Return-Path: Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1757256AbaGBSkx (ORCPT ); Wed, 2 Jul 2014 14:40:53 -0400 Received: from bombadil.infradead.org ([198.137.202.9]:41537 "EHLO bombadil.infradead.org" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1754033AbaGBSkv (ORCPT ); Wed, 2 Jul 2014 14:40:51 -0400 Date: Wed, 2 Jul 2014 11:40:50 -0700 From: Christoph Hellwig To: Jeff Moyer Cc: Dmitry Kasatkin , linux-mm@kvack.org, linux-fsdevel@vger.kernel.org, Linux Kernel Mailing List , akpm@linux-foundation.org, viro@ZenIV.linux.org.uk, Mimi Zohar , linux-security-module , Greg KH , Dmitry Kasatkin Subject: Re: IMA: kernel reading files opened with O_DIRECT Message-ID: <20140702184050.GA24583@infradead.org> References: <53B3D3AA.3000408@samsung.com> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.5.23 (2014-03-12) X-SRS-Rewrite: SMTP reverse-path rewritten from by bombadil.infradead.org See http://www.infradead.org/rpr.html Sender: linux-kernel-owner@vger.kernel.org List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Wed, Jul 02, 2014 at 11:55:41AM -0400, Jeff Moyer wrote: > It's acceptable. It's not because it will then also affect other reads going on at the same time. The whole concept of ima is just broken, and if you want to do these sort of verification they need to happen inside the filesystem and not above it. We really should never have merged ima, and I think we should leave these sorts of issue that have been there since day one unfixed and deprecate it instead of adding workaround on top of workaround. -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/