On Thu, Dec 17, 2015 at 07:32:10AM -0500, Mimi Zohar wrote: > On Thu, 2015-12-17 at 14:45 +0800, Dave Young wrote: > > On 12/08/15 at 02:15pm, Mimi Zohar wrote: > > > There's a lot of code duplication for reading a file by the kernel (eg. > > > kexec, firmware, kernel modules, ...). Each place does it just a bit > > > differently than the other. There should be a single function for > > > reading and calculating the file hash at the same time. > > > > If you want to address the duplication for reading file, IMHO you can > > introduce a general interface to read file in kernel space. But I do not > > think the reading + calculating only interface is a good way. > > Ok. As described above, the call would read the buffer into memory and > then call IMA to calculate the buffer hash. > > (If someone else is interested in getting involved in kernel > development, cleaning up this code duplication is a good, relatively > small, self contained project.)
I'm with Dave though, I realize that's work but I can help do it with you. Luis -- To unsubscribe from this list: send the line "unsubscribe linux-security-module" in the body of a message to majord...@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html