Received: by 2002:a05:6a10:16a7:0:0:0:0 with SMTP id gp39csp1726798pxb; Fri, 20 Nov 2020 18:07:11 -0800 (PST) X-Google-Smtp-Source: ABdhPJzmBikZl2Uo/YYWTJsszr83hgdXsi2pCQAFOYPlH63djPTvoFb979K/VpaKhXigKqaUjBJE X-Received: by 2002:aa7:d615:: with SMTP id c21mr38431019edr.23.1605924431486; Fri, 20 Nov 2020 18:07:11 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1605924431; cv=none; d=google.com; s=arc-20160816; b=tgRa9TK0yuvh2VkvMRilb2J0THtTaJ3xz+TSJ2ZwGwu1gdjzi7kDvgQ2iWzS0fW1bF pm6oj4DIz6nNOgZ4bfUkgLC8q8aAwfomn0GJr+6Xa2WiYMId8mMxjTnrz/ZOC0SVG3na EnvSX5su1WjvC7GmF/adEmzUvRVLZigQYZiIPbhakgTEpfLaYVFaSVghh28BiHvqA4Ki 2N1PSTEUCr6b4Afj7SW7gy6G9hIJNzGJdGE6iheu0q8mpONQzE1/xAyCRjHIpRfw81PF IvFzw+yldxV7UTWeXep9voSrZSOoPNqku5i6hO8LQ8MZIN2kqpnjYBOd5ytw5FcFjRSQ MxjA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:mime-version:user-agent:references:message-id :in-reply-to:subject:cc:to:from:date; bh=1PRwb441UHA7xKklNRaBfDhHAYOqfPsFdOti4TvD1Ek=; b=RmD4F89oJN0FzT/7vEjbSmfLKuanETNG1LuZxmIWJud6wqGO7gTwxcnS7rg6/Aedtk 7NgeJbfjx9Nx6G+HIBgl7ZDRxKErAV10rNk+eBp9P7qX08bnnEqwMbJ3vk8LJQca4Q0X bvqHBl1GN7n/06wlA432hy7NovYNWuOF78ReptwsBIoP/UryTq8/lVxrjHhv6LKfKgQO FLMyzw8RJ/po/IiFt3Nc+YvKUe0/JleP1wI5LMiXb0vawCP/Oc9vYawySSJGJ8HIx/Z1 1m8Mh6iaQxof6Ov8srNI81iQ9DmX4epiUPYCBUDaw1ZBoFnIOuURXFSTh+YHLz+yVvQL kUBA== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18]) by mx.google.com with ESMTP id a13si2770598ejc.128.2020.11.20.18.06.49; Fri, 20 Nov 2020 18:07:11 -0800 (PST) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18; Authentication-Results: mx.google.com; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1726704AbgKUCFf (ORCPT + 99 others); Fri, 20 Nov 2020 21:05:35 -0500 Received: from namei.org ([65.99.196.166]:54684 "EHLO namei.org" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1726562AbgKUCFf (ORCPT ); Fri, 20 Nov 2020 21:05:35 -0500 Received: from localhost (localhost [127.0.0.1]) by namei.org (8.14.4/8.14.4) with ESMTP id 0AL25Nup018866; Sat, 21 Nov 2020 02:05:23 GMT Date: Sat, 21 Nov 2020 13:05:23 +1100 (AEDT) From: James Morris To: Tushar Sugandhi cc: zohar@linux.ibm.com, stephen.smalley.work@gmail.com, casey@schaufler-ca.com, agk@redhat.com, snitzer@redhat.com, gmazyland@gmail.com, paul@paul-moore.com, tyhicks@linux.microsoft.com, sashal@kernel.org, nramas@linux.microsoft.com, linux-integrity@vger.kernel.org, selinux@vger.kernel.org, linux-security-module@vger.kernel.org, linux-kernel@vger.kernel.org, dm-devel@redhat.com Subject: Re: [PATCH v6 8/8] selinux: measure state and hash of the policy using IMA In-Reply-To: <20201119232611.30114-9-tusharsu@linux.microsoft.com> Message-ID: References: <20201119232611.30114-1-tusharsu@linux.microsoft.com> <20201119232611.30114-9-tusharsu@linux.microsoft.com> User-Agent: Alpine 2.21 (LRH 202 2017-01-01) MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Thu, 19 Nov 2020, Tushar Sugandhi wrote: > an impact on the security guarantees provided by SELinux. Measuring > such in-memory data structures through IMA subsystem provides a secure > way for a remote attestation service to know the state of the system > and also the runtime changes in the state of the system. I think we need better clarity on the security model here than just "a secure way...". Secure how and against what threats? This looks to me like configuration assurance, i.e. you just want to know that systems have been configured correctly, not to detect a competent attack. Is that correct? -- James Morris