Re: [RFC PATCH v2 0/2] ima: Fix detection of read/write violations on stacked filesystems

From: Stefan Berger
Date: Tue Apr 23 2024 - 06:55:48 EST

Next message: Stas Sergeev: "[PATCH v2 0/2] implement OA2_INHERIT_CRED flag for openat2()"
Previous message: Thomas Richard: "Re: [PATCH v5 01/11] gpio: pca953x: move suspend()/resume() to suspend_noirq()/resume_noirq()"
In reply to: Amir Goldstein: "Re: [RFC PATCH v2 0/2] ima: Fix detection of read/write violations on stacked filesystems"
Next in thread: Roberto Sassu: "Re: [RFC PATCH v2 0/2] ima: Fix detection of read/write violations on stacked filesystems"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 4/23/24 02:02, Amir Goldstein wrote:

On Mon, Apr 22, 2024 at 6:07 PM Stefan Berger <stefanb@xxxxxxxxxxxxx> wrote:

This series fixes the detection of read/write violations on stacked
filesystems. To be able to access the relevant dentries necessary to
detect files opened for writing on a stacked filesystem a new d_real_type
D_REAL_FILEDATA is introduced that allows callers to access all relevant
files involved in a stacked filesystem while traversing the layers.

Stefan,

Both Miklos and myself objected to this solution:
https://lore.kernel.org/linux-unionfs/CAJfpeguctirEYECoigcAsJwpGPCX2NyfMZ8H8GHGW-0UyKfjgg@xxxxxxxxxxxxxx/

Thanks, the RFC has achieved its objective now.

Stefan

Next message: Stas Sergeev: "[PATCH v2 0/2] implement OA2_INHERIT_CRED flag for openat2()"
Previous message: Thomas Richard: "Re: [PATCH v5 01/11] gpio: pca953x: move suspend()/resume() to suspend_noirq()/resume_noirq()"
In reply to: Amir Goldstein: "Re: [RFC PATCH v2 0/2] ima: Fix detection of read/write violations on stacked filesystems"
Next in thread: Roberto Sassu: "Re: [RFC PATCH v2 0/2] ima: Fix detection of read/write violations on stacked filesystems"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]