Re: [PATCH V8 3/3] Call ima_kexec_cmdline to measure the cmdline args

From: James Morris
Date: Thu Jun 13 2019 - 15:22:07 EST

Next message: Jason Gunthorpe: "Re: [PATCH 07/22] memremap: move dev_pagemap callbacks into a separate structure"
Previous message: Jason Gunthorpe: "Re: [PATCH 06/22] mm: factor out a devm_request_free_mem_region helper"
In reply to: Mimi Zohar: "Re: [PATCH V8 3/3] Call ima_kexec_cmdline to measure the cmdline args"
Next in thread: Mimi Zohar: "Re: [PATCH V8 3/3] Call ima_kexec_cmdline to measure the cmdline args"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, 12 Jun 2019, Prakhar Srivastava wrote:

> During soft reboot(kexec_file_load) boot cmdline args
> are not measured.Thus the new kernel on load boots with
> an assumption of cold reboot.
>
> This patch makes a call to the ima hook ima_kexec_cmdline,
> added in "Define a new IMA hook to measure the boot command
> line arguments"
> to measure the boot cmdline args into the ima log.
>
> - call ima_kexec_cmdline from kexec_file_load.
> - move the call ima_add_kexec_buffer after the cmdline
> args have been measured.
>
> Signed-off-by: Prakhar Srivastava <prsriva02@xxxxxxxxx>
> ---
> kernel/kexec_file.c | 9 ++++++---
> 1 file changed, 6 insertions(+), 3 deletions(-)

Reviewed-by: James Morris <jamorris@xxxxxxxxxxxxxxxxxxx>

--
James Morris
<jmorris@xxxxxxxxx>

Next message: Jason Gunthorpe: "Re: [PATCH 07/22] memremap: move dev_pagemap callbacks into a separate structure"
Previous message: Jason Gunthorpe: "Re: [PATCH 06/22] mm: factor out a devm_request_free_mem_region helper"
In reply to: Mimi Zohar: "Re: [PATCH V8 3/3] Call ima_kexec_cmdline to measure the cmdline args"
Next in thread: Mimi Zohar: "Re: [PATCH V8 3/3] Call ima_kexec_cmdline to measure the cmdline args"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]