Received: by 2002:a05:6358:7058:b0:131:369:b2a3 with SMTP id 24csp6044871rwp;
        Mon, 17 Jul 2023 13:59:39 -0700 (PDT)
X-Google-Smtp-Source: APBJJlFS2XJjbe+QYmDGG+hWck2aaprTYLNPD82y4A8VDIMWfjS5rUZ3eKPVD72eYOn1Y3xmCr8n
X-Received: by 2002:a05:6a21:99a9:b0:12e:ae87:45d2 with SMTP id ve41-20020a056a2199a900b0012eae8745d2mr12570448pzb.51.1689627578581;
        Mon, 17 Jul 2023 13:59:38 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1689627578; cv=none;
        d=google.com; s=arc-20160816;
        b=rbvNUTInEMZHATgThPkQYpHFVJ1NhptUmRhiYO0BrWdmmLQfFccSm72ZH7x5Q3ydHD
         H2Reug1EEAHnk2vh5tlQFCVhlAYmc1yIwHTpJeb4Zw15wNYChmbRUeLKCDzjj8U8KPsC
         42wB+8j/kss+QZ7t9v/wr+A7nzUw0Bq2LaTSWXDfLvkW6lDNlpG33eXQdwKuUsp6TMEJ
         IenaU9lC2j2ZB7H3m0xtx99WlrUo9NOzoAIR508wTZcvaUEqXF9y680gsgZ80baols67
         +uQXl6Qehyq1rqt2Tq0BbvmqQskCrZkPMo486Eho+Leu9lTXHGnBf4v/Bn0FKVeekURt
         TcFA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:content-transfer-encoding:cc:to:subject
         :message-id:date:from:in-reply-to:references:mime-version
         :dkim-signature;
        bh=LWiE3CkGTDUlj6QCNZoo/WRVOd/qSvpeFml4/GNI1l4=;
        fh=ydpsbTXvU1FA+3IYd0hsSM6k+99p6AI5aWOZ/GS/6c0=;
        b=Ykmu82TbmBULgXF//LlzNuZPDQEeNsZ81OwDSB4EZ+v3jAIVMW2OtYcHLy7+t0FZ/U
         cQ3w2ykGliF1BYihyZNN5ExMkhNvAnwzYz6pehoFCzOPRMhFo8OWL6dYMykGLHSel8a6
         xAPbD7dVvE89RP2JL4AWiNgMIpMqQI2zKHOcmx6sfq/i8466teSm3CTKsu+sgaXAmcib
         JDLDY7k0cIOYQuCdmSK1aQl6pvqGEf8fCN28MtSCKvW99xOQl1WiX7Kn7kBG8rGAvk5j
         SDYgysRDuTj7KXcnOSiEfZjRYPfd5Qz09hcYDTsWnlFIzzBPnuG7meoX4teX05tnqNfG
         FS6g==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@paul-moore.com header.s=google header.b="Ovnxdri/";
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=paul-moore.com
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20])
        by mx.google.com with ESMTP id p19-20020a056a000a1300b006755741d6c7si387554pfh.24.2023.07.17.13.59.26;
        Mon, 17 Jul 2023 13:59:38 -0700 (PDT)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@paul-moore.com header.s=google header.b="Ovnxdri/";
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=paul-moore.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S229583AbjGQUWD (ORCPT <rfc822;amit.kandalgaonkar@gmail.com>
        + 99 others); Mon, 17 Jul 2023 16:22:03 -0400
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:57976 "EHLO
        lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S229518AbjGQUWC (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Mon, 17 Jul 2023 16:22:02 -0400
Received: from mail-oo1-xc2f.google.com (mail-oo1-xc2f.google.com [IPv6:2607:f8b0:4864:20::c2f])
        by lindbergh.monkeyblade.net (Postfix) with ESMTPS id D06ACDA
        for <linux-kernel@vger.kernel.org>; Mon, 17 Jul 2023 13:22:00 -0700 (PDT)
Received: by mail-oo1-xc2f.google.com with SMTP id 006d021491bc7-5636426c1b3so3150722eaf.1
        for <linux-kernel@vger.kernel.org>; Mon, 17 Jul 2023 13:22:00 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=paul-moore.com; s=google; t=1689625320; x=1692217320;
        h=content-transfer-encoding:cc:to:subject:message-id:date:from
         :in-reply-to:references:mime-version:from:to:cc:subject:date
         :message-id:reply-to;
        bh=LWiE3CkGTDUlj6QCNZoo/WRVOd/qSvpeFml4/GNI1l4=;
        b=Ovnxdri/2azVGDeU5lzqBST5/chKrc8SVm4zfJ1ZIpx7cAbY9GLgYW3jcUkmuzRrXZ
         TJp15XjCoBRSz+SwqIsnVjp7s+32BR8O59aTYfOZafrbnu35Q0rYYdUb/FQoyhPBd5Ec
         8BvNLgEpZKM+tKgA0N1xj77okD4qJYUJ7lngH0Gth/8PUeL8d4VVqoRw7r0RaUPsHH75
         9BAXe19pLao6COeY4AI9UBU6iTPoizkDNxAjwpzHeXNDf3nK6N+XRkZ4pl/75zxhnl5c
         Zo28RFxYzG/kSPE4WRtzNH7qcxvWXo/D1CaGaD3GkTnyjCh8qNvS2fx94AR2ITDOJgVF
         vfJw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20221208; t=1689625320; x=1692217320;
        h=content-transfer-encoding:cc:to:subject:message-id:date:from
         :in-reply-to:references:mime-version:x-gm-message-state:from:to:cc
         :subject:date:message-id:reply-to;
        bh=LWiE3CkGTDUlj6QCNZoo/WRVOd/qSvpeFml4/GNI1l4=;
        b=SJ/Y+QoN00LlW798YaczlTsOlhwwiRQqDh51GE1iwSP2JykFYW8QTu/YX6B0TPI5Tx
         A+gr84M63/6CTGeznR3lajSHjTecDpnex8QGou0mgFsuMBjommiBocUlPLOj7zGWbgSY
         zXEY8WTGvbqOO00n1gXNWN0rcjoqY/1zW8f1wV7Ca3DRCQDGerqNyfu+VDDm66odfwp5
         bCPU79YrfVQ/FamoFha4Pyma9NXBoM3uwgWrDApaTGBOuFG+aFQmjyvfoRjXlOp2X7a5
         ueVd83KfaI2fwx+j99Jt+uEQ7DQ9AgFuxZjTIQ9xPfLZ1L7rSuTIv1PXV+zKZRSl3pnY
         xBEQ==
X-Gm-Message-State: ABy/qLZSjSXKyI5em08j+rELBSmVqW51v+CeexAACFd0B8kf+rqMa14G
        HC955IesuLevBJ/LcHUMYDSkmnpgBW95jp7OGATpkqATIF8zxHg=
X-Received: by 2002:a05:6808:140e:b0:3a4:316b:42c7 with SMTP id
 w14-20020a056808140e00b003a4316b42c7mr14345026oiv.2.1689625320107; Mon, 17
 Jul 2023 13:22:00 -0700 (PDT)
MIME-Version: 1.0
References: <20230706133751.38149-1-cgzones@googlemail.com>
In-Reply-To: <20230706133751.38149-1-cgzones@googlemail.com>
From:   Paul Moore <paul@paul-moore.com>
Date:   Mon, 17 Jul 2023 16:21:49 -0400
Message-ID: <CAHC9VhQFn1cE39YuXNxssttu1tU6oXWsYjGLSzD496Wa5-Gs5A@mail.gmail.com>
Subject: Re: [RFC PATCH] selinux: disable debug functions by default
To:     =?UTF-8?Q?Christian_G=C3=B6ttsche?= <cgzones@googlemail.com>
Cc:     selinux@vger.kernel.org,
        Stephen Smalley <stephen.smalley.work@gmail.com>,
        Eric Paris <eparis@parisplace.org>,
        linux-kernel@vger.kernel.org
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
X-Spam-Status: No, score=-2.1 required=5.0 tests=BAYES_00,DKIM_SIGNED,
        DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,RCVD_IN_DNSWL_BLOCKED,
        SPF_HELO_NONE,SPF_PASS,T_SCC_BODY_TEXT_LINE autolearn=ham
        autolearn_force=no version=3.4.6
X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on
        lindbergh.monkeyblade.net
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

