Received: by 2002:a25:4158:0:0:0:0:0 with SMTP id o85csp6451700yba;
        Tue, 14 May 2019 07:48:40 -0700 (PDT)
X-Google-Smtp-Source: APXvYqxQCKfrAqq6OzP5T3N+6Xys0XjvCCX1nUjznep458AVpOErjhrDFf2M0LDRNU4PL64zqlsC
X-Received: by 2002:a17:902:a585:: with SMTP id az5mr37719290plb.261.1557845320210;
        Tue, 14 May 2019 07:48:40 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1557845320; cv=none;
        d=google.com; s=arc-20160816;
        b=E/4OzBEDRWeF6cxeIdfALee43ai4+RkpvcWMmYOxWF3WJWsOYLbeeq6B+rwj0aMYFt
         k9UnhDjrEK66sG9wk3PHddq+Syydwj41wRO5M8v2ts0eHVNyiShCuPRm8eBgrSFuud5K
         i7tqIlWP3L+sTwE68bEvyER7R3y1UOtod7jmkmaFV56x5D0qocP17zSkgiuDfGr9g73C
         7LMpn443vwss07kozPN/YYCJM3hG+BHmhyILfQcRCxIxF8sIoN0y1a8FBSfyYRtPUKdl
         JrrS6yfemeLZENKNKOUz8KZbwEanOplxPgufRvKN2y8+WBA4HNi6YlG5xG6OLv6NiPPz
         LvPg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:message-id:content-transfer-encoding
         :mime-version:references:in-reply-to:date:cc:to:from:subject;
        bh=O1KGl1hoEGpZaGfaWFDYlgSphBYX0/091bPefe2wm/8=;
        b=x22eAyOxu9HjqLZ0MXxQ/uRWJOOUPgSqd589lyhz9wfYyRblPXEEikEkywBLSnHVfJ
         p3MTErMcHTUDq7n1d3+Melx+Mr7OS4kspU0GPJ2Xqyya03SXKltIRskicbB5Y/EuVsbK
         lp6qM3c8bcOmqum3VyghTLKL/IW2fdSciJSvL0BbFEVlWWzRlBo+/SgNY6aaVPqFYd3Q
         0FWKbZRw/0pZ2IkCVGDepEy5B3D5zfq7+3dMFbKpq2+U+4xQhMCQ2OnYR14B1bLLGZMF
         9GmKcJgHr2T7iBFhiLyJtKNzzQuQpRO/0yYT7n2UY1mBoRVVlbJ+IEvyJkHe1gYgXGiH
         Qm4g==
ARC-Authentication-Results: i=1; mx.google.com;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=ibm.com
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67])
        by mx.google.com with ESMTP id k5si19129209pls.393.2019.05.14.07.48.24;
        Tue, 14 May 2019 07:48:40 -0700 (PDT)
Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67;
Authentication-Results: mx.google.com;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=ibm.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1726180AbfENOqh (ORCPT <rfc822;linux.lists.archive@gmail.com>
        + 99 others); Tue, 14 May 2019 10:46:37 -0400
Received: from mx0b-001b2d01.pphosted.com ([148.163.158.5]:35440 "EHLO
        mx0a-001b2d01.pphosted.com" rhost-flags-OK-OK-OK-FAIL)
        by vger.kernel.org with ESMTP id S1725901AbfENOqg (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Tue, 14 May 2019 10:46:36 -0400
Received: from pps.filterd (m0098419.ppops.net [127.0.0.1])
        by mx0b-001b2d01.pphosted.com (8.16.0.27/8.16.0.27) with SMTP id x4EEkJ5a082694
        for <linux-kernel@vger.kernel.org>; Tue, 14 May 2019 10:46:35 -0400
Received: from e06smtp05.uk.ibm.com (e06smtp05.uk.ibm.com [195.75.94.101])
        by mx0b-001b2d01.pphosted.com with ESMTP id 2sfy8a9jh9-1
        (version=TLSv1.2 cipher=AES256-GCM-SHA384 bits=256 verify=NOT)
        for <linux-kernel@vger.kernel.org>; Tue, 14 May 2019 10:46:31 -0400
Received: from localhost
        by e06smtp05.uk.ibm.com with IBM ESMTP SMTP Gateway: Authorized Use Only! Violators will be prosecuted
        for <linux-kernel@vger.kernel.org> from <zohar@linux.ibm.com>;
        Tue, 14 May 2019 15:46:22 +0100
Received: from b06cxnps3075.portsmouth.uk.ibm.com (9.149.109.195)
        by e06smtp05.uk.ibm.com (192.168.101.135) with IBM ESMTP SMTP Gateway: Authorized Use Only! Violators will be prosecuted;
        (version=TLSv1/SSLv3 cipher=AES256-GCM-SHA384 bits=256/256)
        Tue, 14 May 2019 15:46:18 +0100
Received: from d06av26.portsmouth.uk.ibm.com (d06av26.portsmouth.uk.ibm.com [9.149.105.62])
        by b06cxnps3075.portsmouth.uk.ibm.com (8.14.9/8.14.9/NCO v10.0) with ESMTP id x4EEkI5I49545464
        (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=OK);
        Tue, 14 May 2019 14:46:18 GMT
Received: from d06av26.portsmouth.uk.ibm.com (unknown [127.0.0.1])
        by IMSVA (Postfix) with ESMTP id E8AC9AE045;
        Tue, 14 May 2019 14:46:17 +0000 (GMT)
Received: from d06av26.portsmouth.uk.ibm.com (unknown [127.0.0.1])
        by IMSVA (Postfix) with ESMTP id DF28CAE04D;
        Tue, 14 May 2019 14:46:16 +0000 (GMT)
Received: from localhost.localdomain (unknown [9.80.80.29])
        by d06av26.portsmouth.uk.ibm.com (Postfix) with ESMTP;
        Tue, 14 May 2019 14:46:16 +0000 (GMT)
Subject: Re: [PATCH 3/3 v5] call ima_kexec_cmdline from kexec_file_load path
From:   Mimi Zohar <zohar@linux.ibm.com>
To:     Prakhar Srivastava <prsriva02@gmail.com>,
        linux-integrity@vger.kernel.org,
        inux-security-module@vger.kernel.org, linux-kernel@vger.kernel.org
Cc:     ebiederm@xmission.com, vgoyal@redhat.com, prsriva@microsoft.com,
        Dave Young <dyoung@redhat.com>
Date:   Tue, 14 May 2019 10:46:06 -0400
In-Reply-To: <20190510223744.10154-4-prsriva02@gmail.com>
References: <20190510223744.10154-1-prsriva02@gmail.com>
         <20190510223744.10154-4-prsriva02@gmail.com>
Content-Type: text/plain; charset="UTF-8"
X-Mailer: Evolution 3.20.5 (3.20.5-1.fc24) 
Mime-Version: 1.0
Content-Transfer-Encoding: 8bit
X-TM-AS-GCONF: 00
x-cbid: 19051414-0020-0000-0000-0000033C9621
X-IBM-AV-DETECTION: SAVI=unused REMOTE=unused XFE=unused
x-cbparentid: 19051414-0021-0000-0000-0000218F528F
Message-Id: <1557845166.4139.53.camel@linux.ibm.com>
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:,, definitions=2019-05-14_09:,,
 signatures=0
X-Proofpoint-Spam-Details: rule=outbound_notspam policy=outbound score=0 priorityscore=1501
 malwarescore=0 suspectscore=0 phishscore=0 bulkscore=0 spamscore=0
 clxscore=1015 lowpriorityscore=0 mlxscore=0 impostorscore=0
 mlxlogscore=999 adultscore=0 classifier=spam adjust=0 reason=mlx
 scancount=1 engine=8.0.1-1810050000 definitions=main-1905140105
Sender: linux-kernel-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

