Received: by 2002:ac0:a5a7:0:0:0:0:0 with SMTP id m36-v6csp202249imm;
        Fri, 13 Jul 2018 21:46:26 -0700 (PDT)
X-Google-Smtp-Source: AAOMgpcT8hqvXq5WGYpsSr3ploP5+DdBags1/WHo1M8DVFry+E9z04DTmGQiMGZEm8bDCTlohRPr
X-Received: by 2002:a65:5581:: with SMTP id j1-v6mr8691170pgs.203.1531543586238;
        Fri, 13 Jul 2018 21:46:26 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1531543586; cv=none;
        d=google.com; s=arc-20160816;
        b=o74sKzkz6Pnngmbo8sWooWT/TwKTUB/v/uz9BkUsPEjwmXQ2MvskQYrNg41XKdF4uM
         G9HD1BLOIyqM+xO2nm/DmOpRm7yxyIXj5NMyI7nLEkFKRbLptHKiqhsiwu1/rX+3zyEX
         A62TUgohRXXdvtqn9gbZuSZsGHbQj5VlhrluxTvGPO2hGQ9XowyHursxRjYRHe70fq+P
         2ph+nx5dXuKoiUd0ZKVTuQZML9nP582JbQcDiwfheUxWPWRVw8ki8qEB4ZuTpJ0O/mQj
         PA1nmY8Jx+hY1xjK2r5hH160GlzDV4v7Gky9y3GQZaHpfjqE+GUWFBHVouJ0Wy4LNY3M
         tXMA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:cc:to:subject:message-id:date:from
         :references:in-reply-to:mime-version:dkim-signature:dkim-signature
         :arc-authentication-results;
        bh=aQHsyx1Nte4fpKoux+yLig37fd8DcXMVXzLHv04tjsY=;
        b=FigDOZhvpT9hg44qp7kX4F6ff32XROFwVYN7duklkiDs+4AzavRxmBdoOVFQqH7sfC
         k1LwJ4M2X7105frwDse5512pGIlL1NJ+GfZ186z1XymU54axEIgi0wJYozyMYuXi4ODe
         LJLd+5KrkTyDMBCYSrD/EDaTCWI12gUBjNVn9q9X/9dcvSnYTTHaW+vFbHqeqVFnPYzY
         rJm11nBCzz1nD9FAMc06JJfIKNZkrFI2ZwbT1JkkjmEeX0mZkZQssEI4Szi1hrSupkYX
         0NLq84n/JFKhfx2gmE9oracEpB8GGwMJxzMpU8J1U/H48XqKsue51kPnhfy19jdCRYe5
         HL1A==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=fail header.i=@google.com header.s=20161025 header.b=qUmPRRY6;
       dkim=fail header.i=@chromium.org header.s=google header.b=Kn0i4sIf;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=chromium.org
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67])
        by mx.google.com with ESMTP id r7-v6si25018245pgl.1.2018.07.13.21.45.41;
        Fri, 13 Jul 2018 21:46:26 -0700 (PDT)
Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67;
Authentication-Results: mx.google.com;
       dkim=fail header.i=@google.com header.s=20161025 header.b=qUmPRRY6;
       dkim=fail header.i=@chromium.org header.s=google header.b=Kn0i4sIf;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=chromium.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1725956AbeGNFBy (ORCPT <rfc822;thunderbird.krnldev@gmail.com>
        + 99 others); Sat, 14 Jul 2018 01:01:54 -0400
Received: from mail-yw0-f193.google.com ([209.85.161.193]:39025 "EHLO
        mail-yw0-f193.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S1725885AbeGNFBy (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Sat, 14 Jul 2018 01:01:54 -0400
Received: by mail-yw0-f193.google.com with SMTP id r184-v6so7127183ywg.6
        for <linux-kernel@vger.kernel.org>; Fri, 13 Jul 2018 21:44:17 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=google.com; s=20161025;
        h=mime-version:sender:in-reply-to:references:from:date:message-id
         :subject:to:cc;
        bh=aQHsyx1Nte4fpKoux+yLig37fd8DcXMVXzLHv04tjsY=;
        b=qUmPRRY6I9smXV+PCC4cBhPRTp9OnsItlpnHdYMnkuhQhTy0i9JxDVXt66YgDVJmP0
         aN+RVv7HGw/wOLxzB3cHOupEGqpaUGN3hVAPvggQa+2Pt6KS4a/JdNjFmI2FqdWmRJP/
         Bis5OUfTCSAn7sQWO0AoM98bo/mfy9XtBQQ9KgjumnV8QIX+Lke2agOFO6XUMqLDr0UM
