Received: by 2002:a25:6193:0:0:0:0:0 with SMTP id v141csp4785506ybb; Tue, 7 Apr 2020 14:34:45 -0700 (PDT) X-Google-Smtp-Source: APiQypJLv6nad7C+Z3W3lbKAiHbi/y0hvTu+AKbmS1Wpla+aTXPNz3mfKGndprEwAgtQzW7A14h6 X-Received: by 2002:aca:f0d7:: with SMTP id o206mr155086oih.41.1586295285730; Tue, 07 Apr 2020 14:34:45 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1586295285; cv=none; d=google.com; s=arc-20160816; b=knQvGNVENrg9JTt51RUnNzBq8lWixcmZFztKtuldXWJRYOjqlIEsTzxbqEjkTaax/j Fc+DrvdB0jXnmf2fv6lGQp3qJPl1eWMoLkCUvbmfq/Bw9A9v9jSkyktehE1b/WREk6Al +gBemCsVrXd0EHGaw9JVvxNfgb1MjFXcgGAkeRITeRAgTMJKH4WmZosvDcgvy8LemKuh u2KoUViZfVXQRcU8llZeO9/uBg8O0H/bBwsboBkExQB8FRznvjHxXtU0CrYllfnjtaS+ tuBqwiSdyBsE3wW23a3WJNhj/zSGDi9uM9neQO4rcUEPBDA8f35MGs33r0P9JzuwoUow 9Mvg== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:content-language :content-transfer-encoding:in-reply-to:mime-version:user-agent:date :message-id:from:references:cc:to:subject; bh=hMjxVzykx+8RMMjDeJNgOGhDFzVGQniha69ykW4sT04=; b=KIDhgcnBXx2Vi13+EqU4gdUnx0nRxBm32IJQec0E8PLbxSk3T+6IP55t+2CB1+vtAz xv1AlisM+wlKoE9ReTlc/3/ToLdCvHz8Fp0j4qXVIrQBiwjMMAuR1/Ap03BxRt03iX7h 47synyfynqxwtoUwv/YFBoVBktjEdIrRHsIP+hTWKqXDcJ1YrH8aa0WBD6s5NvjC2pdo ozJdyZR65d6yddm3c354tykN2YS7pGtD3eHAxcQJhrFWjSmrI3Y8Kxvx4gNPQTl6TnUb OkNZpGw2XhMvjTrhxjSj4D/7coHOYxYTJEKrxU8TX8/1H7e/rP9IwkfidRo31H2UjWND +0hA== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=ibm.com Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id l19si1614020otp.119.2020.04.07.14.34.30; Tue, 07 Apr 2020 14:34:45 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=ibm.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1726530AbgDGVcO (ORCPT + 99 others); Tue, 7 Apr 2020 17:32:14 -0400 Received: from mx0a-001b2d01.pphosted.com ([148.163.156.1]:38238 "EHLO mx0a-001b2d01.pphosted.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1726395AbgDGVcO (ORCPT ); Tue, 7 Apr 2020 17:32:14 -0400 Received: from pps.filterd (m0098410.ppops.net [127.0.0.1]) by mx0a-001b2d01.pphosted.com (8.16.0.42/8.16.0.42) with SMTP id 037L4hap104014; Tue, 7 Apr 2020 17:31:59 -0400 Received: from pps.reinject (localhost [127.0.0.1]) by mx0a-001b2d01.pphosted.com with ESMTP id 3082hh5qp2-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Tue, 07 Apr 2020 17:31:59 -0400 Received: from m0098410.ppops.net (m0098410.ppops.net [127.0.0.1]) by pps.reinject (8.16.0.36/8.16.0.36) with SMTP id 037LRsL0015276; Tue, 7 Apr 2020 17:31:59 -0400 Received: from ppma04dal.us.ibm.com (7a.29.35a9.ip4.static.sl-reverse.com [169.53.41.122]) by mx0a-001b2d01.pphosted.com with ESMTP id 3082hh5qng-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Tue, 07 Apr 2020 17:31:59 -0400 Received: from pps.filterd (ppma04dal.us.ibm.com [127.0.0.1]) by ppma04dal.us.ibm.com (8.16.0.27/8.16.0.27) with SMTP id 037LUbr1023206; Tue, 7 Apr 2020 21:31:57 GMT Received: from b01cxnp22036.gho.pok.ibm.com (b01cxnp22036.gho.pok.ibm.com [9.57.198.26]) by ppma04dal.us.ibm.com with ESMTP id 306hv69vxa-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Tue, 07 Apr 2020 21:31:57 +0000 Received: from b01ledav003.gho.pok.ibm.com (b01ledav003.gho.pok.ibm.com [9.57.199.108]) by