Received: by 2002:ac0:a5a6:0:0:0:0:0 with SMTP id m35-v6csp766686imm; Fri, 21 Sep 2018 07:59:54 -0700 (PDT) X-Google-Smtp-Source: ANB0Vdb2pAAFBYGJK2SU4pyAcKyRsDp57Dh3L0hGNsqfGtQoxaCkr/kfW5xQNvRZEVk+mnucdr82 X-Received: by 2002:a17:902:6115:: with SMTP id t21-v6mr45042108plj.92.1537541994279; Fri, 21 Sep 2018 07:59:54 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1537541994; cv=none; d=google.com; s=arc-20160816; b=X2b7NX9jif5s8g+jW/6kHeUsSoXSkTxnKvo9T3QJUgoijt97vd06owikSBPuyIhR5W Dm0G/J1OI9s0d8UISrRX4B+t/X683Tjj3P4aM528gS1AnySLZLIy9cQVD/GLnnkt/yR2 xXq5CFxgcdfwEzP1kFV0SRYwFx3XufoXnKVgfbtFgHMMOlm1D2sgD+EAJW5gqVaIeMBH RuTarp/SRNvyqrIgqQNZJO1h48745PXVu8J/GbQPL3EA8Px89U7FmlBaXB+hVzMoxB8b qaPgoKz5oeWlj+joDVhkB6qjSMjYKFxF/DGolwzu4RQVVCo526occzgknS5TZspFCmFY xnxQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:content-language :content-transfer-encoding:in-reply-to:mime-version:user-agent:date :message-id:from:references:cc:to:subject:dkim-signature; bh=NZxr5DvYFN7iF1Ir6w85jsFCYmP6N+scR2Oj4Q3VULM=; b=hnI1KlXMIic3/Py/gBHy0dINrxwkluDhF7b0RQjxjSBYxNEJuCdDlo+wyRjeJV03l2 +SVeJkwMtPRyr2eqjvy2l8/qJWxF3d13az2txGa92YLeh38HHst/Qn2vMJ1saGVM2d19 Se4o70VC2fZiW3rw7fwsFd/GIFQqbC+lmy1N+0GWpXF3x0+2rnUW/sBF8DBF+5DWWN9x JVkK0hXQVlFLQtRKKEHFpSDnI2TkeZQKqmNDecokxKQWXIpwsOkvtgLUpZhZMx11OMBk gLbR55c9yeJ4oWPCcEA5sz/gpc9IkDDXKEl/KnHsqIzRSZGoFs2mQ2KXbnGTSbPHHBy2 6evw== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@yahoo.com header.s=s2048 header.b=Gj4I+RrQ; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id t145-v6si6133732pgb.24.2018.09.21.07.59.38; Fri, 21 Sep 2018 07:59:54 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; dkim=pass header.i=@yahoo.com header.s=s2048 header.b=Gj4I+RrQ; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S2390383AbeIUUqz (ORCPT + 99 others); Fri, 21 Sep 2018 16:46:55 -0400 Received: from sonic306-9.consmr.mail.bf2.yahoo.com ([74.6.132.48]:41789 "EHLO sonic306-9.consmr.mail.bf2.yahoo.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S2390227AbeIUUqy (ORCPT ); Fri, 21 Sep 2018 16:46:54 -0400 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s2048; t=1537541858; bh=NZxr5DvYFN7iF1Ir6w85jsFCYmP6N+scR2Oj4Q3VULM=; h=Subject:To:Cc:References:From:Date:In-Reply-To:From:Subject; b=Gj4I+RrQKyw9iwnlSEO9A+/B3lRYouiP2+swJGlPHueRCmTUcZoh2IrjvPSFpUe1zHAaKYLVoybP/EWpIcmA/p+oW5LR0lFx7j2xzyRnTISe4b9A5zbhEfCBnew9HxM7QyR6yIw7RRzB2X5/jBuV+EfCPXEsZEj83XKV3qHb8JieFDN03VH0xLatL3hM/yuWUsOhYkGAMnx8KEc7TRxMYEV+5kU+eXaZuizYVbCYhO66+yL6jHjeoftT8NnZgAZuCp3317flT5Bj1SDErSDrI1Ahrh2oT2Ql4QNNNQNl2VMyX2/BOzMM10beMXaahcnZI9NWFS0TFR8ugUbAwp55wQ== X-YMail-OSG: 3tH6jrgVM1lo6tiIeVzVZLXYFsp4V4T7tuogD66fi5oDxXc9hiepkqx6IcTO482 cXAYQwzu5Fz8qZoxHVhz5kSr231skKhml.dIONfU6gdZcQ7t4HkpnK_rMwWmF4T0P3inAAEskTaM GQii7XPp1AnKG6hLroHOrJTS41Sqo0VwOkbzqKZXPDC.Ef5wQu7YAvlm7CQo4LvnDaFfYLJcgiNu bBdb9XY0TA9tz05EnzOsoxvgn9FrvCEMLUfN8mP94dxlrbOxgGxm3HRrk3VQ.46PTGhHAMAlTe0C 2RnxBU59JVXvSsZ1BLTxqJQ2UWmPA6m8CCC2S6DqjOg4KOTP5aF7LGHTX8kyQA5iXVAQqMyBjJPH _GVBDC1iI7Hp84vxDh1AKQOExL1t1A8poxgw._aHi9lHZ3mzlL0fyYucyr_u1rnBD_9.PUrH0QH6 