From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <linux-fsdevel-owner@vger.kernel.org>
Received: from g2t1383g.austin.hpe.com ([15.233.16.89]:43808 "EHLO
        g2t1383g.austin.hpe.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S939089AbdEYTET (ORCPT
        <rfc822;linux-fsdevel@vger.kernel.org>);
        Thu, 25 May 2017 15:04:19 -0400
From: "Magalhaes, Guilherme (Brazil R&D-CL)" <guilherme.magalhaes@hpe.com>
To: Mimi Zohar <zohar@linux.vnet.ibm.com>,
        John Johansen <john.johansen@canonical.com>,
        "dmitry.kasatkin@gmail.com" <dmitry.kasatkin@gmail.com>
CC: "viro@zeniv.linux.org.uk" <viro@zeniv.linux.org.uk>,
        "james.l.morris@oracle.com" <james.l.morris@oracle.com>,
        "serge@hallyn.com" <serge@hallyn.com>,
        "linux-fsdevel@vger.kernel.org" <linux-fsdevel@vger.kernel.org>,
        "linux-kernel@vger.kernel.org" <linux-kernel@vger.kernel.org>,
        "linux-ima-devel@lists.sourceforge.net"
        <linux-ima-devel@lists.sourceforge.net>,
        "linux-ima-user@lists.sourceforge.net"
        <linux-ima-user@lists.sourceforge.net>,
        "linux-security-module@vger.kernel.org"
        <linux-security-module@vger.kernel.org>,
        "tycho@docker.com" <tycho@docker.com>,
        "Souza, Joaquim (Brazil R&D-ECL)" <joaquims@hpe.com>,
        "Edwards, Nigel" <nigel.edwards@hpe.com>
Subject: RE: [RFC 04/11] ima: add support to namespace securityfs file
Date: Thu, 25 May 2017 19:04:06 +0000
Message-ID: <CS1PR84MB0294089AC618EE12DB042263FFFF0@CS1PR84MB0294.NAMPRD84.PROD.OUTLOOK.COM>
References: <1494511203-8397-1-git-send-email-guilherme.magalhaes@hpe.com>
         <1494511203-8397-5-git-send-email-guilherme.magalhaes@hpe.com>
         <1495656774.3841.72.camel@linux.vnet.ibm.com>
         <d8d55872-db78-3535-a540-85c0dbb2d6fd@canonical.com>
 <1495712762.3841.89.camel@linux.vnet.ibm.com>
In-Reply-To: <1495712762.3841.89.camel@linux.vnet.ibm.com>
Content-Language: en-US
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
Sender: linux-fsdevel-owner@vger.kernel.org
List-ID: <linux-fsdevel.vger.kernel.org>

TWltaSwNCldpdGggdGhlIHNlY3VyaXR5ZnMgc3ltbGluayB3ZSB3b3VsZCBhZGRyZXNzIHRoZSBj
YXNlIG9mIHNldHRpbmcgcG9saWN5IGluc2lkZSBjb250YWluZXJzLCBidXQgd2Ugc3RpbGwgd291
bGQgbmVlZCBhIHdheSB0byBzZXQgdGhlIElNQSBwb2xpY3kgcGVyIG5hbWVzcGFjZSBvdXRzaWRl
