Re: [PATCH v3 0/9] bpf-lsm: Extend interoperability with IMA

On Wed, 2022-03-02 at 12:13 +0100, Roberto Sassu wrote:

Extend the interoperability with IMA, to give wider flexibility for the implementation of integrity-focused LSMs based on eBPF.

Patch 1 fixes some style issues.

Patches 2-6 give the ability to eBPF-based LSMs to take advantage of the measurement capability of IMA without needing to setup a policy in IMA (those LSMs might implement the policy capability themselves).

Patches 7-9 allow eBPF-based LSMs to evaluate files read by the kernel.

The tests seem to only work when neither a builtin IMA policy or a custom policy is previously loaded.

thanks,

Mimi