Received: by 2002:a05:6902:102b:0:0:0:0 with SMTP id x11csp2333415ybt; Tue, 16 Jun 2020 03:22:20 -0700 (PDT) X-Google-Smtp-Source: ABdhPJwNX9LlM2Ycuzm6jZSzKeeIDPFzSNhSWyjiQNOyeQHGqSY18nSnLM1rQ9ERuzz3f6BZKITT X-Received: by 2002:a17:907:1110:: with SMTP id qu16mr2140947ejb.539.1592302940130; Tue, 16 Jun 2020 03:22:20 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1592302940; cv=none; d=google.com; s=arc-20160816; b=jvOssojfOG1uvwIqsTXZ5ZkC73ceXI7pqLsCeDbzHzeBWCFM5+BlRaFgJxZ9w5/hFo G4Lr0JgQdqxsCaWTqkXktF7tAR8WuKINkjsG8fCE1BmlcE29DHXJ5uq1xKnJGd9JWkzn vGtq7mxVAacQyjlAkHGaH3OTYY0VLO6YRrNkOGuvQWfDxk4C5bbdUgG/NXWHwactaUXp /qrdOYXF26Dyia8CKO9e8VDi6N0+hqLtXsNgtnKor/grPi73bA2krhFvylaPJtUhCUWy SWKDnD8uSLhBzY2HIAV+BU64BU1QHFIGh6i8zsX3PRTyvsmiLyuyK9ljP+SuDbi5Ma+G mxzA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:cc:to:subject:message-id:date:from :in-reply-to:references:mime-version:dkim-signature; bh=+kqbimwgEbOIJYJLWKEaCLp58PXChrceFH9NU0EWRhU=; b=zCRU3NICCdEnI9YlkyUTLPhCVUSMzuxek21q3B5ae2SGRv7KUmKsgq9TX3oa3qPydQ 0hAaiqMCgM1ATKmpVI4G04ad7srSoPD2K+sQLHIknVuO0uBXvSUNR0YlPyZrjgTFw16U YP6mbvrIHALvZ4JLnSdFKPeH9AQa/NvZjc2m1cXelATnXfyr/HmGr2ATnsQATYE0I4np FABK6m0G1W6nnYJeARPpPdfcIoXAKMdcrWK5vhJBiArJii7U3mkfDzxVNHAtci+wSKzZ 4sCS1anGPHTqic1QJfKtY7pkB23jXWgW7clsyG04iJIL2Vn1P+nh2j3UNX3m1yaFPqx1 sa7w== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@google.com header.s=20161025 header.b=M1rU4R3T; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com Return-Path: Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18]) by mx.google.com with ESMTP id t9si10644561eju.485.2020.06.16.03.21.57; Tue, 16 Jun 2020 03:22:20 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18; Authentication-Results: mx.google.com; dkim=pass header.i=@google.com header.s=20161025 header.b=M1rU4R3T; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1728176AbgFPKTb (ORCPT + 99 others); Tue, 16 Jun 2020 06:19:31 -0400 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:51938 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1726526AbgFPKT1 (ORCPT ); Tue, 16 Jun 2020 06:19:27 -0400 Received: from mail-il1-x143.google.com (mail-il1-x143.google.com [IPv6:2607:f8b0:4864:20::143]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 5B734C08C5C3 for ; Tue, 16 Jun 2020 03:19:27 -0700 (PDT) Received: by mail-il1-x143.google.com with SMTP id z2so596770ilq.0 for ; Tue, 16 Jun 2020 03:19:27 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=+kqbimwgEbOIJYJLWKEaCLp58PXChrceFH9NU0EWRhU=; b=M1rU4R3TTMMpixDbLk8vBQdiLBBdkyl/aqI2TNZz5CijvpcUThXzf7nyPto9iuemPX DSXchy0Wmvu+MsrVPfMrqvhs2B4wzYuS50D5Bn228HIHQ6J653ZiciJasPxA6BQVxY8q +2S9WcAlCxrPm3bu2WnfIG4rs84SEx3R228KD9aR3gAohvJdn9QaySDUe36PzFp3dyAU UTv9z5+efyF21/cXF+A8hrr+ONGO+DC9QuGJoNKq35h39I+sUT2M3wbIFy78L9oG+EpZ 7+KpSneFk/iJleviiW5zpPrsXEbidakr3uD6luITC1HyWTVbKArKedZ+jZYsPF+kWRLt IszA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=+kqbimwgEbOIJYJLWKEaCLp58PXChrceFH9NU0EWRhU=; b=Zu7V9uv/JUboqVeP7s1ltZKDKb4XvrgmESrcCtIHSJM7kRH7om4VrdrBOi4as35fzj 5lJms8lM9JRdYgRBWWFvYswVORT+hp9WuaOlvwO/JDY/YbS8yedH4K1/89aM2t4NSnat JU62BcT96LTo6mM/3gpLdY3iPIO+ap9V/Ysqw69GZj2163vG+SR1FFiHh+Mb53rFLB8e D/BfX6Zg/hblrUDprCEzF5c8xKDtHx1laLwqyOZbhlHkcVfH2cudO+CTd44Vyp+oWPtg msqSl9h6rzoB2pjGSO8NZOeVbelIgkNuNCrfTbkFYOnCgMrNEr40l8A508UYeocdLmPU Jp6w== X-Gm-Message-State: AOAM530vsMhFi2xbsKeTqbSur+X7muVX0tG7ImG8QjM+3If+N6sC/EMX h9HK0RYtmBPDLbnXdeT/HeyAgFF1laVvrZN8NMqMrg== X-Received: by 2002:a92:a112:: with SMTP id v18mr2185623ili.278.1592302766529; Tue, 16 Jun 2020 03:19:26 -0700 (PDT) MIME-Version: 1.0 References: <20200616083435.223038-1-glider@google.com> <20200616100309.GA2614426@kroah.com> In-Reply-To: <20200616100309.GA2614426@kroah.com> From: =?UTF-8?Q?Maciej_=C5=BBenczykowski?= Date: Tue, 16 Jun 2020 03:19:15 -0700 Message-ID: Subject: Re: [PATCH v2] [RFC] security: allow using Clang's zero initialization for stack variables To: Greg KH Cc: Alexander Potapenko , yamada.masahiro@socionext.com, Kees Cook , jmorris@namei.org, Nick Desaulniers , linux-security-module@vger.kernel.org, Kernel hackers Content-Type: text/plain; charset="UTF-8" Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org > Nit, your From: line of your email does not match your signed-off-by: > line :( This is *probably* a matter of configuring git: git config --global user.name "Alexander Potapenko" git config --global user.email "glider@google.com" git config --global sendemail.from "Alexander Potapenko " > Gotta love the name... I've just read through a long discussion thread on clang dev (got there from this cl's llvm link)... There's a lot of interesting info in there. But ultimately it seems to point out tons of projects already use this or want to use it. And there's security and stability benefits for production builds, while pattern mode can be used for debug builds. > Anyway, if this is enabled, and clang changes the flag or drops it, does > the build suddenly break? (my understanding of the patch is that the option does compiler testing before it becomes available... in at least some of our build systems built around kbuild the option going away would then cause a build error due to its lack in the final .config) > And does gcc have something like this as well, or does that have to come > in a compiler plugin?