Received: by 10.213.65.68 with SMTP id h4csp11196imn; Mon, 12 Mar 2018 15:27:58 -0700 (PDT) X-Google-Smtp-Source: AG47ELtKVSE14m5UPJmBkjwZGPRJBm+9cYzC01qUBlpzu/A+igvfg+iEWFVIHynvtn3PG41bgdAD X-Received: by 10.99.101.193 with SMTP id z184mr1050207pgb.429.1520893678059; Mon, 12 Mar 2018 15:27:58 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1520893678; cv=none; d=google.com; s=arc-20160816; b=JexojGqtSB9XPJOTPrvboifX4kVYFx/0SJoT4sKsDrk92+fcRokuT+woqzMWiBLlEP nlmvudIbGhOMkdXNDyA6PGv6wYvKk9ThB4gKXpeEHGh8c6YNoJ7eTIaCTTLXUO25wI6Z 3nw+eDzhtZYZR577yznj2H9uoT+3+kiLYrX0XxtlyCJch0YVwoC87AQqE2/mipRfGBsQ WvZ0ZXahna17utwEMzHz0BF6sJuqNVFZln2W2fBIIJq5dkCOPIiqpDpjOXhomZNqgJlz k6ny4r9niWzy9wv4AKysAvHCppiwdIWje8fqFkLyl8X7RnXs9YFKruKkxxmjQP170rRm pedA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:cc:to:subject:message-id:date:from :references:in-reply-to:mime-version:dkim-signature:dkim-signature :arc-authentication-results; bh=Tf/BIWLapeDM5AwtmStS/WuY2pWA3NpZzkhieQ3evWE=; b=eNulvXktsoitVdVi5RGMYae6Wj89nqSBn7w8s9UDl9yIJ+Ws1qbMruAWcj3SwBfKY0 W/XK3q1JnUfkqURFiAvYfL5BNCuYCOcqsKo0k9bwJkped6mo9SQqpduFsfQStlUSuCMh 4dimh5NP2MT5QMMz3a0bk+8WEvqyNYMxofeCVd9Qgcw7umXq4B61FXAsxwegpTUW/ZZo NN6Zn0zEPNCt1O7FFVImuwIixxgXilSfghvN5H/Kq5RqNwNqBXGG+86BVDpw6TFYm4HX nLMhmHzPWEWwnSz33ul+xGr1FqBqHK0ZymsyfHGGv3EqIJo8faw0dZNfzll3tFDoAwJ3 2QOg== ARC-Authentication-Results: i=1; mx.google.com; dkim=fail header.i=@gmail.com header.s=20161025 header.b=HvnsMyJS; dkim=fail header.i=@linux-foundation.org header.s=google header.b=IorZGtkV; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id d2-v6si6694934plr.67.2018.03.12.15.27.42; Mon, 12 Mar 2018 15:27:58 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; dkim=fail header.i=@gmail.com header.s=20161025 header.b=HvnsMyJS; dkim=fail header.i=@linux-foundation.org header.s=google header.b=IorZGtkV; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1751394AbeCLW0s (ORCPT + 99 others); Mon, 12 Mar 2018 18:26:48 -0400 Received: from mail-io0-f178.google.com ([209.85.223.178]:44519 "EHLO mail-io0-f178.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1751282AbeCLW0q (ORCPT ); Mon, 12 Mar 2018 18:26:46 -0400 Received: by mail-io0-f178.google.com with SMTP id h23so13349944iob.11 for ; Mon, 12 Mar 2018 15:26:46 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:sender:in-reply-to:references:from:date:message-id :subject:to:cc; bh=Tf/BIWLapeDM5AwtmStS/WuY2pWA3NpZzkhieQ3evWE=; b=HvnsMyJSVQ+7KCxNs4QnN2WShOC0jJWhNsU75i5FRznTohRZbELp/yVQHX6X9p6Qnu 6A6Wi52v12BbARr9zjefoBF18Pw8n1yAq5x/wUyBMWsDizAb0sMVI6InhkC+9JxzRlWt fGR9NXbtI4ukHkY6O2+JNCOQBFPumAUrn/N1Vyqgk3nYXDg7fxPtGc+QtKj7ixgetibv UGWpBEDN6TP0Y2iBWTWTF7gmLmwz/qNtiQ6b1nN09gpg1HIUgB5ZElkKRp+ozdYBDIIm