Received: by 2002:a25:4158:0:0:0:0:0 with SMTP id o85csp3464831yba; Sat, 11 May 2019 11:14:38 -0700 (PDT) X-Google-Smtp-Source: APXvYqxEDnqaSYWv5pzv+8kWYxLE8jP2VcIX5oqA0YHoQ96JMHhZml5fG+XK3eKbhI0fIXku3U10 X-Received: by 2002:a17:902:112b:: with SMTP id d40mr21642374pla.31.1557598478560; Sat, 11 May 2019 11:14:38 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1557598478; cv=none; d=google.com; s=arc-20160816; b=K3V5pH/xIm+NYqbD3S1vnI8EB2j2XgO+amRbXKIzk2BjYnQF7Y2+xZUt+lMy93Veul Rt+4UQC2tVJt6mUJqxbfVJFWd+AozJuaakWLxNvYA6BQVEJRzZYYfXzrbvlm50Ivox6H tHtkEkrv5tj53jjib4+MCDyhVlAqWBWy5sQyIxd85CRKxAkNEzQlL/2TpBMqbDOdd0C2 le+Kr0/1yvxuGrhSSz5xvMmtnamup+9pzD7EUal57u0yFllIb4dkt2oWfaSyA87xTbvK /gZiVkTOUico8gJx1KM8ouPOqPH+ugKzHjcQD+rgj9NLdVI9w0H+U3DJVvoFt2R701IE 6GFA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:cc:to:subject:message-id:date:from :in-reply-to:references:mime-version:dkim-signature; bh=CWP16Nyxw5qoo1hd2mChxbEzA6Fb4BMPJLsU//Q1vrc=; b=nn2xcPSVmTgQcnKw+UjJdEjDTc5TTJk0eng//7RGbknk7W3LC+Qtu8k4USzDx8ogOx 4zbn0sumLfjECTaz69fPI4vr6XPIqH/NWSuyl4G8Y9pnuP0LRDs+AknXYk3rDTo03cU/ yerh+NJ0cpJvwf4ci8VBgpYqp/gegrsGv9u6U/NiTBIB9zCORW85ZOIjAy5sfqr62RTh zGBrD9rFbTkF2GirXSnvA7GA2cOC4XgpSDh8S7mNI/J2TKRRvx+HTciAHPTEVsz/MvcH OkG0yZyl/9p+BfqByeHOksYgLWYMs7fltV4m/mS6kzMt+Bid4pLp9bfyUv2XKrjPOU3l f51A== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@paul-moore-com.20150623.gappssmtp.com header.s=20150623 header.b=kyIAiixp; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id i195si2137195pfe.20.2019.05.11.11.14.22; Sat, 11 May 2019 11:14:38 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; dkim=pass header.i=@paul-moore-com.20150623.gappssmtp.com header.s=20150623 header.b=kyIAiixp; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1726248AbfEKSNX (ORCPT + 99 others); Sat, 11 May 2019 14:13:23 -0400 Received: from mail-lf1-f67.google.com ([209.85.167.67]:41519 "EHLO mail-lf1-f67.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1726132AbfEKSNX (ORCPT ); Sat, 11 May 2019 14:13:23 -0400 Received: by mail-lf1-f67.google.com with SMTP id d8so6291490lfb.8 for ; Sat, 11 May 2019 11:13:21 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=paul-moore-com.20150623.gappssmtp.com; s=20150623; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=CWP16Nyxw5qoo1hd2mChxbEzA6Fb4BMPJLsU//Q1vrc=; b=kyIAiixp5qZdQKPS40mqarIBWtsGQQbSIaVwYs8g9wa7xANkHruKKuaChRej94Pg/i nydybmuTIbEN/nIHH/fFtVf8Pwt/bwxeEFtarsy5916oxBYRM4xUagKe2FPfrzmmCLGH jkpUh/MuNTKlmUCyvKbTSzLysX257xss7joIwm+l64AUvzaWNgHzNDHVNk4NWYhpVGwN NWGtqNsbujAj0y+U7thWVn/c+tTXI5FYYRUtKUyfiD/XZEYEpqE276/Eq35y7Jeysdkx BfvGGfNet6SgoPfcLHe2vdT2RPuWbLXmDF69X/fnGIMk3/kSjPP+x30nFDK0HDaUHLEO IS+w== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=CWP16Nyxw5qoo1hd2mChxbEzA6Fb4BMPJLsU//Q1vrc=; b=kKAqnppCi5ZghiAA342RJwzynK23CKC182dkvOtj20ErqEBma2zCiK7xWzHS5bWlh8 K7v8t+Hw3caqUYMVBb4Ley29W+GILiJiD0Oim0mc6Mcyz1jf7v9ZO42CE+UFwcix32Ef 2UH7dct3QLc6HMITOMrvVHFCt4e4SHYjpU94EQWSpJYcWNmLq2ljCk0eFZ76cT+H8Jd4 IxHNdcKQcKomvs/gF+SFgqLbV91yjfnk3VoDLrLQld0GbIyl4izO0oLsHx2yeaiU5hbt GWZEOy3EcMUqsLHI3kl88qBp26nP+6wqud11CvEzh20VYzwAxyJRpz6CrOmoq2/CuBA2 rPnA== X-Gm-Message-State: APjAAAWxxKAFFpsqXN1kUfY0i7vXujGeycPgquVnZZwzLQhIbr8qxiEh SvNgGsPig386j2d5xMvBpXXQVtLKAsDH8rIRI+QP X-Received: by 2002:a19:760c:: with SMTP id c12mr9090091lff.105.1557598400815; Sat, 11 May 2019 11:13:20 -0700 (PDT) MIME-Version: 1.0 References: In-Reply-To: From: Paul Moore Date: Sat, 11 May 2019 14:13:09 -0400 Message-ID: Subject: Re: [GIT PULL] security subsystem: Tomoyo updates for v5.2 To: Linus Torvalds , James Morris Cc: LSM List , Linux List Kernel Mailing Content-Type: text/plain; charset="UTF-8" Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Sat, May 11, 2019 at 10:38 AM Linus Torvalds wrote: > On Fri, May 10, 2019 at 6:09 PM James Morris wrote: > > > > These patches include fixes to enable fuzz testing, and a fix for > > calculating whether a filesystem is user-modifiable. > > So now these have been very recently rebased (on top of a random > merge-window "tree of the day" version) instead of having multiple > merges. > > That makes the history cleaner, but has its own issues. > > We really need to find a different model for the security layer patches. If it helps, the process I use for the SELinux and audit trees is documented below. While it's far from perfect (I still don't like basing the -next trees on -rcX releases) it has seemed to work reasonably well for some time now. * https://github.com/SELinuxProject/selinux-kernel/blob/master/README.md -- paul moore www.paul-moore.com