Received: by 2002:a05:6358:e9c4:b0:b2:91dc:71ab with SMTP id hc4csp6544072rwb; Tue, 9 Aug 2022 18:10:42 -0700 (PDT) X-Google-Smtp-Source: AA6agR5HNpWE8i0O4LZl4eXxJn8jN3qRCznnCxo1/pUwx86UyP9kCgxGdSYoGUtPEx4L21bjxwPB X-Received: by 2002:a17:90a:a416:b0:1f7:3b5f:1cd1 with SMTP id y22-20020a17090aa41600b001f73b5f1cd1mr1132938pjp.216.1660093841676; Tue, 09 Aug 2022 18:10:41 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1660093841; cv=none; d=google.com; s=arc-20160816; b=IkejeASdp3gExBPFMT2OwKqkHYyuhlFFNea7GQnTJIqgkY8Tnjd6bheOW18e6c3HEK LZ3RAovTCN4pX+bCILChwpQGaQZ5FWtvdF+nOjwSTTKSHHPk1btQyKEBYgHI6zrmLAO7 oC9+V8zvBoYP8wnigCTGRvK9WpBE1mC/R/rRqkUvoBn+bhrZdJ1xkZu+qTdLiV02r3VY LdAaW3rvmmSNP3t33kppaizSX4mgRyiBrgH4nwTe/qvL3i9FZUj+dj2835WEO5upDG8R GBZbirO0gN7dYAXaN5OQnZED7be+fxkN04vKEDxCOM/1HWgd1m/ryIw5QCmQwESloDgr 7Wjg== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:cc:to:subject:message-id:date:from:in-reply-to :references:mime-version:dkim-signature; bh=Il1Pi56tAdbHD2xkzMpWzGBdztzd5zgrSb7IoS2zT/U=; b=H2oInCgj+8eKEjoD1MQJsx3AYNUvLhV3zAp7Q7bzoigoGhc+2Uejc9FQJQiFAGAyq7 Sqj5Uuhytd3prK5FnNjmS7oJl70SULtgQ3xgCbguh334ft+110GAUuYvHpsax9PPn5mw Dr9A85VDLM431KDF9zV4T4L25NefkXeDj90yJCh7fSqJ3cCpLaaujOn/Ea1Qz+YS4SLe vNiAYcv+STwqj1HZsQ3FziZ7yJbT5FxDbcN4vYXTmM0f0BYlS+mvY+BO/h3Vm5nwNJ6H JgoXcqUng7EOsJLVztsOyhwbRMRj51Xl7H0FYW7NFQPfPlgavH6eBXmjGi6ZpBypPp4O HR9w== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@gmail.com header.s=20210112 header.b=FkIsMzd+; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Return-Path: Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20]) by mx.google.com with ESMTP id b17-20020a170903229100b0016dd425327fsi17689430plh.60.2022.08.09.18.10.21; Tue, 09 Aug 2022 18:10:41 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20; Authentication-Results: mx.google.com; dkim=pass header.i=@gmail.com header.s=20210112 header.b=FkIsMzd+; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S229535AbiHJAwG (ORCPT + 99 others); Tue, 9 Aug 2022 20:52:06 -0400 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:53508 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S229456AbiHJAwE (ORCPT ); Tue, 9 Aug 2022 20:52:04 -0400 Received: from mail-ed1-x531.google.com (mail-ed1-x531.google.com [IPv6:2a00:1450:4864:20::531]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 9D3D374E14; Tue, 9 Aug 2022 17:52:03 -0700 (PDT) Received: by mail-ed1-x531.google.com with SMTP id z2so17203982edc.1; Tue, 09 Aug 2022 17:52:03 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc; bh=Il1Pi56tAdbHD2xkzMpWzGBdztzd5zgrSb7IoS2zT/U=; b=FkIsMzd+v0083XugBqAhPXZbO1+72jhsZHlw61FcLI/wavV+QldtPeUl3OCyrp3Fyh rhAQdPX6jx45sT0czdTuoyR4h4UMXOXYwZyHsQszuQnRbHvpbEzMmxgRiSA3QEaM4mBs SKnFU5ejLzWtXKmbxN0Pv3GwI6XLv0/y97ibV5XVZh9PpNh9njFEPsRyWFQKgVwo42SK NOv+UA+ZWUQRCDhdQALBJTWOeVt+T6mbPxZ31MNAfAPfMd+Nn+IFB7c5Ic20smmRk/GZ IatX2zC7jb3XV6vxFp30NlaQJISIXCVKNKMc6255KHq7r6W83s3bHHAcV8ZBnIOpZTnc Q3zQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc; bh=Il1Pi56tAdbHD2xkzMpWzGBdztzd5zgrSb7IoS2zT/U=; b=RkPuR3xKm1Yy1S9fNO4QQta6e5zXhgYKcoHzIyv7iSws68N1tSDTFxmk24OsPyhTEB YjuqrtRAgmaufFvIdBXMhWlphuQL9ziwnfswTtv6cy3tqaACrNH0GVCSTwiZ1b4NbC2g aWtnZ9WmVW9oevVlNhbpEd/ntRW9y2kglJmFmJ1ywoaZ4sQChZGk8PKfZ7nxRZYYYAYK xg3Opz/uuUk6JSsmvdjsssZjnlfDzh/7nWNXY0cMsBBp7+XFOa6tBaSQAlI+v6QhuATM 6VnnN6EgfIESj/l5KSeeW+qBNgFaIRXbcAd8Q+2MMdQ7oOuUbFw8HhI2oeRbnaz48rSo MIIA== X-Gm-Message-State: ACgBeo0rDDfMQB09McPgc3JNMh7yCZJBe70UzdqzhZnbnip6sojPdrji