Received: by 2002:a05:6a10:2785:0:0:0:0 with SMTP id ia5csp410155pxb;
        Thu, 14 Jan 2021 08:48:04 -0800 (PST)
X-Google-Smtp-Source: ABdhPJyA0G4J4UacclAZChCCZhXQ1ssUDmv2wYgtVHqxgtnxGuUjNW4TgCUcQVUnZlGlnaqnLFhT
X-Received: by 2002:a17:906:3401:: with SMTP id c1mr6063815ejb.156.1610642884324;
        Thu, 14 Jan 2021 08:48:04 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; t=1610642884; cv=none;
        d=google.com; s=arc-20160816;
        b=ykwb1DiWxHq/ttYacRHThW/MdbqAhu6p6T5kk9fjQ9NqmZDlIk6vXKlhDX2V0DPB+C
         gyHc5Ht0+ryQFppPy/Eb16hAeVKiUfz5QlDQwrWWA+cKCiQvyLZfBTvzcUiPsZNl6kHx
         EvPsQ+cZOBVO/0S2POrErHXH1cipnFXF3QJvGX1PKAmkEzLVrCIzXRRk6APsC6sqr7Dm
         0wZLR04gWZeCk5S7o7U7q6pgKLYIfW0KP3C9o+Ew0aOu57Xm1a0EqS9Wns3kUHtnguP5
         WWWUku+5rViZlsC2sPUox4YBee6SpiGb5b2+0nNKkms9DfjWkCYhh82sLavCs8Owv4JJ
         OkvA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:content-transfer-encoding:mime-version
         :references:in-reply-to:date:cc:to:from:subject:message-id
         :dkim-signature;
        bh=eF2v+ZQkH+xDAE5NMv5INoHHD/SQP10arN2yyBt97WQ=;
        b=uL9px1ZTep4k3VjkiSU0stLAXUA9hFbzYH7KzkK52T5oJ/DV4LwsS3cnOmJw3vjV1D
         diiYOWowgzEWP2mINjBncRhBYVlUTMvpZvX8SJprhYVhu6KMiRxHXXd37glQB2wcUYBb
         gikgjB6aGi9dh8gpoYGcDCMJEM2E9mtLaMAcYhboHtDwKplEL25+IhrIt3EqPZ6Z0T3E
         0Xah7P5KFyEzFcKBUktTm14CSMG2N89wngYbEfDYbpjRklHqpQB6M2FngbblEFsL9GBt
         uKoAY1KSP5jutw9XZTAhn3yJ/ySEAZMJ1g5agIGYNv1B/4glqmPNLWLLLp8O8tynGCVp
         e1Ng==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@ibm.com header.s=pp1 header.b=WsrapMxy;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=ibm.com
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18])
        by mx.google.com with ESMTP id y18si426019ejh.299.2021.01.14.08.47.39;
        Thu, 14 Jan 2021 08:48:04 -0800 (PST)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@ibm.com header.s=pp1 header.b=WsrapMxy;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=ibm.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1726789AbhANQpX (ORCPT <rfc822;liu198754@gmail.com> + 99 others);
        Thu, 14 Jan 2021 11:45:23 -0500
Received: from mx0b-001b2d01.pphosted.com ([148.163.158.5]:58506 "EHLO
        mx0a-001b2d01.pphosted.com" rhost-flags-OK-OK-OK-FAIL)
        by vger.kernel.org with ESMTP id S1726067AbhANQpX (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Thu, 14 Jan 2021 11:45:23 -0500
Received: from pps.filterd (m0098413.ppops.net [127.0.0.1])
        by mx0b-001b2d01.pphosted.com (8.16.0.42/8.16.0.42) with SMTP id 10EGgr0d055922;
        Thu, 14 Jan 2021 11:44:37 -0500
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ibm.com; h=message-id : subject :
 from : to : cc : date : in-reply-to : references : content-type :
 mime-version : content-transfer-encoding; s=pp1;
 bh=eF2v+ZQkH+xDAE5NMv5INoHHD/SQP10arN2yyBt97WQ=;
 b=WsrapMxyd9iyUDozV+uO91GC9y5cyb+oEhCeaqtoswYVcnzXrSB3DSqFUSNQrTvkW+1Z
 uuDDPm1NaN0dy+MxFUsc4obEpImciBsl4vVoYrU7bFsLiqRZyblly/NNJwOAIY/EYswU
 t0GgtX6RthB4x6Csk1XNZmqwaGUU/suu7yDJqqbrfIMeLxmUb0D7osYMMT8eGsfsuWdN
 algozukhSB/IzM1pDj/XTgQfhPWHKkLMDGurVbplRv5KOCCadR+zCYNuIaamutiL7AL3
 c0l0Mx3I2qjhgWW4a6Xq/qOJCmu9SpLZRMkcAjB+p4HisjNZMGnoeYBNQZI4Hmg056LP zQ== 
Received: from pps.reinject (localhost [127.0.0.1])
        by mx0b-001b2d01.pphosted.com with ESMTP id 362sqbr12b-1
        (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT);
        Thu, 14 Jan 2021 11:44:36 -0500
Received: from m0098413.ppops.net (m0098413.ppops.net [127.0.0.1])
        by pps.reinject (8.16.0.36/8.16.0.36) with SMTP id 10EGh70k056353;
        Thu, 14 Jan 2021 11:44:36 -0500
Received: from ppma05fra.de.ibm.com (6c.4a.5195.ip4.static.sl-reverse.com [149.81.74.108])
        by mx0b-001b2d01.pphosted.com with ESMTP id 362sqbr11m-1
