Received: by 2002:a05:6358:3188:b0:123:57c1:9b43 with SMTP id q8csp3416714rwd;
        Mon, 22 May 2023 13:28:34 -0700 (PDT)
X-Google-Smtp-Source: ACHHUZ71df4FFw7ly1ObhjHnz3dZ3S+j6plx8s9HLL9RfBIP78HidDNhwGuEJTbM4N5aA3AKY9iN
X-Received: by 2002:a17:90b:4b01:b0:253:34da:480 with SMTP id lx1-20020a17090b4b0100b0025334da0480mr11082130pjb.31.1684787313782;
        Mon, 22 May 2023 13:28:33 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1684787313; cv=none;
        d=google.com; s=arc-20160816;
        b=YdgdkFAML4D+mOfLrfUbyAb3xM+6vg1Vv/YfAuKsIrZXoOvaoOLUNN+uwdOwHDFVTl
         OPcn0YRKrwaOtGjSOlgTiGggA/jK0MjRp1tVgOMyhzVtTK3OMbThf8po+bH8IVjz6433
         jUB3DmIJwxeVVzv37kfchDxrQyYK2kL/TSuriHGD1y+U7NEdDP30dDvsmDsY3rS9JVZz
         FCan7EwHGpHslfMGx6OlJJEgGRPw4wdcuStOA4Y+renfJ9YUfL6rtwxXX8HrezIHxsyW
         f1/fnbIYv9vOVTNgOxK9nw35Vlo1F8FLr4HFJl44IOhqr4SVPapTet/b7YbJIfnOQkcw
         ybDg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:cc:to:subject:message-id:date:from:in-reply-to
         :references:mime-version;
        bh=4xh0i0HIFJ7RLsNn/gZPXgFeIIlqcue46B/GetkxR9o=;
        b=rl2Mglgt86SuZ/hAjYB7b4gPwlpvAQcSy2D/5orWFhNng6L8tNT04HTIny6LSnwnJG
         NUAPn34rQ/lI8iCZXcyoSYMevIIfAVR6L6p6QWy+jjbnQrIOwhJ7vuu7RD97TFBzW2se
         kh1fmFvmW0tbMMPrjcEhhbRjX6eUvuHmeqOIWxWQMENsrNgdP4eF/FVBHlnL/Dzeovpo
         ght8zTxrK5alfR0IFWhOEWTTuDZEZS21prSQTzMlhkHU3HOgMwx+1yGO17i/0ylum6vr
         UpBzyRHCZ8EJvu76ocgp9B1+PuVn2S/qSRWm6pIUhM19yxVKDBTpZQi6B8HsEU0jzn/a
         jlDQ==
ARC-Authentication-Results: i=1; mx.google.com;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20])
        by mx.google.com with ESMTP id w65-20020a17090a6bc700b0025330a420ffsi5085727pjj.186.2023.05.22.13.27.59;
        Mon, 22 May 2023 13:28:33 -0700 (PDT)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20;
Authentication-Results: mx.google.com;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S234272AbjEVUS1 (ORCPT <rfc822;a225855305@gmail.com> + 99 others);
        Mon, 22 May 2023 16:18:27 -0400
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:60214 "EHLO
        lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S232913AbjEVUSS (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Mon, 22 May 2023 16:18:18 -0400
Received: from mail-yw1-f181.google.com (mail-yw1-f181.google.com [209.85.128.181])
        by lindbergh.monkeyblade.net (Postfix) with ESMTPS id A41011705;
        Mon, 22 May 2023 13:17:59 -0700 (PDT)
Received: by mail-yw1-f181.google.com with SMTP id 00721157ae682-56204ac465fso66064207b3.2;
        Mon, 22 May 2023 13:17:59 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20221208; t=1684786678; x=1687378678;
        h=cc:to:subject:message-id:date:from:in-reply-to:references
         :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id
         :reply-to;
        bh=4xh0i0HIFJ7RLsNn/gZPXgFeIIlqcue46B/GetkxR9o=;
        b=l/YX5F2NoOHFWkOPcuXjD7vyDDcRI+h3lD/NBPsHY/Nm8Qu3CvZ4z2A1JUClmd7q6k
         i1rNg+jBfhBP8INQp6vb0LWt+R32n1XJhvKz9RWI2HZllhlpe3QUHIZMGXAq8VzLQxWB
         tRHO9cC/mS4EdkFu3E2f7Ea1Ed1YfxWUt3DziHJLX3AdEi1q1eECJ6V0MIoAbga8enlp
         xzu4lmerjA8cUaa+u1Ry5jKs01GWHcS+S8w426iway4QqFjutlvJQyOwYKZ7LGbReIWn
         ROiURBqRf3WY7PoisSqY8UZEoD1a/t2m6ZX3fXIxvpVxJzcau3CadUpWImi0OTrGHRmx
         /i9g==
X-Gm-Message-State: AC+VfDzBXhJN2hbrjB5ioryVUrbW5Ow8U2bQ46TBbbCYmHmlnIj54ylh
        I5ChaKOnYKT1Ky0uwPcbXqyakTiupd3iHg==
X-Received: by 2002:a81:4995:0:b0:561:6d72:f85b with SMTP id w143-20020a814995000000b005616d72f85bmr12677034ywa.40.1684786678638;
        Mon, 22 May 2023 13:17:58 -0700 (PDT)
Received: from mail-yw1-f180.google.com (mail-yw1-f180.google.com. [209.85.128.180])
        by smtp.gmail.com with ESMTPSA id a133-20020a0dd88b000000b0055a1cd96212sm2320429ywe.33.2023.05.22.13.17.57
        (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128);
        Mon, 22 May 2023 13:17:57 -0700 (PDT)
Received: by mail-yw1-f180.google.com with SMTP id 00721157ae682-561a33b6d63so86099477b3.1;
        Mon, 22 May 2023 13:17:57 -0700 (PDT)
X-Received: by 2002:a81:834d:0:b0:561:b595:100e with SMTP id
 t74-20020a81834d000000b00561b595100emr11473012ywf.37.1684786677251; Mon, 22
 May 2023 13:17:57 -0700 (PDT)
MIME-Version: 1.0
References: <20230517113351.308771-2-aleksandr.mikhalitsyn@canonical.com>
 <202305202107.BQoPnLYP-lkp@intel.com> <20230522-sammeln-neumond-e9a8d196056b@brauner>
 <ZGtr1RwK42We5ACI@corigine.com> <20230522131252.4f9959d3@kernel.org>
In-Reply-To: <20230522131252.4f9959d3@kernel.org>
From:   Luca Boccassi <bluca@debian.org>
Date:   Mon, 22 May 2023 21:17:46 +0100
X-Gmail-Original-Message-ID: <CAMw=ZnQ-diFqFUCEpqBTDTNojfvqaGCtZSvh8+rE_z-KBNreqw@mail.gmail.com>
Message-ID: <CAMw=ZnQ-diFqFUCEpqBTDTNojfvqaGCtZSvh8+rE_z-KBNreqw@mail.gmail.com>
Subject: Re: [PATCH net-next v5 1/3] scm: add SO_PASSPIDFD and SCM_PIDFD
To:     Jakub Kicinski <kuba@kernel.org>
Cc:     Simon Horman <simon.horman@corigine.com>,
        Christian Brauner <brauner@kernel.org>,
        Eric Dumazet <edumazet@google.com>,
        Alexander Mikhalitsyn <aleksandr.mikhalitsyn@canonical.com>,
        davem@davemloft.net, linux-kernel@vger.kernel.org,
        netdev@vger.kernel.org, Paolo Abeni <pabeni@redhat.com>,
        Leon Romanovsky <leon@kernel.org>,
        David Ahern <dsahern@kernel.org>,
        Arnd Bergmann <arnd@arndb.de>,
        Kees Cook <keescook@chromium.org>,
        Kuniyuki Iwashima <kuniyu@amazon.com>,
        Lennart Poettering <mzxreary@0pointer.de>,
        linux-arch@vger.kernel.org
Content-Type: text/plain; charset="UTF-8"
X-Spam-Status: No, score=-1.4 required=5.0 tests=BAYES_00,
        FREEMAIL_FORGED_FROMDOMAIN,FREEMAIL_FROM,HEADER_FROM_DIFFERENT_DOMAINS,
        RCVD_IN_MSPIKE_H2,SPF_HELO_NONE,SPF_PASS,T_SCC_BODY_TEXT_LINE
        autolearn=no autolearn_force=no version=3.4.6
X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on
        lindbergh.monkeyblade.net
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

