Re: [PATCH] ima: Calculate digest in ima_inode_hash() if not available

Hi Roberto,

On Fri, 2022-02-11 at 11:48 +0100, Roberto Sassu wrote:

__ima_inode_hash() checks if a digest has been already calculated by looking for the integrity_iint_cache structure associated to the passed inode.

Users of ima_file_hash() and ima_inode_hash() (e.g. eBPF) might be interested in obtaining the information without having to setup an IMA policy so that the digest is always available at the time they call one of those functions.

Things obviously changed, but the original use case for this interface, as I recall, was a quick way to determine if a file had been accessed on the system.