INfF+0FcXo/ICe/Ag79nzVEkMdHwjZuJ5jSqn/M= X-Received: by 2002:a05:6402:28cb:b0:43b:c6d7:ef92 with SMTP id ef11-20020a05640228cb00b0043bc6d7ef92mr24499717edb.333.1660092722224; Tue, 09 Aug 2022 17:52:02 -0700 (PDT) MIME-Version: 1.0 References: <20220801180146.1157914-1-fred@cloudflare.com> <87les7cq03.fsf@email.froward.int.ebiederm.org> <87wnbia7jh.fsf@email.froward.int.ebiederm.org> <877d3ia65v.fsf@email.froward.int.ebiederm.org> <87bksu8qs2.fsf@email.froward.int.ebiederm.org> <87czd95rjc.fsf@email.froward.int.ebiederm.org> <87a68dccyu.fsf@email.froward.int.ebiederm.org> In-Reply-To: From: Alexei Starovoitov Date: Tue, 9 Aug 2022 17:51:50 -0700 Message-ID: Subject: Re: [PATCH v4 0/4] Introduce security_create_user_ns() To: Paul Moore Cc: "Eric W. Biederman" , Frederick Lawler , KP Singh , Florent Revest , Brendan Jackman , Alexei Starovoitov , Daniel Borkmann , Andrii Nakryiko , Martin KaFai Lau , Song Liu , Yonghong Song , John Fastabend , James Morris , "Serge E . Hallyn" , Stephen Smalley , eparis@parisplace.org, Shuah Khan , Christian Brauner , Casey Schaufler , bpf , LSM List , selinux@vger.kernel.org, "open list:KERNEL SELFTEST FRAMEWORK" , LKML , Network Development , kernel-team , =?UTF-8?Q?Christian_G=C3=B6ttsche?= , karl@bigbadwolfsecurity.com Content-Type: text/plain; charset="UTF-8" X-Spam-Status: No, score=-2.1 required=5.0 tests=BAYES_00,DKIM_SIGNED, DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,FREEMAIL_FROM, RCVD_IN_DNSWL_NONE,SPF_HELO_NONE,SPF_PASS,T_SCC_BODY_TEXT_LINE autolearn=ham autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on lindbergh.monkeyblade.net Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Tue, Aug 9, 2022 at 3:40 PM Paul Moore wrote: > > On Tue, Aug 9, 2022 at 5:41 PM Eric W. Biederman wrote: > > Paul Moore writes: > > > > > > What level of due diligence would satisfy you Eric? > > > > Having a real conversation about what a change is doing and to talk > > about it's merits and it's pro's and cons. I can't promise I would be > > convinced but that is the kind of conversation it would take. > > Earlier today you talked about due diligence to ensure that userspace > won't break and I provided my reasoning on why userspace would not > break (at least not because of this change). Userspace might be > blocked from creating a new user namespace due to a security policy, > but that would be the expected and desired outcome, not breakage. As > far as your most recent comment regarding merit and pros/cons, I > believe we have had that discussion (quite a few times already); it > just seems you are not satisfied with the majority's conclusion. > > Personally, I'm not sure there is anything more I can do to convince > you that this patchset is reasonable; I'm going to leave it to others > at this point, or we can all simply agree to disagree for the moment. > Just as you haven't heard a compelling argument for this patchset, I > haven't heard a compelling argument against it. Barring some > significant new discussion point, or opinion, I still plan on merging > this into the LSM next branch when the merge window closes next week > so it has time to go through a full round of linux-next testing. > Assuming no unresolvable problems are found during the additional > testing I plan to send it to Linus during the v6.1 merge window and > I'm guessing we will get to go through this all again. It's less than > ideal, but I think this is where we are at right now. +1