Re: [PATCH 0/4] Code improvements in integrity and IMA
From: Mimi Zohar
Date: Thu Mar 15 2018 - 17:02:01 EST
Hi Thiago,
On Wed, 2018-03-14 at 17:20 -0300, Thiago Jung Bauermann wrote:
> Hello,
>
> These patches come from the "appended signatures support for IMA appraisal"
> series. They are code improvements and cleanups and I decided to submit
> them separately for a couple of reasons:
>
> 1. they stand on their own and could be included in v4.17;
>
> 2. this will simplify the original patch series a bit, by having it contain
> only the patches actually necessary to implement the feature.
Agreed. ÂThe first 3 patches are applied. ÂThe last one, we'll see
about.
Mimi
>
> These are the changes made to them since v5 of the modsig series:
>
> - Patch "integrity: Remove unused macro IMA_ACTION_RULE_FLAGS"
> - New patch.
>
> - Patch "ima: Improvements in ima_appraise_measurement()"
> - Moved is_ima_sig() to its own patch (not in this series).
>
> Mimi Zohar (1):
> ima: Improvements in ima_appraise_measurement()
>
> Thiago Jung Bauermann (3):
> integrity: Remove unused macro IMA_ACTION_RULE_FLAGS
> ima: Simplify ima_eventsig_init()
> integrity: Introduce struct evm_xattr
>
> security/integrity/evm/evm_crypto.c | 4 ++--
> security/integrity/evm/evm_main.c | 10 ++++----
> security/integrity/ima/ima_appraise.c | 40 ++++++++++++++++++-------------
> security/integrity/ima/ima_template_lib.c | 11 +++------
> security/integrity/integrity.h | 6 ++++-
> 5 files changed, 39 insertions(+), 32 deletions(-)
>