Received: by 2002:a25:1985:0:0:0:0:0 with SMTP id 127csp849229ybz; Wed, 29 Apr 2020 10:27:17 -0700 (PDT) X-Google-Smtp-Source: APiQypJNn+Oz+TwBUwB/pJ2Mj8hm5HZqdNQTtyV6Q95+vyze17mCX+IbFQqB1mdgIQiziJq9wPnf X-Received: by 2002:a50:c44c:: with SMTP id w12mr3529393edf.83.1588181237651; Wed, 29 Apr 2020 10:27:17 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1588181237; cv=none; d=google.com; s=arc-20160816; b=Lah8kIpVN6ssXh8QaTZYaP2LUUN3c5TWyC/VWh7WZnIM4zFOxwokHduLdHcZr57PFZ lxVlYQpUQ3har2nMh9wHmjySqUDVx2y6CnSZkSktQlrnEUNMN2cVm2g7lUxn41IBYaP+ LrD4LINCM7xfhPpOzG7iXZ32jFu0wa1hPdk0RBQZEi5DTcAGC2/oKFJAO1prarSvcGYC 4o+AUeszKmIcVPcfzOJbgiG6i0V03hz+n0f6Ta4j0d6+94FsC6U+XdgfnRIPW0WUpstq /9KBUCw1T2ng7NjYAap9c/OKqprypsL1OCafDSaRVR9+QbAUK7odBeJZsOJuNzPR3CYU a0xA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:content-transfer-encoding :content-language:in-reply-to:mime-version:user-agent:date :message-id:from:references:cc:to:subject:dkim-signature:dkim-filter; bh=sejNNHE6Un9l9iyWcXAw0ccsHgdDT73GrYnZBNmWzVQ=; b=KlS9sOjMpU98JW+55iZgqz6GcGZh1cYdPyLhbqTe+gAR1KfWgHdFaEHCF6cD9RULhc Hw7V/LT+KoXmBvufvJrCd5NCK/OHJPeNZB7O8UESHkum4Eee+Tpr3Tht71QoNFjGV92w xfCFtkQIoexe2hpT5/auHDsbYC8IQLvH8eu4qBuXkRzjsWCK5onUwX17ejJP75oXRROj iq14YvvZjUB0m/EKsJW1CN/6N8gwp5hFweglRDMIyRADVuE6k5c/ak3MJdFTnhPMFAoC SDqeP1KOHMfbxAiYY0nJZWBvThSMCSDV+OQhxalNVzzvHSDjJ3qWP2j4L7ND3VTA9mZr gXPw== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@linux.microsoft.com header.s=default header.b=KDoQ7LIL; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=linux.microsoft.com Return-Path: Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18]) by mx.google.com with ESMTP id r21si3715605edo.476.2020.04.29.10.26.40; Wed, 29 Apr 2020 10:27:17 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18; Authentication-Results: mx.google.com; dkim=pass header.i=@linux.microsoft.com header.s=default header.b=KDoQ7LIL; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=linux.microsoft.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1726907AbgD2RWh (ORCPT + 99 others); Wed, 29 Apr 2020 13:22:37 -0400 Received: from linux.microsoft.com ([13.77.154.182]:32904 "EHLO linux.microsoft.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1726524AbgD2RWh (ORCPT ); Wed, 29 Apr 2020 13:22:37 -0400 Received: from [192.168.0.109] (c-73-42-176-67.hsd1.wa.comcast.net [73.42.176.67]) by linux.microsoft.com (Postfix) with ESMTPSA id F2DF9201E7E5; Wed, 29 Apr 2020 10:22:36 -0700 (PDT) DKIM-Filter: OpenDKIM Filter v2.11.0 linux.microsoft.com F2DF9201E7E5 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=linux.microsoft.com; s=default; t=1588180957; bh=sejNNHE6Un9l9iyWcXAw0ccsHgdDT73GrYnZBNmWzVQ=; h=Subject:To:Cc:References:From:Date:In-Reply-To:From; b=KDoQ7LILwDZg8ExtQu3YhpjNlODL4eQ421nHBrTAX4NLHGXa3dy2npY+K9G41Pcpx 5zSP9w2WDGxsUqMf5K+znWkkxSJPfCm3kGDts6OSh13DFn7JzM5Yb6lBYddz0tk4Fb W9OQiU/OhfMMj4lLMazxp988zP/XD12Emxz/D8vs= Subject: Re: [PATCH 1/2] ima: add policy support for identifying file execute mode bit To: Mimi Zohar , linux-integrity@vger.kernel.org Cc: Mickael Salaun , Steve Grubb , Jann Horn , linux-security-module@vger.kernel.org, linux-kernel@vger.kernel.org References: <1588167523-7866-1-git-send-email-zohar@linux.ibm.com> <1588167523-7866-2-git-send-email-zohar@linux.ibm.com> From: Lakshmi Ramasubramanian Message-ID: <0708f375-b293-c576-89b8-02379d7a807b@linux.microsoft.com> Date: Wed, 29 Apr 2020 10:22:36 -0700 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:68.0) Gecko/20100101 Thunderbird/68.7.0 MIME-Version: 1.0 In-Reply-To: <1588167523-7866-2-git-send-email-zohar@linux.ibm.com> Content-Type: text/plain; charset=utf-8; format=flowed Content-Language: en-US Content-Transfer-Encoding: 7bit Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On 4/29/20 6:38 AM, Mimi Zohar wrote: > Extend the IMA policy language with "mode=IXUGO" to identify files with > the execute mode bit enabled. > > Examples: > measure func=FILE_CHECK mode=IXUGO > appraise func=FILE_CHECK appraise_type=imasig mode=IXUGO > > Suggested-by: Steve Grubb (based on execute mode bit) > Signed-off-by: Mimi Zohar Reviewed.