Received: by 2002:a5b:505:0:0:0:0:0 with SMTP id o5csp2793465ybp;
        Thu, 10 Oct 2019 12:43:09 -0700 (PDT)
X-Google-Smtp-Source: APXvYqx/yYGSTmofUZYIpwWjN2dbQytsDAvs8SEi9uLpm2yNTSAfAWzGHdOoZOn8gYK71P1LpWi3
X-Received: by 2002:a17:906:e090:: with SMTP id gh16mr9957004ejb.56.1570736589631;
        Thu, 10 Oct 2019 12:43:09 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1570736589; cv=none;
        d=google.com; s=arc-20160816;
        b=EgY89THeSV5u1jjM5eGqGNnhBfXexsTIYV6fXzbt7qPDbsstLxOaIBFgXbt4XAyyt7
         AbDW0xoJtiGeMV4gcP1wzqdc8XZtcd1VrLHPmjAc5DPOrCftGb1ZUN5GCaVuxoi4BV3k
         EOKt0Ckv8y9f3QKH9I9AJsB2OF+rQhkLOZaxkP43/W0NPa0NHAR4Byl0ZTJKLd5wR5le
         mcC6UxwZtHLjpOWDDQ8+W0l1CDQQ0+RJ0jX4mibeecVmyYnM2wcd7INu3ExJn4G/dh3k
         J98jM/jG5L2Z1rKZDAvO8L5MR+y9tQvLluEGPSAEIq5k4CJQnH64/mlI+rb2v12fdTYl
         Unfg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:mime-version:user-agent:references
         :message-id:in-reply-to:subject:cc:to:from:date;
        bh=zPDy2ZQPuH93EMW54arsqIwUagEwXmGZYwrNmKEfojM=;
        b=HFH7qzt9tkEzC6VU6gXQ8zUjrQOUKVuSZ+/XIOABe74tjUksz/UBjwP+xgXIOinG6P
         aatR0/mBYSWeoX11438kTe0998l0Qawkulv+uGrEoxOVERfBh+8+WcazcJsfPdqyhFQB
         XMW2Tl5KMgkcXSbg1n4krqTXm6l79KBn0Vq8tQANYyGd0Mm8Izpa6marou10xjW/G2Io
         qOlhAG1Qlnmsox3C5kGMfcP3MFd1XXwCI2kkthd8Lm+2NOQI/4CXgwGmmvZOKTDRHgJt
         ihPMbDt7m1zyxugTs9H8/JE6uZf7GAEA4FP1jpgHbd8J5ieoz9e3NX0unvNawKg3cyxq
         WROA==
ARC-Authentication-Results: i=1; mx.google.com;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67])
        by mx.google.com with ESMTP id k63si4375919edc.347.2019.10.10.12.42.17;
        Thu, 10 Oct 2019 12:43:09 -0700 (PDT)
Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67;
Authentication-Results: mx.google.com;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1726205AbfJJTmE (ORCPT <rfc822;tanxianhu@gmail.com> + 99 others);
        Thu, 10 Oct 2019 15:42:04 -0400
Received: from namei.org ([65.99.196.166]:53524 "EHLO namei.org"
        rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP
        id S1725867AbfJJTmE (ORCPT <rfc822;linux-kernel@vger.kernel.org>);
        Thu, 10 Oct 2019 15:42:04 -0400
Received: from localhost (localhost [127.0.0.1])
        by namei.org (8.14.4/8.14.4) with ESMTP id x9AJf1pp032000;
        Thu, 10 Oct 2019 19:41:01 GMT
Date:   Fri, 11 Oct 2019 06:41:01 +1100 (AEDT)
From:   James Morris <jmorris@namei.org>
To:     Casey Schaufler <casey@schaufler-ca.com>
cc:     "Joel Fernandes (Google)" <joel@joelfernandes.org>,
        linux-kernel@vger.kernel.org,
        Peter Zijlstra <peterz@infradead.org>, rostedt@goodmis.org,
        primiano@google.com, rsavitski@google.com, jeffv@google.com,
        kernel-team@android.com, Alexei Starovoitov <ast@kernel.org>,
        Arnaldo Carvalho de Melo <acme@kernel.org>,
        bpf@vger.kernel.org, Daniel Borkmann <daniel@iogearbox.net>,
        Ingo Molnar <mingo@redhat.com>, Jiri Olsa <jolsa@redhat.com>,
        Kees Cook <keescook@chromium.org>,
        linux-security-module@vger.kernel.org,
        Matthew Garrett <matthewgarrett@google.com>,
        Namhyung Kim <namhyung@kernel.org>, selinux@vger.kernel.org,
        Song Liu <songliubraving@fb.com>,
        "maintainer:X86 ARCHITECTURE (32-BIT AND 64-BIT)" <x86@kernel.org>,
        Yonghong Song <yhs@fb.com>
Subject: Re: [PATCH RFC] perf_event: Add support for LSM and SELinux checks
In-Reply-To: <dc0cacef-fff5-b837-97a4-ed7336934bf6@schaufler-ca.com>
Message-ID: <alpine.LRH.2.21.1910110637300.31442@namei.org>
References: <20191009203657.6070-1-joel@joelfernandes.org> <710c5bc0-deca-2649-8351-678e177214e9@schaufler-ca.com> <alpine.LRH.2.21.1910100912210.29840@namei.org> <2b94802d-12ea-4f2d-bb65-eda3b3542bb2@schaufler-ca.com> <alpine.LRH.2.21.1910101343470.8343@namei.org>
 <dc0cacef-fff5-b837-97a4-ed7336934bf6@schaufler-ca.com>
User-Agent: Alpine 2.21 (LRH 202 2017-01-01)
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Sender: linux-kernel-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

On Thu, 10 Oct 2019, Casey Schaufler wrote:

> > Because it is not necessary.
> 
> The logic escapes me, but OK.

We should only extend the stacking infrastructure to what is concretely 
required. We don't yet have a use-case for stacking perf_event so we 
should keep the code as simple as possible. As soon as multiple LSMs 
determine they need to share the blob, we can convert the code to blob 
sharing.


-- 
James Morris
<jmorris@namei.org>