From mboxrd@z Thu Jan  1 00:00:00 1970
Return-path: <kexec-bounces+dwmw2=infradead.org@lists.infradead.org>
Received: from out02.mta.xmission.com ([166.70.13.232])
 by bombadil.infradead.org with esmtps (Exim 4.90_1 #2 (Red Hat Linux))
 id 1fELuP-0000zE-LB
 for kexec@lists.infradead.org; Thu, 03 May 2018 21:37:03 +0000
From: ebiederm@xmission.com (Eric W. Biederman)
References: <1523572911-16363-1-git-send-email-zohar@linux.vnet.ibm.com>
 <1523572911-16363-3-git-send-email-zohar@linux.vnet.ibm.com>
 <87h8nqglpx.fsf@xmission.com>
 <1525275904.5669.308.camel@linux.vnet.ibm.com>
 <87h8nospo5.fsf@xmission.com>
 <6203b1e4-70c3-6d0e-60e0-56c6e8f72ec9@schaufler-ca.com>
 <87y3h0pu72.fsf@xmission.com>
 <1525381619.3539.45.camel@linux.vnet.ibm.com>
Date: Thu, 03 May 2018 16:36:40 -0500
In-Reply-To: <1525381619.3539.45.camel@linux.vnet.ibm.com> (Mimi Zohar's
 message of "Thu, 03 May 2018 17:06:59 -0400")
Message-ID: <87lgd0o1zr.fsf@xmission.com>
MIME-Version: 1.0
Subject: Re: [PATCH 2/3] kexec: call LSM hook for kexec_load syscall
List-Id: <kexec.lists.infradead.org>
List-Unsubscribe: <http://lists.infradead.org/mailman/options/kexec>,
 <mailto:kexec-request@lists.infradead.org?subject=unsubscribe>
List-Archive: <http://lists.infradead.org/pipermail/kexec/>
List-Post: <mailto:kexec@lists.infradead.org>
List-Help: <mailto:kexec-request@lists.infradead.org?subject=help>
List-Subscribe: <http://lists.infradead.org/mailman/listinfo/kexec>,
 <mailto:kexec-request@lists.infradead.org?subject=subscribe>
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
Sender: "kexec" <kexec-bounces@lists.infradead.org>
Errors-To: kexec-bounces+dwmw2=infradead.org@lists.infradead.org
To: Mimi Zohar <zohar@linux.vnet.ibm.com>
Cc: kexec@lists.infradead.org, linux-kernel@vger.kernel.org, Matthew Garrett <mjg59@google.com>, David Howells <dhowells@redhat.com>, linux-security-module@vger.kernel.org, Casey Schaufler <casey@schaufler-ca.com>, linux-integrity@vger.kernel.org

TWltaSBab2hhciA8em9oYXJAbGludXgudm5ldC5pYm0uY29tPiB3cml0ZXM6Cgo+IE9uIFRodSwg
MjAxOC0wNS0wMyBhdCAxMTo0MiAtMDUwMCwgRXJpYyBXLiBCaWVkZXJtYW4gd3JvdGU6Cj4+IENh
c2V5IFNjaGF1ZmxlciA8Y2FzZXlAc2NoYXVmbGVyLWNhLmNvbT4gd3JpdGVzOgo+PiAKPj4gPiBP
biA1LzMvMjAxOCA4OjUxIEFNLCBFcmljIFcuIEJpZWRlcm1hbiB3cm90ZToKPj4gPj4gTWltaSBa
