From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from us-smtp-delivery-124.mimecast.com (us-smtp-delivery-124.mimecast.com [170.10.129.124]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.lore.kernel.org (Postfix) with ESMTPS id 81846C77B6E for ; Wed, 12 Apr 2023 12:35:34 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=redhat.com; s=mimecast20190719; t=1681302933; h=from:from:sender:sender:reply-to:subject:subject:date:date: message-id:message-id:to:to:cc:cc:mime-version:mime-version: content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references:list-id:list-help: list-unsubscribe:list-subscribe:list-post; bh=u96iMjsGxBTAXJyursRGQhdyVGJLc4lSE27sNelByMU=; b=ZzuGEXZvWDES4J6+KzVqHZrcQWScsVK+KsLL9JhWCwy5138tCuVfDa2hbA/DCfOJlvyrPf aljCvO36nFKxRDhARTSw26rJFqU3ZovNkMnDOloE1BCRxZFmAFBvuY0LjjPUwZS6HdQ36T sWDilBnWGpg3xjH/ZJlITbnzXuqscOE= Received: from mimecast-mx02.redhat.com (mimecast-mx02.redhat.com [66.187.233.88]) by relay.mimecast.com with ESMTP with STARTTLS (version=TLSv1.2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id us-mta-83-j4dLfKPXNGeg77LQ8YPokQ-1; Wed, 12 Apr 2023 08:35:30 -0400 X-MC-Unique: j4dLfKPXNGeg77LQ8YPokQ-1 Received: from smtp.corp.redhat.com (int-mx09.intmail.prod.int.rdu2.redhat.com [10.11.54.9]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by mimecast-mx02.redhat.com (Postfix) with ESMTPS id C9A2E8996F2; Wed, 12 Apr 2023 12:35:28 +0000 (UTC) Received: from mm-prod-listman-01.mail-001.prod.us-east-1.aws.redhat.com (unknown [10.30.29.100]) by smtp.corp.redhat.com (Postfix) with ESMTP id 3386B492C14; Wed, 12 Apr 2023 12:35:27 +0000 (UTC) Received: from mm-prod-listman-01.mail-001.prod.us-east-1.aws.redhat.com (localhost [IPv6:::1]) by mm-prod-listman-01.mail-001.prod.us-east-1.aws.redhat.com (Postfix) with ESMTP id BF08C194658F; Wed, 12 Apr 2023 12:35:26 +0000 (UTC) Received: from smtp.corp.redhat.com (int-mx01.intmail.prod.int.rdu2.redhat.com [10.11.54.1]) by mm-prod-listman-01.mail-001.prod.us-east-1.aws.redhat.com (Postfix) with ESMTP id 3247019466DF for ; Tue, 11 Apr 2023 21:45:57 +0000 (UTC) Received: by smtp.corp.redhat.com (Postfix) id 157B640CF8F1; Tue, 11 Apr 2023 21:45:57 +0000 (UTC) Received: from mimecast-mx02.redhat.com (mimecast07.extmail.prod.ext.rdu2.redhat.com [10.11.55.23]) by smtp.corp.redhat.com (Postfix) with ESMTPS id 0DCB640CF8E2 for ; Tue, 11 Apr 2023 21:45:57 +0000 (UTC) Received: from us-smtp-1.mimecast.com (us-smtp-delivery-1.mimecast.com [207.211.31.120]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mimecast-mx02.redhat.com (Postfix) with ESMTPS id E2A913C02B6E for ; Tue, 11 Apr 2023 21:45:56 +0000 (UTC) Received: from mail-yb1-f181.google.com (mail-yb1-f181.google.com [209.85.219.181]) by relay.mimecast.com with ESMTP with STARTTLS (version=TLSv1.3, cipher=TLS_AES_256_GCM_SHA384) id us-mta-345-doNwzdK8Oqu0O3UVccjPEw-1; Tue, 11 Apr 2023 17:45:52 -0400 X-MC-Unique: doNwzdK8Oqu0O3UVccjPEw-1 Received: by mail-yb1-f181.google.com with SMTP id z9so9776505ybs.9 for ; Tue, 11 Apr 2023 14:45:52 -0700 (PDT) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; t=1681249552; x=1683841552; h=content-transfer-encoding:cc:to:subject:message-id:date:from :in-reply-to:references:mime-version:x-gm-message-state:from:to:cc :subject:date:message-id:reply-to; bh=QJHIYVc0csC12SHK/J/mtXalsO4pjHKd97C3GIyBGPs=; b=rQKhyNWpOP7Mk70aaFVRCb2memTcqFMZ/pGqzGsesjJiivTHxLCoOnlTFtGe3cceMt 1LZVD/XExk5IUkV1EYmisaaTNtfD+FSRi6cX64/fqQymCGFavrHmWlU8NRh4VqZHMIkW I6FOEpAo1rCn5Nh7DDiQAdab5TeDidR098Iix/qZ4VvY8nzP3cNIRKD64nSch6RivDlt /uXhBheM4wMSLmMRHci9gVWbl/jlM0CRxhm0SiORveR4Fp2Epq78fDARWguEjsDKtgVe cD40r8k1BrkAE9q+lj+LeNQW679rLEa6EtUvBvNhSd63zMo+yWfU6fVzHHo6ho10b+9v LUZA== X-Gm-Message-State: AAQBX9e33l1OYYnjR6vuX6xJUz/rq8IdL1msOFndrZO2lB/FN25lp0lK P6yPjSbN4FQK1CeDOgdlkfQhm2jb9kq4+RJ2gY94 X-Google-Smtp-Source: AKy350Yy44JQPhqwIxfCYnzm9J8mBAXlzIsXMzsUvsaWbKpTAmHS32TjoXQQ8RK1Y2npGScPRJOP30cnOuG8gOZrT1A= X-Received: by 2002:a25:e0c5:0:b0:b8b:fd23:5028 with SMTP id x188-20020a25e0c5000000b00b8bfd235028mr2609635ybg.3.1681249552097; Tue, 11 Apr 2023 14:45:52 -0700 (PDT) MIME-Version: 1.0 References: <1675119451-23180-1-git-send-email-wufan@linux.microsoft.com> <1675119451-23180-6-git-send-email-wufan@linux.microsoft.com> <20230410191035.GB18827@linuxonhyperv3.guj3yctzbm1etfxqx2vob5hsef.xx.internal.cloudapp.net> In-Reply-To: <20230410191035.GB18827@linuxonhyperv3.guj3yctzbm1etfxqx2vob5hsef.xx.internal.cloudapp.net> From: Paul Moore Date: Tue, 11 Apr 2023 17:45:41 -0400 Message-ID: Subject: Re: [RFC PATCH v9 05/16] ipe: add userspace interface To: Fan Wu X-Mimecast-Impersonation-Protect: Policy=CLT - Impersonation Protection Definition; Similar Internal Domain=false; Similar Monitored External Domain=false; Custom External Domain=false; Mimecast External Domain=false; Newly Observed Domain=false; Internal User Name=false; Custom Display Name List=false; Reply-to Address Mismatch=false; Targeted Threat Dictionary=false; Mimecast Threat Dictionary=false; Custom Threat Dictionary=false X-Scanned-By: MIMEDefang 3.1 on 10.11.54.1 X-Mailman-Approved-At: Wed, 12 Apr 2023 12:34:31 +0000 X-BeenThere: linux-audit@redhat.com X-Mailman-Version: 2.1.29 Precedence: list List-Id: Linux Audit Discussion List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Cc: axboe@kernel.dk, linux-block@vger.kernel.org, tytso@mit.edu, dm-devel@redhat.com, corbet@lwn.net, roberto.sassu@huawei.com, Deven Bowers , linux-doc@vger.kernel.org, snitzer@kernel.org, jmorris@namei.org, zohar@linux.ibm.com, linux-kernel@vger.kernel.org, ebiggers@kernel.org, linux-security-module@vger.kernel.org, linux-audit@redhat.com, eparis@redhat.com, linux-fscrypt@vger.kernel.org, linux-integrity@vger.kernel.org, agk@redhat.com, serge@hallyn.com Errors-To: linux-audit-bounces@redhat.com Sender: "Linux-audit" X-Scanned-By: MIMEDefang 3.1 on 10.11.54.9 X-Mimecast-Spam-Score: 0 X-Mimecast-Originator: paul-moore.com Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 T24gTW9uLCBBcHIgMTAsIDIwMjMgYXQgMzoxMOKAr1BNIEZhbiBXdSA8d3VmYW5AbGludXgubWlj cm9zb2Z0LmNvbT4gd3JvdGU6Cj4gT24gVGh1LCBNYXIgMDIsIDIwMjMgYXQgMDI6MDQ6NDJQTSAt MDUwMCwgUGF1bCBNb29yZSB3cm90ZToKPiA+IE9uIE1vbiwgSmFuIDMwLCAyMDIzIGF0IDU6NTg/ Pz9QTSBGYW4gV3UgPHd1ZmFuQGxpbnV4Lm1pY3Jvc29mdC5jb20+IHdyb3RlOgo+ID4gPgo+ID4g PiBGcm9tOiBEZXZlbiBCb3dlcnMgPGRldmVuLmRlc2FpQGxpbnV4Lm1pY3Jvc29mdC5jb20+Cj4g PiA+Cj4gPiA+IEFzIGlzIHR5cGljYWwgd2l0aCBMU01zLCBJUEUgdXNlcyBzZWN1cml0eWZzIGFz IGl0cyBpbnRlcmZhY2Ugd2l0aAo+ID4gPiB1c2Vyc3BhY2UuIGZvciBhIGNvbXBsZXRlIGxpc3Qg b2YgdGhlIGludGVyZmFjZXMgYW5kIHRoZSByZXNwZWN0aXZlCj4gPiA+IGlucHV0cy9vdXRwdXRz LCBwbGVhc2Ugc2VlIHRoZSBkb2N1bWVudGF0aW9uIHVuZGVyCj4gPiA+IGFkbWluLWd1aWRlL0xT TS9pcGUucnN0Cj4gPiA+Cj4gPiA+IFNpZ25lZC1vZmYtYnk6IERldmVuIEJvd2VycyA8ZGV2ZW4u