        (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT);
        Thu, 14 Jan 2021 11:44:36 -0500
Received: from pps.filterd (ppma05fra.de.ibm.com [127.0.0.1])
        by ppma05fra.de.ibm.com (8.16.0.42/8.16.0.42) with SMTP id 10EGbVht003453;
        Thu, 14 Jan 2021 16:44:34 GMT
Received: from b06avi18878370.portsmouth.uk.ibm.com (b06avi18878370.portsmouth.uk.ibm.com [9.149.26.194])
        by ppma05fra.de.ibm.com with ESMTP id 35y448be54-1
        (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT);
        Thu, 14 Jan 2021 16:44:34 +0000
Received: from d06av22.portsmouth.uk.ibm.com (d06av22.portsmouth.uk.ibm.com [9.149.105.58])
        by b06avi18878370.portsmouth.uk.ibm.com (8.14.9/8.14.9/NCO v10.0) with ESMTP id 10EGiQUF33161524
        (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=OK);
        Thu, 14 Jan 2021 16:44:26 GMT
Received: from d06av22.portsmouth.uk.ibm.com (unknown [127.0.0.1])
        by IMSVA (Postfix) with ESMTP id EE11E4C046;
        Thu, 14 Jan 2021 16:44:31 +0000 (GMT)
Received: from d06av22.portsmouth.uk.ibm.com (unknown [127.0.0.1])
        by IMSVA (Postfix) with ESMTP id 8C3244C04E;
        Thu, 14 Jan 2021 16:44:28 +0000 (GMT)
Received: from sig-9-65-209-51.ibm.com (unknown [9.65.209.51])
        by d06av22.portsmouth.uk.ibm.com (Postfix) with ESMTP;
        Thu, 14 Jan 2021 16:44:28 +0000 (GMT)
Message-ID: <99be76345f375bb2f485f08a53dcb8ed806dc538.camel@linux.ibm.com>
Subject: Re: [PATCH v10 8/8] selinux: include a consumer of the new IMA
 critical data hook
From:   Mimi Zohar <zohar@linux.ibm.com>
To:     Lakshmi Ramasubramanian <nramas@linux.microsoft.com>,
        Paul Moore <paul@paul-moore.com>,
        Sasha Levin <sashal@kernel.org>
Cc:     Tushar Sugandhi <tusharsu@linux.microsoft.com>,
        Stephen Smalley <stephen.smalley.work@gmail.com>,
        casey@schaufler-ca.com, agk@redhat.com, snitzer@redhat.com,
        gmazyland@gmail.com, tyhicks@linux.microsoft.com,
        sashal@kernel.org, James Morris <jmorris@namei.org>,
        linux-integrity@vger.kernel.org, selinux@vger.kernel.org,
        linux-security-module@vger.kernel.org,
        linux-kernel@vger.kernel.org, dm-devel@redhat.com
Date:   Thu, 14 Jan 2021 11:44:27 -0500
In-Reply-To: <fc80b1a1-ff4d-3bf2-59bd-2cb56135bf0f@linux.microsoft.com>
References: <20210108040708.8389-1-tusharsu@linux.microsoft.com>
         <20210108040708.8389-9-tusharsu@linux.microsoft.com>
         <CAHC9VhSJk0wG=WzO3bwsueiy19mMi9m6MamTrQfH8C=gXUtvGw@mail.gmail.com>
         <97328fc71687a0e1c327f6821548be9ba35bb193.camel@linux.ibm.com>
         <CAHC9VhTzaQ_q8gJ0oeok_yJ54XLETNvOuhhKnyRwgqsqvpBLCw@mail.gmail.com>
         <71cddb6c8676ccd63c89364d805cfca76d32cb6e.camel@linux.ibm.com>
         <CAHC9VhRhYWEcK7TepZ=LK1m=9Zn_gtOZyAYfamP-TFU3rRH+zw@mail.gmail.com>
         <e29a618645b0e73ec06960a02b6da465614689ff.camel@linux.ibm.com>
         <CAHC9VhTHqwKem=MyQBY4TNAq-DOVhwEZS8pjrSE=4OxdEVm-GA@mail.gmail.com>
         <3746bc7673df25354411151442a7772b867be396.camel@linux.ibm.com>
         <fc80b1a1-ff4d-3bf2-59bd-2cb56135bf0f@linux.microsoft.com>
Content-Type: text/plain; charset="ISO-8859-15"
X-Mailer: Evolution 3.28.5 (3.28.5-14.el8) 
Mime-Version: 1.0
Content-Transfer-Encoding: 7bit
X-TM-AS-GCONF: 00
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.343,18.0.737
 definitions=2021-01-14_05:2021-01-14,2021-01-14 signatures=0
X-Proofpoint-Spam-Details: rule=outbound_notspam policy=outbound score=0 lowpriorityscore=0
 spamscore=0 malwarescore=0 mlxlogscore=999 mlxscore=0 bulkscore=0
 impostorscore=0 clxscore=1015 priorityscore=1501 adultscore=0 phishscore=0
 suspectscore=0 classifier=spam adjust=0 reason=mlx scancount=1
 engine=8.12.0-2009150000 definitions=main-2101140091
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

