Received: by 2002:a25:1985:0:0:0:0:0 with SMTP id 127csp680942ybz; Wed, 15 Apr 2020 16:34:37 -0700 (PDT) X-Google-Smtp-Source: APiQypKbajn+cWzKgCmP5v2jCgyddZTfnUCcE6guaamwiizhTfODPEhYsE+pHp9bY18CFFZTtj2n X-Received: by 2002:a50:c042:: with SMTP id u2mr26842103edd.250.1586993677273; Wed, 15 Apr 2020 16:34:37 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1586993677; cv=none; d=google.com; s=arc-20160816; b=fL5du653Iv3i/bKEnUibqFw9KAjerIQKm2HXxtz1e3S0RXHET+SDtLKEJy5o8VCut3 lasab4BRq2wpqvtkldk4Wxjfz8W53U0BbhZDOI6ftc93LXs8YEpm8TYIDQGPNM27sND+ Zd0SEB2OJ4m5lo2ZUONlU1tp4ovovl3mi+PMMnA4CVEXfV5kBf4JtCWZvXE0ZPCNNNLo eB7N+hgw/KNAl29gQ4ceDxx9OZjODO+XPqDL7RyqVYchxXRIsZzCxHsNaqFn4+xKhXAr fZq4TYC3IAQWpcw8UfKZFZHULxxRQmICQe/vOhGkNSA1/W/esf0/jhcHB0hr3Re+gOuX W10g== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:content-language :content-transfer-encoding:in-reply-to:mime-version:user-agent:date :message-id:from:references:cc:to:subject:dkim-signature:dkim-filter; bh=8vd2NllO885QphfJq499exMBBONhyoMLoUuWkoB9kMM=; b=Mk6PBy4lwzg5Hse0agthJWU8RVOjoS5gwY14oj/Oy9uIHLnCtzX0hP2HxI2y3jPvMO bATAam1boTDEv1nk7gzzDstu2y9gNq9RQ8cYHO4oRXJSDWAOWUO/Ymlg9e8gPGoUTeC0 1blKv2swWx/vb7DDXbzJWHvwT+3EfBrFxZpGo45sRiov45PiF1hYC+hVhcbnbyDdRcei YZmCau21U7RekK5ZtNh9lQhKwOnUYHLJdBbMcnNkZXHtijyNGJvS2QrmykuTjyqYXQMU jvX3hiHfkNQhZ1sN7gDP1aTmu4lVT7DdmCJ0AaVuQSVgqz40khSPV7zkG4M6wONX+ds7 EkLQ== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@linux.microsoft.com header.s=default header.b=GwNkoQjL; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=linux.microsoft.com Return-Path: Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18]) by mx.google.com with ESMTP id do8si13334984ejc.149.2020.04.15.16.34.13; Wed, 15 Apr 2020 16:34:37 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18; Authentication-Results: mx.google.com; dkim=pass header.i=@linux.microsoft.com header.s=default header.b=GwNkoQjL; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=linux.microsoft.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S2633761AbgDNVSu (ORCPT + 99 others); Tue, 14 Apr 2020 17:18:50 -0400 Received: from linux.microsoft.com ([13.77.154.182]:39766 "EHLO linux.microsoft.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S2633733AbgDNVSr (ORCPT ); Tue, 14 Apr 2020 17:18:47 -0400 Received: from [10.137.106.115] (unknown [131.107.174.243]) by linux.microsoft.com (Postfix) with ESMTPSA id 3E91D20B4737; Tue, 14 Apr 2020 14:18:46 -0700 (PDT) DKIM-Filter: OpenDKIM Filter v2.11.0 linux.microsoft.com 3E91D20B4737 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=linux.microsoft.com; s=default; t=1586899126; bh=8vd2NllO885QphfJq499exMBBONhyoMLoUuWkoB9kMM=; h=Subject:To:Cc:References:From:Date:In-Reply-To:From; b=GwNkoQjLBGfCuuREHe/03lAwC66jZGflscriy+ucC2VLYeU1H2gwGfnbtARtIw/Bv 4DplFt0PBFLVA7BsFj6OcZIZHvCpm7RJoNrRJgrPikIOOWGzRv+KAeHNeUITy1lxxp 3F7GXI1j8U26y2fFZxmIuTVq/Npy+xZPthhmAfPo= Subject: Re: [RFC PATCH v2 11/12] documentation: Add IPE Documentation To: Jonathan Corbet Cc: agk@redhat.com, axboe@kernel.dk, snitzer@redhat.com, jmorris@namei.org, serge@hallyn.com, zohar@linux.ibm.com, linux-integrity@vger.kernel.org, linux-security-module@vger.kernel.org, dm-devel@redhat.com, linux-block@vger.kernel.org, tyhicks@linux.microsoft.com, pasha.tatashin@soleen.com, sashal@kernel.org, jaskarankhurana@linux.microsoft.com, nramas@linux.microsoft.com, mdsakib@linux.microsoft.com, linux-kernel@vger.kernel.org References: <20200406221439.1469862-1-deven.desai@linux.microsoft.com> <20200406221439.1469862-12-deven.desai@linux.microsoft.com> <20200414093809.2c6ef93b@lwn.net> From: Deven Bowers Message-ID: <9c55bbe9-2c6e-7a0d-cf90-5b2aee724f19@linux.microsoft.com> Date: Tue, 14 Apr 2020 14:18:45 -0700 User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:68.0) Gecko/20100101 Thunderbird/68.7.0 MIME-Version: 1.0 In-Reply-To: <20200414093809.2c6ef93b@lwn.net> Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: 7bit Content-Language: en-US Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On 4/14/2020 8:38 AM, Jonathan Corbet wrote: > On Mon, 6 Apr 2020 15:14:38 -0700 > deven.desai@linux.microsoft.com wrote: > >> From: Deven Bowers >> >> Add IPE's documentation to the kernel tree. >> >> Signed-off-by: Deven Bowers > Thanks for including this nice documentation from the outset! I have a > couple of tiny nits to pick, but nothing really substantive to complain > about, so: > > Acked-by: Jonathan Corbet Thanks! > [...] > >> +IPE is a Linux Security Module, which allows for a configurable policy > I'd drop the comma (I told you these were nits!) Got it, thanks! > > [...] > >> +IPE Policy >> +~~~~~~~~~~ >> + >> +IPE policy is designed to be both forward compatible and backwards >> +compatible. There is one required line, at the top of the policy, >> +indicating the policy name, and the policy version, for instance: >> + >> +:: >> + >> + policy_name="Ex Policy" policy_version=0.0.0 > This pattern can be compressed a bit by just putting the "::" at the end of > the last line of text: > > indicating the policy name, and the policy version, for instance:: > > policy_name="Ex Policy" policy_version=0.0.0 > > The result is a bit more readable in the plain-text format, IMO, and > renders exactly the same in Sphinx. Awesome. I'll address this feedback in v3.