQmjJL3zuKlEnE/hFse82/rIKX6S3plnwDhXy1yJ begw== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:cc:to:subject:message-id:date:from :references:in-reply-to:mime-version:dkim-signature :arc-authentication-results; bh=KR3n/h/HyXEOIn4heD8ZnJr8Mojw62+fisdq2j7zpAg=; b=DmaQ2rCmCtu4qyAo4VcUyaWJBQ+9oN/ccOa8DyfIl40mlN4t8FSn1/jOh3dpfUwetM FkPuW0Dw7lDAQ/FBPY/AQQB0Cux0U1KKZMQpvF5rGWeE8zpgGXOWvMAiK+2Q+vCZav6s jodqfVCYMiI0jEt91fjf+avBVYVwYNOsWMMqJ2JJII95Hm4qma+Q3qtB273SkumtdujD 77b+9iLP/LXta9DlhqQDAYAY5iu41fvUgEnniKFKctVFrjaPLdJCwpIeeEmpNmh8hMkU /RMlb7Jy7paDVMgDCFZAvQB/vW8z+CLMGlacSXLpyZdsDbPnejhDrS7yBSlXN7d+iTEa UMyg== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@kinvolk.io header.s=google header.b=lyrofkar; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id u8si5460404pgr.631.2018.02.05.06.17.41; Mon, 05 Feb 2018 06:17:56 -0800 (PST) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; dkim=pass header.i=@kinvolk.io header.s=google header.b=lyrofkar; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1753213AbeBEOQ0 (ORCPT + 99 others); Mon, 5 Feb 2018 09:16:26 -0500 Received: from mail-pl0-f67.google.com ([209.85.160.67]:41003 "EHLO mail-pl0-f67.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1753191AbeBEOQG (ORCPT ); Mon, 5 Feb 2018 09:16:06 -0500 Received: by mail-pl0-f67.google.com with SMTP id k8so9640338pli.8 for ; Mon, 05 Feb 2018 06:16:05 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=kinvolk.io; s=google; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=KR3n/h/HyXEOIn4heD8ZnJr8Mojw62+fisdq2j7zpAg=; b=lyrofkargimZ7PURJ/PkjfeCecmSfYBg8YyVoN21ZnU4+FO7Zr3shXhXhbxcwbM3iA cKVEJdswXiQmJQX/igqNXSWz/6jb/4pcmjvLBiCVPj16E19rM8R2MXh8XkitLP76q8/1 ISRbaIcxDwCflJZlP5hHSW7VSa6e6Gg0xn0ZA= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=KR3n/h/HyXEOIn4heD8ZnJr8Mojw62+fisdq2j7zpAg=; b=SdFppme5lnqpdpya5hD4F2yK3+nz73QEt8IIdj2P73gAvHw/ju4clo683dSiLsL0tr DMXSAi4Rm8AW6KVlFaSLYfo7qWBXl2euOo/wU3KSs7bjP3F8qwPcnEU9RX4r7/zNs7AP uplMO63MRbVvlowLh7qfyZVlagjpGMAemRC8YYqqLuSomOYhY+8bQaSMAJ4Ab0/hVFvP IiQa2ObX73J4v6/1tgS4M5WTbstwpi1637g+UsMA73BvrDLAzXSH10Vddp5CyIFoHt0q QRRTuwNMd13bz7f5XfH8TkRUp/S895uCuDWYfF/pIAPVDbCImCyKBEAF3zBbUEYdFMmg 2icA== X-Gm-Message-State: AKwxytdsTkzpMjbkiMVfe3nyyvXnIczi+DWEFzxfeKKe1yiS1Ym9Neii mhnAGtuADy00HPN9DBkg+PbuRMdrrUyeCnyOoFDfvw== X-Received: by 2002:a17:902:2c83:: with SMTP id n3-v6mr20155637plb.227.1517840165092; Mon, 05 Feb 2018 06:16:05 -0800 (PST) MIME-Version: 1.0 Received: by 10.100.169.12 with HTTP; Mon, 5 Feb 2018 06:16:04 -0800 (PST) In-Reply-To: References: <86832c6adb256f29f44b6229222b80964fc8cfcc.1517314847.git.dongsu@kinvolk.io> <1517584816.3171.61.camel@linux.vnet.ibm.com> <1517585624.3171.64.camel@linux.vnet.ibm.com> From: Alban Crequy Date: Mon, 5 Feb 2018 15:16:04 +0100 Message-ID: Subject: Re: [RFC PATCH v4 1/2] fuse: introduce new fs_type flag FS_IMA_NO_CACHE To: Miklos Szeredi Cc: Mimi Zohar , Christoph Hellwig , linux-integrity@vger.kernel.org, LSM , linux-fsdevel@vger.kernel.org, Miklos Szeredi , Alexander Viro , Dmitry Kasatkin , James Morris , "Serge E . Hallyn" , Seth Forshee , Dongsu Park , LKML Content-Type: text/plain; charset="UTF-8" Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Fri, Feb 2, 2018 at 5:10 PM, Miklos Szeredi wrote: > On Fri, Feb 2, 2018 at 4:33 PM, Mimi Zohar wrote: >> On Fri, 2018-02-02 at 10:20 -0500, Mimi Zohar wrote: >>> Hi Miklos, >>> >>> On Tue, 2018-01-30 at 19:06 +0100, Dongsu Park wrote: >>> > From: Alban Crequy >>> > >>> > This new fs_type flag FS_IMA_NO_CACHE means files should be re-measured, >>> > re-appraised and re-audited each time. Cached integrity results should >>> > not be used. >>> > >>> > It is useful in FUSE because the userspace FUSE process can change the >>> > underlying files at any time without notifying the kernel. > > I don't really have an understanding what IMA is doing, I think the > same thing applies to any network filesystem (i.e. ones with > d_revalidate). > > Isn't that the case? Hi Miklos, From my limited understanding, network filesystems might need that too, yes. I don't know if there are people interested in using both IMA and network filesystems. If so, they would have to write that patch and test it. It is not a new issue, for neither network filesystems or FUSE. But I am more interested in the FUSE use case because FUSE can be mounted by unprivileged users either today with fusermount installed with setuid, or soon with the coming patches to allow FUSE mounts in a non-init user namespace. That makes the issue more visible than for network filesystems where unprivileged users cannot mount. Cheers, Alban