hPiUeSjNA7EIAPP8IsPaeBFyETTlTpL1OyXVbLKl_3Y6PChdxgS00HOlnYTX_nXlaxE_K.0wFuNd 3G.XbLbqZf3NFvgRFcOQAt3.I7sZf36I7sDX87TO_oNLTKkZc_vDqF3JiLlz8bcd0_TZn9_NUalB Yq3R7xXgMpJC08p_TLs.KlGrtXlBiyRxhiYYMV05eURcsyynZmvmVWlHcL.akZSGK9wRl7ykALaU RpSywYrADu3D77Vyf.cU2Bdu9RqA_sLKoqEhwdg943xLZtUMafKdgQLE3_KODceFdCn.Ol5ABTIV uyxe5WTg1fpEzHUlcr9WMHJeDWt2wm3nzDMg0dhn91fy5JR2X_lpUR6I6sBX94AXdE56GT_dLYJR R9DfNT3N7feQ52zqpGhRJFxVNrZ.N.SrgOQnvpDCgwclb7xK69nEayz_YCdnORQ74oOD8JX6.tno u1Z4BF6f_R_1OSVMU2CsOVS.r5OwBbhB0.ywKai2vWG1dfYtjD.loF0tCxUjMk2gu4eYBlQHeyau mpgGTmugcN51Zunftajwd.KhbvaCq5aEB3yRTVbb6sMX4BUbkX60xUp.8GytnHCvBUnAvmsyO4Xf bwkivyUGvmt6W4KeTb8zXXks7M_xx4td9gzaIEOFx7UHMjV8B Received: from sonic.gate.mail.ne1.yahoo.com by sonic306.consmr.mail.bf2.yahoo.com with HTTP; Fri, 21 Sep 2018 14:57:38 +0000 Received: from c-67-169-65-224.hsd1.ca.comcast.net (EHLO [192.168.0.102]) ([67.169.65.224]) by smtp402.mail.bf1.yahoo.com (Oath Hermes SMTP Server) with ESMTPA ID b1ea943c7e117406b472149e3b4ed37f; Fri, 21 Sep 2018 14:57:34 +0000 (UTC) Subject: Re: [PATCH security-next v2 26/26] LSM: Add all exclusive LSMs to ordered initialization To: John Johansen , Kees Cook Cc: James Morris , Tetsuo Handa , Paul Moore , Stephen Smalley , "Schaufler, Casey" , LSM , Jonathan Corbet , "open list:DOCUMENTATION" , linux-arch , LKML References: <20180920162338.21060-1-keescook@chromium.org> <20180920162338.21060-27-keescook@chromium.org> <7d2cc28b-aee5-ee91-9362-f92f8ca30adc@schaufler-ca.com> <6c899d9e-45aa-8159-c402-b3c4d1936112@canonical.com> <74ecd4ec-491b-93d7-4e3f-46f92121130b@canonical.com> <915ba7e5-0e10-87ef-f0a9-1d8db2e6de90@canonical.com> From: Casey Schaufler Message-ID: <78fc6ba1-881a-9c82-ebc1-64311279050c@schaufler-ca.com> Date: Fri, 21 Sep 2018 07:57:30 -0700 User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Thunderbird/52.9.1 MIME-Version: 1.0 In-Reply-To: <915ba7e5-0e10-87ef-f0a9-1d8db2e6de90@canonical.com> Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit Content-Language: en-US Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On 9/21/2018 6:19 AM, John Johansen wrote: > On 09/20/2018 08:02 PM, Kees Cook wrote: >> On Thu, Sep 20, 2018 at 7:14 PM, John Johansen >> wrote: >>> On 09/20/2018 07:05 PM, Kees Cook wrote: >>>> On Thu, Sep 20, 2018 at 6:39 PM, John Johansen >>>> wrote: >>>> >>>> Yes, I like CONFIG_LSM_ENABLE if "empty" means "enable all". Should >>>> CONFIG_LSM_ENABLE replace all the other CONFIG-based LSM >>>> enabling/disabling? >>> I don't particularly like "empty" being "enable all". With that >>> how would I disable all builtin lsms so that I just boot with >>> capability. >>> >>> An option of all or even * is more explicit and leaves the empty >>> set to mean disable everything >> Okay, that works. I prefer "all" FWIW. >> > me too, I was just trying to throw out options. I'll buy that. "all" is fine by me, although it means we can't have an LSM named "all". :) We should also allow "none" to mean no LSMs. I know lots of people who love using security=none.