b2hhciA8em9oYXJAbGludXgudm5ldC5pYm0uY29tPiB3cml0ZXM6Cj4+ID4+Cj4+ID4+PiBPbiBX
ZWQsIDIwMTgtMDUtMDIgYXQgMDk6NDUgLTA1MDAsIEVyaWMgVy4gQmllZGVybWFuIHdyb3RlOgo+
PiA+Pj4+IE1pbWkgWm9oYXIgPHpvaGFyQGxpbnV4LnZuZXQuaWJtLmNvbT4gd3JpdGVzOgo+PiA+
Pj4+Cj4+ID4+Pj4+IEFsbG93IExTTXMgYW5kIElNQSB0byBkaWZmZXJlbnRpYXRlIGJldHdlZW4g
dGhlIGtleGVjX2xvYWQgYW5kCj4+ID4+Pj4+IGtleGVjX2ZpbGVfbG9hZCBzeXNjYWxscyBieSBh
ZGRpbmcgYW4gInVubmVjZXNzYXJ5IiBjYWxsIHRvCj4+ID4+Pj4+IHNlY3VyaXR5X2tlcm5lbF9y
ZWFkX2ZpbGUoKSBpbiBrZXhlY19sb2FkLiAgVGhpcyB3b3VsZCBiZSBzaW1pbGFyIHRvIHRoZQo+
PiA+Pj4+PiBleGlzdGluZyBpbml0X21vZHVsZSBzeXNjYWxsIGNhbGxpbmcgc2VjdXJpdHlfa2Vy
bmVsX3JlYWRfZmlsZSgpLgo+PiA+Pj4+IEdpdmVuIHRoZSByZWFzb25hYmxlIGRlc2lyZSB0byBs
b2FkIGEgcG9saWN5IHRoYXQgZW5zdXJlcyBldmVyeXRoaW5nCj4+ID4+Pj4gaGFzIGEgc2lnbmF0
dXJlIEkgZG9uJ3QgaGF2ZSBmdW5kYW1lbnRhbCBvYmplY3Rpb25zLgo+PiA+Pj4+Cj4+ID4+Pj4g
c2VjdXJpdHlfa2VybmVsX3JlYWRfZmlsZSBhcyBhIGhvb2sgc2VlbXMgYW4gb2RkIGNob2ljZS4g
IEF0IHRoZSB2ZXJ5Cj4+ID4+Pj4gbGVhc3QgaXQgaGFzIGEgYmFkIG5hbWUgYmVjYXVzZSB0aGVy
ZSBpcyBubyBmaWxlIHJlYWRpbmcgZ29pbmcgb24gaGVyZS4KPj4gPj4+Pgo+PiA+Pj4+IEkgYW0g
Y29uY2VybmVkIHRoYXQgSSBkb24ndCBzZWUgQ09ORklHX0tFWEVDX1ZFUklGWV9TSUcgYmVpbmcg
dGVzdGVkCj4+ID4+Pj4gYW55d2hlcmUuICBXaGljaCBtZWFucyBJIGNvdWxkIGhhdmUgYSBrZXJu
ZWwgY29tcGlsZWQgd2l0aG91dCB0aGF0IGFuZCBJCj4+ID4+Pj4gd291bGQgYmUgYWxsb3dlZCB0
byB1c2Uga2V4ZWNfZmlsZV9sb2FkIHdpdGhvdXQgc2lnbmF0dXJlIGNoZWNraW5nLgo+PiA+Pj4+
IFdoaWxlIGtleGVjX2xvYWQgd291bGQgYmUgZGVuaWVkLgo+PiA+Pj4+Cj4+ID4+Pj4gQW0gSSBt
aXNzaW5nIHNvbWV0aGluZyBoZXJlPwo+PiA+Pj4gVGhlIGtleGVjX2ZpbGVfbG9hZCgpIGNhbGxz
IGtlcm5lbF9yZWFkX2ZpbGVfZnJvbV9mZCgpLCB3aGljaCBpbiB0dXJuCj4+ID4+PiBjYWxscyBz
ZWN1cml0eV9rZXJuZWxfcmVhZF9maWxlKCkuIMKgU28ga2V4ZWNfZmlsZV9sb2FkIGFuZCBrZXhl
Y19sb2FkCj4+ID4+PiBzeXNjYWxsIHdvdWxkIGJlIHVzaW5nIHRoZSBzYW1lIG1ldGhvZCBmb3Ig
ZW5mb3JjaW5nIHNpZ25hdHVyZQo+PiA+Pj4gdmVyaWZpY2F0aW9uLgo+PiA+PiBIYXZpbmcgbG9v
a2VkIGF0IHlvdXIgcGF0Y2hlcyBhbmQgdGhlIGtlcm5lbCBhIGxpdHRsZSBtb3JlIEkgdGhpbmsK
Pj4gPj4gdGhpcyBzaG91bGQgYmUgYSBzZXBhcmF0ZSBzZWN1cml0eSBob29rIHRoYXQgZG9lcyBu
b3QgdGFrZSBhIGZpbGUKPj4gPj4gcGFyYW1ldGVyLgo+PiA+Pgo+PiA+PiBSaWdodCBub3cgZXZl
cnkgb3RoZXIgc2VjdXJpdHkgbW9kdWxlIGFzc3VtZXMgIWZpbGUgaXMgaW5pdF9tb2R1bGUuCj4+
ID4+IFNvIEkgdGhpbmsgdGhpcyBjaGFuZ2UgaGFzIHRoZSBwb3RlbnRpYWwgdG8gY29uZnVzZSBv
dGhlciBzZWN1cml0eQo+PiA+PiBtb2R1bGVzLCB3aXRoIHRoZSByZXN1bHQgb2YgdW5pbnRlbmRl