On Thu, Jul 6, 2023 at 9:37=E2=80=AFAM Christian G=C3=B6ttsche
<cgzones@googlemail.com> wrote:
>
> avtab_hash_eval() and hashtab_stat() are only used in policydb.c when
> the debug macro DEBUG_HASHES is defined.
>
> Signed-off-by: Christian G=C3=B6ttsche <cgzones@googlemail.com>
> ---
>  security/selinux/ss/avtab.c   | 2 ++
>  security/selinux/ss/avtab.h   | 3 +++
>  security/selinux/ss/hashtab.c | 3 ++-
>  security/selinux/ss/hashtab.h | 2 ++
>  4 files changed, 9 insertions(+), 1 deletion(-)

This reminds me that I don't really like the "hidden" and kludgy
nature of DEBUG_HASHES.  What if we created a proper SELinux debug
Kconfig flag and used it in place of DEBUG_HASHES?  I'm thinking of
something like this:

config SECURITY_SELINUX_DEBUG
  bool "NSA SELinux kernel debugging support"
  depends on SECURITY_SELINUX
  default n
  help
    This enables debugging code designed to help SELinux kernel developers,
    unless you know what this does in the kernel code you should leave this
    disabled.

... and then we do all of the usual Kconfig triggered dummy funcs,
etc.  Thoughts?

--=20
paul-moore.com