IGNvbnRhaW5lcnMuIFNvLCB0aGUgY3VycmVudCBwcm9wb3NlZCBpbnRlcmZhY2Ugd291bGQgYWRk
cmVzcyB0aGUgbGF0dGVyIGNhc2UuDQpBcyBhbiBhbHRlcm5hdGl2ZSB0byBzeW1saW5rcywgdGFr
aW5nIHRoaXMgcGF0Y2ggc2V0IGFzIGJhc2UsIGFuZCBzdGlsbCBjb25zaWRlcmluZyBzZXR0aW5n
IHBvbGljeSBpbnNpZGUgY29udGFpbmVycyAob3IgaW5zaWRlIG5hbWVzcGFjZXMgaW4gZ2VuZXJh
bCksIGl0IGlzIHBvc3NpYmxlIHRvIGJpbmQgbW91bnQgdGhlIHNlY3VyaXR5ZnMgZmlsZXMgaW50
byB0aGUgY29udGFpbmVycywgYnV0IGl0IHdvdWxkIGJlIG5lZWRlZCB0byBwcmV2ZW50IHJlYWQv
d3JpdGUgYWNjZXNzIHRvIHRoZSBuYW1lc3BhY2VkIElNQSBwb2xpY3kgZmlsZXMgZm9yIHByb2Nl
c3NlcyBub3QgcnVubmluZyBvbiB0aGUgc2FtZSBuYW1lc3BhY2UuDQoNClRoZXNlIG1lY2hhbmlz
bXMgd291bGQgbm90IHJlcXVpcmUgYSBjaGFuZ2UgaW4gdGhlIHByb3Bvc2VkIGRlc2lnbi4gRG8g
eW91IHRoaW5rIHRoZXNlIG1lY2hhbmlzbXMgYXJlIGVub3VnaCBmb3IgdGhlIGZsZXhpYmlsaXR5
IHlvdSBhc2tlZD8NCg0KVGhhbmtzLg0KLS0NCkd1aWxoZXJtZQ0KDQotLS0tLU9yaWdpbmFsIE1l
c3NhZ2UtLS0tLQ0KRnJvbTogTWltaSBab2hhciBbbWFpbHRvOnpvaGFyQGxpbnV4LnZuZXQuaWJt
LmNvbV0gDQpTZW50OiBxdWludGEtZmVpcmEsIDI1IGRlIG1haW8gZGUgMjAxNyAwODo0Ng0KVG86
IEpvaG4gSm9oYW5zZW4gPGpvaG4uam9oYW5zZW5AY2Fub25pY2FsLmNvbT47IE1hZ2FsaGFlcywg
R3VpbGhlcm1lIChCcmF6aWwgUiZELUNMKSA8Z3VpbGhlcm1lLm1hZ2FsaGFlc0BocGUuY29tPjsg
ZG1pdHJ5Lmthc2F0a2luQGdtYWlsLmNvbQ0KQ2M6IHZpcm9AemVuaXYubGludXgub3JnLnVrOyBq
YW1lcy5sLm1vcnJpc0BvcmFjbGUuY29tOyBzZXJnZUBoYWxseW4uY29tOyBsaW51eC1mc2RldmVs
QHZnZXIua2VybmVsLm9yZzsgbGludXgta2VybmVsQHZnZXIua2VybmVsLm9yZzsgbGludXgtaW1h
LWRldmVsQGxpc3RzLnNvdXJjZWZvcmdlLm5ldDsgbGludXgtaW1hLXVzZXJAbGlzdHMuc291cmNl
Zm9yZ2UubmV0OyBsaW51eC1zZWN1cml0eS1tb2R1bGVAdmdlci5rZXJuZWwub3JnOyB0eWNob0Bk
b2NrZXIuY29tOyBTb3V6YSwgSm9hcXVpbSAoQnJhemlsIFImRC1FQ0wpIDxqb2FxdWltc0BocGUu
Y29tPjsgRWR3YXJkcywgTmlnZWwgPG5pZ2VsLmVkd2FyZHNAaHBlLmNvbT4NClN1YmplY3Q6IFJl
OiBbUkZDIDA0LzExXSBpbWE6IGFkZCBzdXBwb3J0IHRvIG5hbWVzcGFjZSBzZWN1cml0eWZzIGZp
bGUNCg0KSGkgSm9obiwNCg0KT24gVGh1LCAyMDE3LTA1LTI1IGF0IDAwOjM2IC0wNzAwLCBKb2hu
IEpvaGFuc2VuIHdyb3RlOg0KPiBPbiAwNS8yNC8yMDE3IDAxOjEyIFBNLCBNaW1pIFpvaGFyIHdy
b3RlOg0KPiA+IE9uIFRodSwgMjAxNy0wNS0xMSBhdCAxMDo1OSAtMDMwMCwgR3VpbGhlcm1lIE1h
Z2FsaGFlcyB3cm90ZToNCj4gPj4gQ3JlYXRpbmcgdGhlIG5hbWVzcGFjZSBzZWN1cml0eWZzIGZp
bGUgdW5kZXIgaW1hIGZvbGRlci4gV2hlbiBhIA0KPiA+PiBtb3VudCBuYW1lc3BhY2UgaWQgaXMg
d3JpdHRlbiB0byB0aGUgbmFtZXNwYWNlIGZpbGUsIGEgbmV3IGZvbGRlciANCj4gPj4gaXMgY3Jl
YXRlZCBhbmQgd2l0aCBhIHBvbGljeSBmaWxlIGZvciB0aGF0IHNwZWNpZmllZCBuYW1lc3BhY2Uu