[Cc'ing Dave Young]

On Fri, 2019-05-10 at 15:37 -0700, Prakhar Srivastava wrote:
> From: Prakhar Srivastava <prsriva02@gmail.com>

The "From" line above should only appear when the patch author and the
sender differ.  You can create the patches under one id and post them
from another id.  Something is still wrong.

> 
> To measure the cmldine args used in case of soft reboot. Call the 
> ima hook defined in [PATCH 1/3 v5]:"add a new ima hook and policy to measure the cmdline"
> 
> Signed-off-by: Prakhar Srivastava <prsriva02@gmail.com>

> ---
>  kernel/kexec_file.c | 2 ++
>  1 file changed, 2 insertions(+)
> 
> diff --git a/kernel/kexec_file.c b/kernel/kexec_file.c
> index f1d0e00a3971..e779bcf674a0 100644
> --- a/kernel/kexec_file.c
> +++ b/kernel/kexec_file.c
> @@ -241,6 +241,8 @@ kimage_file_prepare_segments(struct kimage *image, int kernel_fd, int initrd_fd,
>  			ret = -EINVAL;
>  			goto out;
>  		}
> +
> +		ima_kexec_cmdline(image->cmdline_buf, image->cmdline_buf_len - 1);
>  	}
>  
>  	/* Call arch image load handlers */

Much better!

Mimi