b01cxnp22036.gho.pok.ibm.com (8.14.9/8.14.9/NCO v10.0) with ESMTP id 037LVuCl12845986 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=OK); Tue, 7 Apr 2020 21:31:56 GMT Received: from b01ledav003.gho.pok.ibm.com (unknown [127.0.0.1]) by IMSVA (Postfix) with ESMTP id C7712B2066; Tue, 7 Apr 2020 21:31:56 +0000 (GMT) Received: from b01ledav003.gho.pok.ibm.com (unknown [127.0.0.1]) by IMSVA (Postfix) with ESMTP id 66031B2068; Tue, 7 Apr 2020 21:31:55 +0000 (GMT) Received: from swastik.ibm.com (unknown [9.65.198.190]) by b01ledav003.gho.pok.ibm.com (Postfix) with ESMTP; Tue, 7 Apr 2020 21:31:55 +0000 (GMT) Subject: Re: [RFC PATCH v2 00/12] Integrity Policy Enforcement LSM (IPE) To: deven.desai@linux.microsoft.com Cc: agk@redhat.com, axboe@kernel.dk, snitzer@redhat.com, jmorris@namei.org, serge@hallyn.com, zohar@linux.ibm.com, linux-integrity@vger.kernel.org, linux-security-module@vger.kernel.org, dm-devel@redhat.com, linux-block@vger.kernel.org, tyhicks@linux.microsoft.com, pasha.tatashin@soleen.com, sashal@kernel.org, jaskarankhurana@linux.microsoft.com, nramas@linux.microsoft.com, mdsakib@linux.microsoft.com, linux-kernel@vger.kernel.org References: <20200406221439.1469862-1-deven.desai@linux.microsoft.com> From: Nayna Message-ID: Date: Tue, 7 Apr 2020 17:31:54 -0400 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:68.0) Gecko/20100101 Thunderbird/68.5.0 MIME-Version: 1.0 In-Reply-To: <20200406221439.1469862-1-deven.desai@linux.microsoft.com> Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: 8bit Content-Language: en-US X-TM-AS-GCONF: 00 X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.138,18.0.676 definitions=2020-04-07_09:2020-04-07,2020-04-07 signatures=0 X-Proofpoint-Spam-Details: rule=outbound_notspam policy=outbound score=0 bulkscore=0 adultscore=0 mlxlogscore=999 spamscore=0 clxscore=1011 malwarescore=0 impostorscore=0 lowpriorityscore=0 suspectscore=1 mlxscore=0 phishscore=0 priorityscore=1501 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2003020000 definitions=main-2004070166 Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On 4/6/20 6:14 PM, deven.desai@linux.microsoft.com wrote: > From: Deven Bowers > > Changelog: > ------------------------------------ > > v1: Introduced > > v2: > Split the second patch of the previous series into two. > Minor corrections in the cover-letter and documentation > comments regarding CAP_MAC_ADMIN checks in IPE. > > Overview: > ------------------------------------ > IPE is a Linux Security Module, which allows for a configurable > policy to enforce integrity requirements on the whole system. It > attempts to solve the issue of Code Integrity: that any code being > executed (or files being read), are identical to the version that > was built by a trusted source. Can you please clarify the "motivation" for this patch set more clearly? It seems to define a policy layer on top of dm-verity, which may be compiled into the kernel. In the motivation, can you please also make it explicit why existing mechanisms cannot be extended to achieve your purpose? Also, AFIK, the changelog should be moved to the end of the patch description. Thanks & Regards,     - Nayna