On Mon, 22 May 2023 at 21:13, Jakub Kicinski <kuba@kernel.org> wrote:
>
> On Mon, 22 May 2023 15:19:17 +0200 Simon Horman wrote:
> > > TLI, that AF_UNIX can be a kernel module...
> > > I'm really not excited in exposing pidfd_prepare() to non-core kernel
> > > code. Would it be possible to please simply refuse SO_PEERPIDFD and
> > > SCM_PIDFD if AF_UNIX is compiled as a module? I feel that this must be
> > > super rare because it risks breaking even simplistic userspace.
> >
> > It occurs to me that it may be simpler to not allow AF_UNIX to be a module.
> > But perhaps that breaks something for someone...
>
> Both of the two options (disable the feature with unix=m, make unix
> bool) could lead to breakage, I reckon at least the latter makes
> the breakage more obvious? So not allowing AF_UNIX as a module
> gets my vote as well.
>
> A mechanism of exporting symbols for core/internal use only would
> find a lot of use in networking :(

We are eagerly waiting for this UAPI to be merged so that we can use
it in userspace (systemd/dbus/dbus-broker/polkitd), so I would much
rather if such impactful changes could be delayed until after, as
there is bound to be somebody complaining about such a change, and
making this dependent on that will likely jeopardize landing this
series.
v6 adds fixed this so that's disabled if AF_UNIX is not built-in via
'IS_BUILTIN', and that seems like a perfect starting point to me, if
AF_UNIX can be made non-optional or non-module it can be refactored
easily later.

Kind regards,
Luca Boccassi