Received: by 2002:a25:8b91:0:0:0:0:0 with SMTP id j17csp403918ybl; Mon, 2 Dec 2019 12:30:51 -0800 (PST) X-Google-Smtp-Source: APXvYqwB5xikjF5u1704JMUqBDyneEbpt8FZy/6euJY00nMpGSKo4Nak1cHEC34KlA7bMZd2JXqx X-Received: by 2002:a17:906:128f:: with SMTP id k15mr1285674ejb.253.1575318651619; Mon, 02 Dec 2019 12:30:51 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1575318651; cv=none; d=google.com; s=arc-20160816; b=Er1rIbUBU/S91myf7oxcfxpgyDUogtIQXjdzTp6NVjqz/bVidTqAzUxyuaZqb1KD9e QYo/uySDdBIBViX/q2DySh3p8dhehZbCUEX1nE7QOLYtkBw6bZvr10AETav2bAhvoIkv NNU2VKYEpxk2yhB2uW9IMsWx8+F4BIfhulmf+uUBKuK/fekV/GSMf0+0OeTDmJoBrt01 skpWr6/M6iuq3j3PvCym51DmFY5E2LegIQTAxxWKOpy8rzt/EZcUsi9kKbfA0GxtrcNb 9/+RroAjF3FDwgb3rA9dJsCjqODXjJMcVQ1CIpuLu2bS/ZNlC0S7+bzWDzxuzPc3mFPc AnzA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:content-transfer-encoding :content-language:in-reply-to:mime-version:user-agent:date :message-id:from:references:cc:to:subject:dkim-signature:dkim-filter; bh=bOCSq0wgnyPh/YMpBDbZgZBHSNjtFB5ruPODpAQ5zfM=; b=abbtytMQ0CQYcu2JeV0xqGZ8icUNA3MN7XYBqFqe0qqF6w6BynCEimfT83DfCigXz5 bQCYmJNUU5hZ6YQO4Pq2sc8TbKcbsIaUklXM6mqR2HRGf8ylBgENRs624KYJ9fmgZdAM f7gdJmsumgC3WjsRTgrTeQg5wy/EoabKvOrnAI50SbVLjBLOIRtyE1qLpGLu2OrYfCrj 38BCN7jH81GTH62zIguw9hISGUg0Rkk0ryXc5AAoxbE7LxhHtPR2GNsGjN7f4Xi132t8 KxOFJXm93aR9HX9CRUNFMyqIRdpPUL5t7lbiGokUuZUfw2nBk2+f045TYRMAaRA5nxuN bc1A== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@linux.microsoft.com header.s=default header.b=cndXVvKy; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=linux.microsoft.com Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id p21si488459ejz.196.2019.12.02.12.30.27; Mon, 02 Dec 2019 12:30:51 -0800 (PST) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; dkim=pass header.i=@linux.microsoft.com header.s=default header.b=cndXVvKy; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=linux.microsoft.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1727553AbfLBUY6 (ORCPT + 99 others); Mon, 2 Dec 2019 15:24:58 -0500 Received: from linux.microsoft.com ([13.77.154.182]:60272 "EHLO linux.microsoft.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1727420AbfLBUY6 (ORCPT ); Mon, 2 Dec 2019 15:24:58 -0500 Received: from [10.137.112.108] (unknown [131.107.174.108]) by linux.microsoft.com (Postfix) with ESMTPSA id 9574020B7185; Mon, 2 Dec 2019 12:24:57 -0800 (PST) DKIM-Filter: OpenDKIM Filter v2.11.0 linux.microsoft.com 9574020B7185 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=linux.microsoft.com; s=default; t=1575318297; bh=bOCSq0wgnyPh/YMpBDbZgZBHSNjtFB5ruPODpAQ5zfM=; h=Subject:To:Cc:References:From:Date:In-Reply-To:From; b=cndXVvKyzotxrBEJ3AcVcHU8063YDBfogOEV+3cuAPiSNdNDSG5VDppRfQx72p74U OepRpddT3jXJHPzFAGR9Y5NZdlNvlmn2hmhBlVtvdfTjT58mYoN0eQOZe1tY46beon K8+3GrH8E5606oJc9omTbSRl69GICRLMCbXSWigU= Subject: Re: [PATCH v0 1/2] IMA: Defined queue functions To: Mimi Zohar , linux-integrity@vger.kernel.org Cc: eric.snowberg@oracle.com, dhowells@redhat.com, matthewgarrett@google.com, sashal@kernel.org, jamorris@linux.microsoft.com, linux-kernel@vger.kernel.org, keyrings@vger.kernel.org, Janne Karhunen References: <20191127025212.3077-1-nramas@linux.microsoft.com> <20191127025212.3077-2-nramas@linux.microsoft.com> <1574887137.4793.346.camel@linux.ibm.com> <1575309622.4793.413.camel@linux.ibm.com> <6ec16f9d-b4f4-bb85-3496-be110fa68f6b@linux.microsoft.com> <1575313891.4793.423.camel@linux.ibm.com> From: Lakshmi Ramasubramanian Message-ID: Date: Mon, 2 Dec 2019 12:24:53 -0800 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:68.0) Gecko/20100101 Thunderbird/68.2.1 MIME-Version: 1.0 In-Reply-To: <1575313891.4793.423.camel@linux.ibm.com> Content-Type: text/plain; charset=utf-8; format=flowed Content-Language: en-US Content-Transfer-Encoding: 8bit Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On 12/2/19 11:11 AM, Mimi Zohar wrote: >> How can I have ima_update_policy() called before a custom policy is loaded? > > Oops, you're right.  My concern was ima_init_policy(), but it calls > ima_update_policy_flag() directly. > > Mimi Thanks Mimi. Please let me know if you have any concerns with respect to the deferred key processing implementation in this patch set. Also, if you think Janne Karhunen work queue implementation can be used for deferred key measurement also, please post the patch set. I'll take a look. thanks, -lakshmi