dueyMqNRQrmJh4FGCU0WlgfLObyTWxrp6zrSDfNZIkYxDQ4PJgO1MS+1kbJOMf6H5m3w 8apQ== DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=linux-foundation.org; s=google; h=mime-version:sender:in-reply-to:references:from:date:message-id :subject:to:cc; bh=Tf/BIWLapeDM5AwtmStS/WuY2pWA3NpZzkhieQ3evWE=; b=IorZGtkV7PD8BxBtk88sb/LDp+VPfV9VekAhcJNQogG5ap0I0HtQT2EGSTt4TaMfk+ +AqL5STS4LISo+RlSYEoWqcga7m4OzwzELdbbu0pCfyKQD2Iv0+M8FCnWJVUr7f9aV9Z 9YdImbz9viOkHUIMxYkIAUNuG38G9vVm1Z7sM= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:sender:in-reply-to:references:from :date:message-id:subject:to:cc; bh=Tf/BIWLapeDM5AwtmStS/WuY2pWA3NpZzkhieQ3evWE=; b=FFLoO/2FBR9qABAiqx1sRqW/aFRxPvzFjV+cdZzfsSrXfABK64kB94Gss2iBexJdHU T8bVufT4QPAWUzl+0UHr0nLyTrS+pgpCH91RfnZIR8cUqqGoF+ATrZeWD+Zo1oO7tMRw KP6c9ZLewqoY6XDFyfFSKipmoiCPY/WEPcBDg2CyJNG06MZ9IhE5BIYaF2y3VHrOLqg9 Uo5fNcUKCSgnT2as/HA0ivm5nycbQeJxmX9BqL1fuwrIY36T0siUkzfM4tAE0JpVAwaq PPj5Zr+E/7TlkFDOwOJeuEri6XNRQppDwiwHgXXSz2B0cL5SeEySakF2LfxLAEGyhTNS PBIA== X-Gm-Message-State: AElRT7GLYYSnvB0JUKsSMdlqlAlGTD4ux17Bcc1vAnFyvsXomS4dAv3h iP7fwO/3U1zGxj0aLGiMK8Bn0wkcy1hElwxHSwY= X-Received: by 10.107.12.201 with SMTP id 70mr4455363iom.48.1520893606127; Mon, 12 Mar 2018 15:26:46 -0700 (PDT) MIME-Version: 1.0 Received: by 10.107.135.221 with HTTP; Mon, 12 Mar 2018 15:26:45 -0700 (PDT) In-Reply-To: References: From: Linus Torvalds Date: Mon, 12 Mar 2018 15:26:45 -0700 X-Google-Sender-Auth: C0O9RezIfeT_Z4nHyl0h1-Gw5OA Message-ID: Subject: Re: Future of STACKLEAK plugin? To: Kees Cook Cc: LKML , Alexander Popov Content-Type: text/plain; charset="UTF-8" Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Mon, Mar 12, 2018 at 10:06 AM, Kees Cook wrote: > > I was curious, after the last week of discussion, what you thought of > the future of Alexander's port of the STACKLEAK plugin[0]. Given that > there is progress being made (by at least 8 people at last count) to > actually remove VLAs (and bogus warnings)[1], and that there appears > to be consensus[2] on the approach for how to deal with uninitialized > stack variables, this still leaves an aspect of STACKLEAK unaddressed, > which is reducing the lifetime of stack content validity. Honestly, I consider that to be one of those crazy patches that people can apply if they want to, but that there is no point in having upstream. Hundreds of extra lines of assembly for something that isn't even a leak or a theoretical fix, when there is a better model for just improving the compiler? Yeah, no. The fact is, people can do their own thing. But for it to make sense _mainline_, it has to improve kernel development, and I don't see it doing that. I just haven't seen an argument for why it makes sense to do the belt-and-suspenders-and-glue-your-pants-on approach. Linus