[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Message-ID: <alpine.LRH.2.21.1709150920390.21698@namei.org>
Date: Fri, 15 Sep 2017 09:21:53 +1000 (AEST)
From: James Morris <jmorris@...ei.org>
To: Christoph Hellwig <hch@...radead.org>
cc: Mimi Zohar <zohar@...ux.vnet.ibm.com>,
linux-security-module@...r.kernel.org,
Christoph Hellwig <hch@....de>,
linux-ima-devel@...ts.sourceforge.net,
Linus Torvalds <torvalds@...ux-foundation.org>,
Linux Kernel Mailing List <linux-kernel@...r.kernel.org>
Subject: Re: [PATCH 2/2] integrity: replace call to integrity_read_file with
kernel version
On Thu, 14 Sep 2017, Christoph Hellwig wrote:
> On Fri, Sep 15, 2017 at 06:21:28AM +1000, James Morris wrote:
> > So, to be clear, this patch solves the XFS deadlock using a different
> > approach (to the now reverted integrity_read approach), which Christoph
> > also says is more correct generally. Correct?
>
> No. It is in addition to the previous patches - the patches were
> correct for the IMA interaction with the I/O path. It just turns
> out that the function was also reused for reading certificates
> at initialization time, for which that change was incorrect.
>
> If this series is applied first the integrity_read code is not
> used for that path any more.
Ok. Sorry I hadn't looked at the code in detail at this stage during the
conference and wanting to just revert back to something that Linus can
safely pull before the merge window closes.
--
James Morris
<jmorris@...ei.org>
Powered by blists - more mailing lists