         0lWt2dzEundc+mjn06u7QtoBrcJc0CQg8mdqZ0ywTT+sVANt1OLhYgGB3RSD11kMAT2E
         pbH3gXErOeW1Qhq2akJQb1rRsk28cENoVa8Ffjk2FVuVTG8OZ/z3wdlZiUpk+y5T3tb4
         m1uQ==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=chromium.org; s=google;
        h=mime-version:sender:in-reply-to:references:from:date:message-id
         :subject:to:cc;
        bh=aQHsyx1Nte4fpKoux+yLig37fd8DcXMVXzLHv04tjsY=;
        b=Kn0i4sIfreHr7ylOJGnEafaEMGH7Y0l9QiSAWAq7atZIig+UxjJiQXznJ0d/9KPtsw
         BzMg5hIryCdVaAYb/y9dzZUlusnw8emomu2b2OEOvIVbYO2ncMLNX3SF5tsnTk5DemZf
         L0ySnHUUiOyJNSTC9CpMcpzBu+Iys08Z1pu9g=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:mime-version:sender:in-reply-to:references:from
         :date:message-id:subject:to:cc;
        bh=aQHsyx1Nte4fpKoux+yLig37fd8DcXMVXzLHv04tjsY=;
        b=Zcyze2aP2gF/pYxMB0QXfQxm+tMXRjuwk8hzRmY5gtMiKDQaeTlDQ8biXmCvv1W5tg
         cu/wGZ0+yexbESNlFGyDtHfdqP2bNJBDKtYOW+3HH2KYzpiY2zflQt1fI8jzbx5sl8Jz
         +lvW0U60NKxzoyeu5+2e2lj7AWMgyqGLWcOxB6GTxJq9B0/IPgFZQvQ7BhbRZdDTCYhi
         PeCaWVEACHCL1ujuXgDHVSnqQGfTNi3iZ5JpFP3KN1tThXU1U+cSh+LuXOhvO9lRI28W
         VMgXdCjJ8GAMz4yavWbzsU/5azkfF5BLbOvL98MXmnGtMT0yNFwu3FsuA2aYhRspM7Oc
         u5gA==
X-Gm-Message-State: AOUpUlGXBBrAYpiaSZ+7zhcI6o+/GrnDWinpMi+Dl0XlYjMl8ykxZ0Gv
        KJ+3eODcZ5qLao/V+Ushzq2hgDem08ee+H4ZrjTNOg==
X-Received: by 2002:a0d:d287:: with SMTP id u129-v6mr4597619ywd.95.1531543456545;
 Fri, 13 Jul 2018 21:44:16 -0700 (PDT)
MIME-Version: 1.0
Received: by 2002:a25:6602:0:0:0:0:0 with HTTP; Fri, 13 Jul 2018 21:44:15
 -0700 (PDT)
In-Reply-To: <20180713135541.7ada72437862c32f4563a9a8@linux-foundation.org>
References: <20180712130733.11510-1-adrian@lisas.de> <87sh4o5s82.fsf@xmission.com>
 <20180713135541.7ada72437862c32f4563a9a8@linux-foundation.org>
From:   Kees Cook <keescook@chromium.org>
Date:   Fri, 13 Jul 2018 21:44:15 -0700
X-Google-Sender-Auth: YI6AXLyNpF5tjP8Yr2AAzcdPeU8
Message-ID: <CAGXu5jJMBDd3-Yab78aYwQ1N6VG7=BjARoTF1pDygPhaWA9VNQ@mail.gmail.com>
Subject: Re: [PATCH] kconfig: remove EXPERT from CHECKPOINT_RESTORE
To:     Andrew Morton <akpm@linux-foundation.org>
Cc:     "Eric W. Biederman" <ebiederm@xmission.com>,
        Adrian Reber <adrian@lisas.de>,
        LKML <linux-kernel@vger.kernel.org>,
        Oleg Nesterov <oleg@redhat.com>,
        Pavel Emelyanov <xemul@virtuozzo.com>,
        Andrei Vagin <avagin@virtuozzo.com>,
        Hendrik Brueckner <brueckner@linux.vnet.ibm.com>,
        Cyrill Gorcunov <gorcunov@openvz.org>,
        Linux Containers <containers@lists.linux-foundation.org>,
        Josh Triplett <josh@joshtriplett.org>
Content-Type: text/plain; charset="UTF-8"
Sender: linux-kernel-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

On Fri, Jul 13, 2018 at 1:55 PM, Andrew Morton
<akpm@linux-foundation.org> wrote:
> On Thu, 12 Jul 2018 11:33:33 -0500 ebiederm@xmission.com (Eric W. Biederman) wrote:
>> What is the value of disabling this functionality ever?
>>
>> Is there any reason why we don't just delete CONFIG_CHECKPOINT_RESTORE
>> entirely?
>
> For the vast number of Linux machines which aren't servers?  Check out
> some defconfigs - only one of arm's 119 defconfigs selects it.

Right, and I would bet the minification folks would like to keep it
out of their builds too. I think we should keep the config.

-Kees

-- 
Kees Cook
Pixel Security