ZCBwb2xpY3kgYmVpbmcgYXBwbGllZC4KPj4gPj4KPj4gPj4gU28ganVzdCBmb3IgZ29vZCBzZWN1
cml0eSBtb2R1bGUgaHlnZWluZSBJIHRoaW5rIHRoaXMgbmVlZHMgYSBkZWRpY2F0ZWQKPj4gPj4g
a2V4ZWNfbG9hZCBzZWN1cml0eSBob29rLgo+PiA+Cj4+ID4gSSB3b3VsZCByYXRoZXIgc2VlIHRo
ZSBleGlzdGluZyBtb2R1bGVzIHVwZGF0ZWQgdGhhbiBhIG5ldwo+PiA+IGhvb2sgYWRkZWQuIFRv
byBtYW55IGhvb2tzIHNwb2lsIHRoZSBicm90aC4gVHdvIGhvb2tzIHdpdGgKPj4gPiB0cml2aWFs
IGRpZmZlcmVuY2VzIGp1c3QgYWRkIHRvIHRoZSBjbHV0dGVyIGFuZCBtYWtlIGl0IGhhcmRlcgo+
PiA+IGZvciBub24tbHNtIGRldmVsb3BlcnMgdG8gZmlndXJlIG91dCB3aGF0IHRvIHVzZSBpbiB0
aGVpcgo+PiA+IGNvZGUuCj4+IAo+PiBUaGVzZSBhcmUgbm90IG5vbi10cml2aWFsIGRpZmZlcmVu
Y2VzLiAgVGhlcmUgaXMgYWJzb2x1dGVseSBub3RoaW5nCj4+IGZpbGUgcmVsYXRlZCBhYm91dCBr
ZXhlY19sb2FkLiAgTm9yIGZvciBpbml0X21vZHVsZSBmb3IgdGhhdCBtYXR0ZXIuCj4+IAo+PiBJ
ZiBzb21ldGhpbmcgaXMgY2FsbGVkIHNlY3VyaXR5X2tlcm5lbF9yZWFkX2ZpbGUgSSB0aGluayBp
dCBpcyB3aG9sbHkKPj4gYXBwcm9wcmlhdGUgZm9yIGNvZGUgdGhhdCBwcm9jZXNzZXMgc3VjaCBh
IGhvb2sgdG8gYXNzdW1lIGZpbGUgaXMKPj4gbm9uLU5VTEwuCj4+IAo+PiBXaGVuIHlvdSBoYXZl
IHRvIGRhbmNlIGEgamlnICh3aGljaCBpcyB3aGF0IEkgc2VlIHRoZSBzZWN1cml0eSBtb2R1bGVz
Cj4+IGRvaW5nKSB0byBmaWd1cmUgb3V0IHdobyBpcyBjYWxsaW5nIGEgbHNtIGhvb2sgZm9yIHdo
YXQgcHVycG9zZSBJIHRoaW5rCj4+IGl0IGlzIGEgbWFpbnRlbmFuY2UgcHJvYmxlbSB3YWl0aW5n
IHRvIGhhcHBlbiBhbmQgdGhhdCB0aGUgaG9vayBpcyBiYWRseQo+PiBkZXNpZ25lZC4KPj4gCj4+
IEF0IHRoaXMgcG9pbnQgSSBkb24ndCBjYXJlIHdoYXQgdGhlIGxzbSdzIGRvIHdpdGggdGhlIGhv
b2tzIGJ1dCB0aGUKPj4gaG9va3MgbmVlZCB0byBtYWtlIHNlbnNlIGZvciBwZW9wbGUgb3V0c2lk
ZSBvZiB0aGUgbHNtJ3MgYW5kIHNvbWV0aGluZwo+PiBhYm91dCByZWFkaW5nIGEgZmlsZSBpbiBh
IHN5c2NhbGwgdGhhdCBkb2Vzbid0IHJlYWQgZmlsZXMgaXMgY29tcGxldGUKPj4gYW5kIHV0dGVy
IG5vbnNlbnNlLgo+Cj4gU3VyZSwgd2UgY2FuIGRlZmluZSBhIHdyYXBwZXIgYXJvdW5kIHRoZSBz
ZWN1cml0eV9rZXJuZWxfcmVhZF9maWxlKCkKPiBob29rLCBjYWxsaW5nIGl0IHNlY3VyaXR5X25v
bi1mZF9zeXNjYWxsKCkgb3IgZXZlbgo+IHNlY3VyaXR5X29sZF9zeXNjYWxsKCkuCgpJIHJlYWxs
eSBkb24ndCBzZWUgd2h5IHlvdSB3YW50IHRvIHVzZSB0aGUgc2FtZSBob29rLgoKSSBqdXN0IHJl
YWQgdGhyb3VnaCB0aGUgY29kZSBvZiBhbGwgdGhyZWUgdXNlcnMuICBOb25lIG9mIHRoZW0uCkVz
cGVjaWFsbHkgSU1BIHNoYXJlcyBhbnkgc2lnbmlmaWNhbnQgY29kZSBiZXR3ZWVuIHRoZSAhZmls
ZSBjYXNlIGFuZAp0aGUgZmlsZSBjYXNlLgoKRXJpYwoKCl9fX19fX19fX19fX19fX19fX19fX19f
X19fX19fX19fX19fX19fX19fX19fX19fCmtleGVjIG1haWxpbmcgbGlzdAprZXhlY0BsaXN0cy5p
bmZyYWRlYWQub3JnCmh0dHA6Ly9saXN0cy5pbmZyYWRlYWQub3JnL21haWxtYW4vbGlzdGluZm8v
a2V4ZWMK