Received: by 2002:a05:6a10:206:0:0:0:0 with SMTP id 6csp1232757pxj; Fri, 18 Jun 2021 02:34:19 -0700 (PDT) X-Google-Smtp-Source: ABdhPJwKndN+JlrTowqCG7ragghwQUuQkEgY4sTjf6yLXaUKs/1HHwH6NCeoPB+T5pwHAtBJXvlQ X-Received: by 2002:a17:906:3c42:: with SMTP id i2mr2922555ejg.39.1624008859465; Fri, 18 Jun 2021 02:34:19 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1624008859; cv=none; d=google.com; s=arc-20160816; b=h8zWqZHFRUZec+FOaS6nCmWWOECCgmWw2rkiejaG/uQXs7+NEjIHOEvim872kEyVya h1Cq7ewt70puz0z1mTK/KqCzJRSslpgEWJh/Uyh7I/4DcThXB3Ck7+hacH3VDgKyCEPB mikm3HseIHkN9hyFB8OJaCVAjppOCObaWANkydyFjBau55bpvLAnYeXB0s5q97VY7wNc /pilqajDhoJ+ttJtOihWO5Jsz9gO/TdsPaL0K7WvPYhGjvtP67JClAe8BNRtVv4GKkvH G08j7v7Fw/CU1gtdR98CmHq8rX+H8JhqJhewcWLMSuImd7sKsi1jseuATE85NM2dY/T5 BkNA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:in-reply-to:content-disposition:mime-version :references:message-id:subject:cc:to:from:date:dkim-signature; bh=VcgNWtMg92JXTUxwlTUS2HJWmMzB1rozPUfWngDVQ3o=; b=CE2whLC54fJw1vFyhUEZBFHEN7nZo4zVHWcVwHkUe3rNKTpO1EXqQQyOKzMfntYSXB ljaevDDkYQcPB4oAgyvn0mTh4QsNSUPrFJ2VFWNxbzfZmEqoTlLBXSN4rcT82mAZc2ZY Ax067nSRqzQH7FHentASDdyh1tApi0s4VxzkuAABmeCTvtI+cMr38mL8YgFA7Jvb/VTz L3uHBaqZann49qPrjwYHbgMiFFBo+wmTtawtFolR0x/4uUxEo2ZY8Y9D4f7mm+GOFXFi 90GdlT58XPM6qeYJa0vdcfT8Yuw38pfqExfLMEgpid1dKFZH+CJNFz1dJ6yvOkrBvKrJ cI7g== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@linuxfoundation.org header.s=korg header.b=ii3BvH+z; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=linuxfoundation.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18]) by mx.google.com with ESMTP id f11si5102962edd.45.2021.06.18.02.33.57; Fri, 18 Jun 2021 02:34:19 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18; Authentication-Results: mx.google.com; dkim=pass header.i=@linuxfoundation.org header.s=korg header.b=ii3BvH+z; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=linuxfoundation.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S231241AbhFRJVO (ORCPT + 99 others); Fri, 18 Jun 2021 05:21:14 -0400 Received: from mail.kernel.org ([198.145.29.99]:53080 "EHLO mail.kernel.org" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S230175AbhFRJVN (ORCPT ); Fri, 18 Jun 2021 05:21:13 -0400 Received: by mail.kernel.org (Postfix) with ESMTPSA id 41658613BA; Fri, 18 Jun 2021 09:19:03 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=linuxfoundation.org; s=korg; t=1624007943; bh=d6L8De6SYFaetstLiE1nJCBZWihJ29jUVk5AQi+slLM=; h=Date:From:To:Cc:Subject:References:In-Reply-To:From; b=ii3BvH+zyZ2xJDaPeqND8gbRYSFndrh2PVsgtJDBc2/i8pDJOdR/0zMDyxiMX2LOI RdgUVyreprCstrRPerKKjUrDMVC68Nu8vQG4rOBnLoV0U91DjdkajAwTotrMjA16JX d+uv1e0KVbK77iNH1snIewQGkVuzOeCpH3vmtxCw= Date: Fri, 18 Jun 2021 11:19:00 +0200 From: Greg Kroah-Hartman To: David Laight Cc: 'Krzysztof Kozlowski' , "linux-kernel@vger.kernel.org" , "stable@vger.kernel.org" , Daniel Vetter , Christoph Hellwig , Jessica Yu Subject: Re: [PATCH 5.4 031/184] modules: inherit TAINT_PROPRIETARY_MODULE Message-ID: References: <20210510101950.200777181@linuxfoundation.org> <20210510101951.249384110@linuxfoundation.org> <8edc6f45-6c42-19c7-6f40-6f1a49cc685b@canonical.com> <5ac70bdf2c5b440c83f12e75ca42a107@AcuMS.aculab.com> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <5ac70bdf2c5b440c83f12e75ca42a107@AcuMS.aculab.com> Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Fri, Jun 18, 2021 at 09:07:53AM +0000, David Laight wrote: > From: Krzysztof Kozlowski > > Sent: 18 June 2021 09:57 > > > > On 10/05/2021 12:18, Greg Kroah-Hartman wrote: > > > From: Christoph Hellwig > > > > > > commit 262e6ae7081df304fc625cf368d5c2cbba2bb991 upstream. > > > > > > If a TAINT_PROPRIETARY_MODULE exports symbol, inherit the taint flag > > > for all modules importing these symbols, and don't allow loading > > > symbols from TAINT_PROPRIETARY_MODULE modules if the module previously > > > imported gplonly symbols. Add a anti-circumvention devices so people > > > don't accidentally get themselves into trouble this way. > > > > > > Comment from Greg: > > > "Ah, the proven-to-be-illegal "GPL Condom" defense :)" > > > > Patch got in to stable, so my comments are quite late, but can someone > > explain me - how this is a stable material? What specific, real bug that > > bothers people, is being fixed here? Or maybe it fixes serious issue > > reported by a user of distribution kernel? IOW, how does this match > > stable kernel rules at all? > > > > For sure it breaks some out-of-tree modules already present and used by > > customers of downstream stable kernels. Therefore I wonder what is the > > bug fixed here, so the breakage and annoyance of stable users is justified. > > It also doesn't stop non-gpl out-of-tree modules doing anything. > They just have to be reorganized with a 'base' GPL module that > includes wrappers for all the gplonly symbols and then all > the rest of the modules can be non-gpl. Ah, the "gpl condom defense". Love it that you somehow think that is acceptable (hint, it is not.) That's what this patch series is supposed to be addressing and fixing, but someone has shown me a way around this. I'll work on fixing that up in a future patch series next week. thanks, greg k-h