[Cc'ing Sasha]

Hi Lakshmi,

On Thu, 2021-01-14 at 08:22 -0800, Lakshmi Ramasubramanian wrote:
> On 1/13/21 6:49 PM, Mimi Zohar wrote:

> >>> Lakshmi is trying to address the situation where an event changes a
> >>> value, but then is restored to the original value.  The original and
> >>> subsequent events are measured, but restoring to the original value
> >>> isn't re-measured.  This isn't any different than when a file is
> >>> modified and then reverted.
> >>>
> >>> Instead of changing the name like this, which doesn't work for files,
> >>> allowing duplicate measurements should be generic, based on policy.
> >>
> >> Perhaps it is just the end of the day and I'm a bit tired, but I just
> >> read all of the above and I have no idea what your current thoughts
> >> are regarding this patch.
> > 
> > Other than appending the timestamp, which is a hack, the patch is fine.
> > Support for re-measuring an event can be upstreamed independently.
> > 
> 
> Thanks for clarifying the details related to duplicate measurement 
> detection and re-measuring.
> 
> I will keep the timestamp for the time being, even though its a hack, as 
> it helps with re-measuring state changes in SELinux. We will add support 
> for "policy driven" re-measurement as a subsequent patch series.

Once including the timestamp is upstreamed, removing it will be
difficult, especially if different userspace applications are dependent
on it.  Unless everyone is on board that removing the timestamp
wouldn't be considered a regression, it cannot be upstreamed.

thanks,

Mimi