ZGVzYWlAbGludXgubWljcm9zb2Z0LmNvbT4KPiA+ID4gU2lnbmVkLW9mZi1ieTogRmFuIFd1IDx3 dWZhbkBsaW51eC5taWNyb3NvZnQuY29tPgo+ID4KPiA+IC4uLgo+ID4KPiA+ID4gLS0tCj4gPiA+ ICBzZWN1cml0eS9pcGUvTWFrZWZpbGUgICAgfCAgIDIgKwo+ID4gPiAgc2VjdXJpdHkvaXBlL2Zz LmMgICAgICAgIHwgMTAxICsrKysrKysrKwo+ID4gPiAgc2VjdXJpdHkvaXBlL2ZzLmggICAgICAg IHwgIDE3ICsrCj4gPiA+ICBzZWN1cml0eS9pcGUvaXBlLmMgICAgICAgfCAgIDMgKwo+ID4gPiAg c2VjdXJpdHkvaXBlL2lwZS5oICAgICAgIHwgICAyICsKPiA+ID4gIHNlY3VyaXR5L2lwZS9wb2xp Y3kuYyAgICB8IDEzNSArKysrKysrKysrKysKPiA+ID4gIHNlY3VyaXR5L2lwZS9wb2xpY3kuaCAg ICB8ICAgNyArCj4gPiA+ICBzZWN1cml0eS9pcGUvcG9saWN5X2ZzLmMgfCA0NTkgKysrKysrKysr KysrKysrKysrKysrKysrKysrKysrKysrKysrKysrCj4gPiA+ICA4IGZpbGVzIGNoYW5nZWQsIDcy NiBpbnNlcnRpb25zKCspCj4gPiA+ICBjcmVhdGUgbW9kZSAxMDA2NDQgc2VjdXJpdHkvaXBlL2Zz LmMKPiA+ID4gIGNyZWF0ZSBtb2RlIDEwMDY0NCBzZWN1cml0eS9pcGUvZnMuaAo+ID4gPiAgY3Jl YXRlIG1vZGUgMTAwNjQ0IHNlY3VyaXR5L2lwZS9wb2xpY3lfZnMuYwoKLi4uCgo+ID4gPiArLyoq Cj4gPiA+ICsgKiBpcGVfdXBkYXRlX3BvbGljeSAtIHBhcnNlIGEgbmV3IHBvbGljeSBhbmQgcmVw bGFjZSBAb2xkIHdpdGggaXQuCj4gPiA+ICsgKiBAYWRkcjogU3VwcGxpZXMgYSBwb2ludGVyIHRv IHRoZSBpX3ByaXZhdGUgZm9yIHNhdmluZyBwb2xpY3kuCj4gPiA+ICsgKiBAdGV4dDogU3VwcGxp ZXMgYSBwb2ludGVyIHRvIHRoZSBwbGFpbiB0ZXh0IHBvbGljeS4KPiA+ID4gKyAqIEB0ZXh0bGVu OiBTdXBwbGllcyB0aGUgbGVuZ3RoIG9mIEB0ZXh0Lgo+ID4gPiArICogQHBrY3M3OiBTdXBwbGll cyBhIHBvaW50ZXIgdG8gYSBidWZmZXIgY29udGFpbmluZyBhIHBrY3M3IG1lc3NhZ2UuCj4gPiA+ ICsgKiBAcGtjczdsZW46IFN1cHBsaWVzIHRoZSBsZW5ndGggb2YgQHBrY3M3bGVuLgo+ID4gPiAr ICoKPiA+ID4gKyAqIEB0ZXh0L0B0ZXh0bGVuIGlzIG11dHVhbGx5IGV4Y2x1c2l2ZSB3aXRoIEBw a2NzNy9AcGtjczdsZW4gLSBzZWUKPiA+ID4gKyAqIGlwZV9uZXdfcG9saWN5Lgo+ID4gPiArICoK PiA+ID4gKyAqIFJldHVybjoKPiA+ID4gKyAqICogIUlTX0VSUiAgIC0gT0sKPiA+ID4gKyAqICog LUVOT0VOVCAgIC0gUG9saWN5IGRvZXNuJ3QgZXhpc3QKPiA+ID4gKyAqICogLUVJTlZBTCAgIC0g TmV3IHBvbGljeSBpcyBpbnZhbGlkCj4gPiA+ICsgKi8KPiA+ID4gK3N0cnVjdCBpcGVfcG9saWN5 ICppcGVfdXBkYXRlX3BvbGljeShzdHJ1Y3QgaXBlX3BvbGljeSBfX3JjdSAqKmFkZHIsCj4gPiA+ ICsgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICBjb25zdCBjaGFyICp0ZXh0LCBz aXplX3QgdGV4dGxlbiwKPiA+ID4gKyAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg IGNvbnN0IGNoYXIgKnBrY3M3LCBzaXplX3QgcGtjczdsZW4pCj4gPiA+ICt7Cj4gPiA+ICsgICAg ICAgaW50IHJjID0gMDsKPiA+ID4gKyAgICAgICBzdHJ1Y3QgaXBlX3BvbGljeSAqb2xkLCAqbmV3 