Re: [PATCH] 3 of 5 IMA: LSM-based measurement code

From: Reiner Sailer
Date: Wed Jun 15 2005 - 17:54:03 EST

Next message: Serge E. Hallyn: "Re: [PATCH] 3 of 5 IMA: LSM-based measurement code"
Previous message: Hareesh Nagarajan: "Re: Porting kref to a 2.4 kernel (2.4.20 or greater)"
In reply to: Chris Wright: "Re: [PATCH] 3 of 5 IMA: LSM-based measurement code"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Serge E. Hallyn (serue@xxxxxxxxxx) wrote:
>
> That's true, of course. Reiner, would any of the integrity measurement
> hooks be moved to a better place than the current LSM hooks? Is there a
> preferred ordering - ie measurement should always happen before the LSM
> modules, or always after? Either of these would of course be clear
> reasons to separate IMA into its own subsystem.
>
> thanks,
> -serge

Originally, IMA was not an LSM. However, when moving to a 2.6 kernel, we
moved it to LSM and have found very easily the current hooks. I don't think
the hook position would change when moving from LSM to non-LSM.

Thanks
Reiner

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Serge E. Hallyn: "Re: [PATCH] 3 of 5 IMA: LSM-based measurement code"
Previous message: Hareesh Nagarajan: "Re: Porting kref to a 2.4 kernel (2.4.20 or greater)"
In reply to: Chris Wright: "Re: [PATCH] 3 of 5 IMA: LSM-based measurement code"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]