IA0KPiA+PiBUaGVuLCB1c2VyIGRlZmluZWQgcG9saWN5IGZvciBuYW1lc3BhY2VzIG1heSBiZSBz
ZXQgYnkgd3JpdGluZyBydWxlcyB0byB0aGlzIG5hbWVzcGFjZSBwb2xpY3kgZmlsZS4NCj4gPj4g
V2l0aCB0aGlzIGludGVyZmFjZSwgdGhlcmUgaXMgbm8gbmVlZCB0byBnaXZlIHZpc2liaWxpdHkg
Zm9yIHRoZSANCj4gPj4gc2VjdXJpdHlmcyBpbnNpZGUgbW91bnQgbmFtZXNwYWNlcyBvciBjb250
YWluZXJzIGluIHVzZXJzcGFjZS4NCj4gPj4NCj4gPj4gU2lnbmVkLW9mZi1ieTogR3VpbGhlcm1l
IE1hZ2FsaGFlcyA8Z3VpbGhlcm1lLm1hZ2FsaGFlc0BocGUuY29tPg0KPiA+IA0KPiA+IFRoZSBk
ZXNpZ24gbmVlZHMgdG8gYmUgZmxleGlibGUgZW5vdWdoIGZvciBkaWZmZXJlbnQgdHlwZXMgb2Yg
DQo+ID4gY29udGFpbmVycywgbm90IGp1c3QgZm9yIHdoZW4gdGhlIG9yY2hlc3RyYXRpb24gbGF5
ZXIgcHJvdmlkZXMgdGhlIA0KPiA+IHBvbGljeS4gIFdpdGggdGhpcyBkZXNpZ24sIHRoZSBjb250
YWluZXIgb3duZXIgaGFzIG5vIGNvbnRyb2wgb3ZlciANCj4gPiB0aGUgcG9saWN5Lg0KPiA+IA0K
PiA+IE9uZSBvcHRpb24gaXMgdGhhdCB3ZSBiaW5kIG1vdW50IHRoZSBzZWN1cml0eWZzL3BvbGlj
eSwgc28gdGhhdCByb290IA0KPiA+IGluIHRoZSBjb250YWluZXIgd2lsbCBiZSBhbGxvd2VkIHRv
IHJlYWQvd3JpdGUgdGhlIHBvbGljeS4gIEF0IHNvbWUgDQo+ID4gcG9pbnQsIHdlIG1pZ2h0IGNv
bm5lY3QgYSB2VFBNIHRvIHRoZSBjb250YWluZXIgc28gdGhhdCB0aGUgDQo+ID4gY29udGFpbmVy
IG93bmVyIHdvdWxkIGJlIGFibGUgdG8gZ2V0IGEgcXVvdGUuICBGb3Igbm93IGV2ZW4gd2l0aG91
dCANCj4gPiBhIHZUUE0sIHRoZSBzYW1lIG1lY2hhbmlzbSB3b3VsZCBhbGxvdyByb290IHdpdGhp
biB0aGUgY29udGFpbmVyIHRvIA0KPiA+IHJlYWQgdGhlIG1lYXN1cmVtZW50IGxpc3QuDQo+ID4g
DQo+IEkgaGF2ZW4ndCBsb29rZWQgYXQgdGhpcyBlbm91Z2ggeWV0IG9uIElNQXMgZW5kLCBidXQg
YW5vdGhlciBwb3NzaWJsZSANCj4gc29sdXRpb24gaXMgdXNpbmcgYSBzeW1saW5rIGFuZCBhIG1h
Z2ljIGp1bXBfbGluayBzaW1pbGFyIHRvIHdoYXQgbnNmcyBpcyBkb2luZy4NCj4gDQo+IFRoZSBw
YXRjaCBzZXJpZXMgSSBwb3N0ZWQgb3V0IGEgY291cGxlIG9mIHdlZWtzIGFnbw0KPiAgIFtSRkNd
W1BhdGNoIDAvM10gc2VjdXJpdHlmczogYWRkIHRoZSBhYmlsaXR5IHRvIHN1cHBvcnQgc3ltbGlu
a3MNCj4gDQo+IGFkZHMgc3ltbGluayBzdXBwb3J0IHRvIHNlY3VyaXR5ZnMsIGFuZCB0aGVuIHBh
dGNoIDMvMyBjcmlicyBmcm9tIG5zZnMgDQo+IHVwZGF0aW5nIGFwcGFybW9yZnMgdG8gdXNlIGp1
bXBfbGluayB0byAidmlydHVhbGl6ZSIgdGhlIGFwcGFybW9yIA0KPiBwb2xpY3kgZGlyZWN0b3J5
LiBUaGlzIGF2b2lkcyBuZWVkaW5nIHRvIGhhdmUgdGhlIGJpbmQgbW91bnQuDQo+IA0KPiBJJ2xs
IGJyZWFrIHRoZSBwYXRjaCBvdXQgbW9yZSBhbmQgcmVwb3N0IHNvIGl0cyBlYXNpZXIgdG8gc2Vl
IGlmIHRoaXMgDQo+IGFwcHJvYWNoIG1pZ2h0IHdvcmsgZm9yIElNQS4NCg0KU29ycnksIEkndmUg
YmVlbiBtZWFuaW5nIHRvIHRha2UgYSBsb29rIGF0IHlvdXIgcGF0Y2hlcywgYnV0IGp1c3QgaGF2
ZW4ndCBnb3R0ZW4gdG8gaXQgeWV0LiDCoFRoaXMgYXBwcm9hY2ggc291bmRzIHJlYWxseSBwcm9t
aXNpbmcuDQoNCnRoYW5rcywNCg0KTWltaQ0KDQo=