Owo+ID4gPiArCj4gPiA+ICsgICAgICAgb2xkID0gaXBlX2dldF9wb2xpY3lfcmN1KCphZGRyKTsK PiA+ID4gKyAgICAgICBpZiAoIW9sZCkgewo+ID4gPiArICAgICAgICAgICAgICAgcmMgPSAtRU5P RU5UOwo+ID4gPiArICAgICAgICAgICAgICAgZ290byBlcnI7Cj4gPiA+ICsgICAgICAgfQo+ID4g PiArCj4gPiA+ICsgICAgICAgbmV3ID0gaXBlX25ld19wb2xpY3kodGV4dCwgdGV4dGxlbiwgcGtj czcsIHBrY3M3bGVuKTsKPiA+ID4gKyAgICAgICBpZiAoSVNfRVJSKG5ldykpIHsKPiA+ID4gKyAg ICAgICAgICAgICAgIHJjID0gUFRSX0VSUihuZXcpOwo+ID4gPiArICAgICAgICAgICAgICAgZ290 byBlcnI7Cj4gPiA+ICsgICAgICAgfQo+ID4gPiArCj4gPiA+ICsgICAgICAgaWYgKHN0cmNtcChu ZXctPnBhcnNlZC0+bmFtZSwgb2xkLT5wYXJzZWQtPm5hbWUpKSB7Cj4gPiA+ICsgICAgICAgICAg ICAgICByYyA9IC1FSU5WQUw7Cj4gPiA+ICsgICAgICAgICAgICAgICBnb3RvIGVycjsKPiA+ID4g KyAgICAgICB9Cj4gPiA+ICsKPiA+ID4gKyAgICAgICBpZiAodmVyX3RvX3U2NChvbGQpID4gdmVy X3RvX3U2NChuZXcpKSB7Cj4gPiA+ICsgICAgICAgICAgICAgICByYyA9IC1FSU5WQUw7Cj4gPiA+ ICsgICAgICAgICAgICAgICBnb3RvIGVycjsKPiA+ID4gKyAgICAgICB9Cj4gPiA+ICsKPiA+ID4g KyAgICAgICBpZiAoaXBlX2lzX3BvbGljeV9hY3RpdmUob2xkKSkgewo+ID4KPiA+IEkgZG9uJ3Qg dW5kZXJzdGFuZCB0aGUgaXMtYWN0aXZlIGNoZWNrLCB5b3Ugd2FudCB0byBtYWtlIEBuZXcgdGhl IG5ldwo+ID4gYWN0aXZlIHBvbGljeSByZWdhcmRsZXNzLCByaWdodD8gIENvdWxkIHRoaXMgaXMt YWN0aXZlIGNoZWNrIGV2ZXIgYmUKPiA+IGZhbHNlPwo+Cj4gQWN0dWFsbHkgdGhpcyBpcyBuZWVk ZWQuIFBvbGljeSB1cGRhdGVzIGNhbiBiZSBhcHBsaWVkIHRvIGFueSBkZXBsb3llZAo+IHBvbGlj eSwgd2hpY2ggbWF5IGJlIHNhdmVkIGluIHR3byBwbGFjZXM6IHRoZSBzZWN1cml0eWZzIGZpbGUg bm9kZQo+IGFuZCB0aGUgaXBlX2FjdGl2ZV9wb2xpY3kgcG9pbnRlci4gVG8gdXBkYXRlIGEgcG9s aWN5LCB0aGlzIGZ1bmN0aW9uIGZpcnN0Cj4gY2hlY2tzIGlmIHRoZSBwb2xpY3kgc2F2ZWQgaW4g dGhlIHNlY3VyaXR5ZnMgZmlsZSBub2RlIGlzIGN1cnJlbnRseSBhY3RpdmUuCj4gSWYgc28sIGl0 IHVwZGF0ZXMgdGhlIGlwZV9hY3RpdmVfcG9saWN5IHBvaW50ZXIgdG8gcG9pbnQgdG8gdGhlIG5l dyBwb2xpY3ksCj4gYW5kIGZpbmFsbHkgdXBkYXRlcyB0aGUgcG9saWN5IHBvaW50ZXIgaW4gdGhl IHNlY3VyaXR5ZnMgdG8gdGhlIG5ldyBwb2xpY3kuCgpBaCwgb2theS4gIEkgbXVzdCBoYXZlIGZv cmdvdHRlbiwgb3Igbm90IHJlYWxpemVkLCB0aGF0IG11bHRpcGxlCnBvbGljaWVzIGNvdWxkIGJl IGxvYWRlZCBhbmQgbm90IGFjdGl2ZS4KCkkgZ3Vlc3MgdGhpcyBkb2VzIG1ha2UgbWUgd29uZGVy IGFib3V0IGtlZXBpbmcgYSBub24tYWN0aXZlIHBvbGljeQpsb2FkZWQgaW4gdGhlIGtlcm5lbCwg d2hhdCBwdXJwb3NlIGRvZXMgdGhhdCBzZXJ2ZT8KCi0tIApwYXVsLW1vb3JlLmNvbQoKLS0KTGlu dXgtYXVkaXQgbWFpbGluZyBsaXN0CkxpbnV4LWF1ZGl0QHJlZGhhdC5jb20KaHR0cHM6Ly9saXN0 bWFuLnJlZGhhdC5jb20vbWFpbG1hbi9saXN0aW5mby9saW51eC1hdWRpdAo=