Received: by 2002:a05:7412:8d10:b0:f3:1519:9f41 with SMTP id bj16csp1815409rdb; Thu, 7 Dec 2023 09:24:43 -0800 (PST) X-Google-Smtp-Source: AGHT+IHP9EsmWlkgu61Vq1CxBxQjevS2WqEJ9/3pJvKGuZ+OZzzC+I6w07Q8uv88wSWb9hf50ULw X-Received: by 2002:a17:903:22cf:b0:1d0:820a:ceec with SMTP id y15-20020a17090322cf00b001d0820aceecmr6507837plg.55.1701969883312; Thu, 07 Dec 2023 09:24:43 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1701969883; cv=none; d=google.com; s=arc-20160816; b=fV3xqyBijpvWcEgogUe/QJiSngh1BSquL7vuziPsXurIqPWnEU7jIEm4d3m2ShQrAV DUkccHgwUhuV6KdXV3s6KC/siRbI14HF55m2uGNPL2gBpfpCYqFIac0fW7ZY9CNYoXFN U1FxmonD5JffwqL9iIV8VmCsMvILrXo4ohgg1JRZTTGOHcJ0qEUu2RxZkc1JhdtgYQAm N0cyzjNfCEzp519BF7h8ZrDw9dtlNpLCPxa0HmAOrHlMnNFZ73ayAlWqEgqQyulFLYaM shMAlLWo1MSm8YNeKWvsSZ+VuI5VJHR/nln7qKJAVd97wB6vuajcYw/rY+lnZfSABS5q ahfQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:content-transfer-encoding:mime-version :references:in-reply-to:message-id:subject:cc:to:from:date :dkim-signature; bh=oTCeRpHqhGF/GHRrZwq/S/NlBC+feZS0GhglRChcJtI=; fh=izAHtxAH7LZo30ylz7VgPsszaMVYPFGNIYR6BnuPXiA=; b=lrBUo7w+vzYBDW1mX36ep31hmnPi/oHHImTIXMEtqbM0W0e9ZA0Ltt5CwT1pPx3rM6 qbxT0b7l16ktk61DQ7KxkgHcm0Y+Kf8kgOEi4JpTcVq52caA/ilRB9kXw9OZQqn2jL2T 54FT79H9Xocw8Gp9GVjJDTMrOdbC30L2a7CLAkCq7dXnscxVNeTlFiKjklYon0rgBkK6 XAEfEi26gVZZJP2hOvL8NtdObYSZVSpnhi5KT4HRBdxBCngVkwpfoKqXCZZw4xdKNAvK KVADBSEERHfKoHQn1ACYB/zYfMpprDU3M4GsKQHCFwNVhAT16YIZjXil3fk3BufMv4cY yM4A== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@kernel.org header.s=k20201202 header.b=dkRZ6y5Q; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.33 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org Return-Path: Received: from lipwig.vger.email (lipwig.vger.email. [23.128.96.33]) by mx.google.com with ESMTPS id y65-20020a636444000000b005c66de270d7si39460pgb.177.2023.12.07.09.24.43 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Thu, 07 Dec 2023 09:24:43 -0800 (PST) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.33 as permitted sender) client-ip=23.128.96.33; Authentication-Results: mx.google.com; dkim=pass header.i=@kernel.org header.s=k20201202 header.b=dkRZ6y5Q; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.33 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org Received: from out1.vger.email (depot.vger.email [IPv6:2620:137:e000::3:0]) by lipwig.vger.email (Postfix) with ESMTP id A05C680AE519; Thu, 7 Dec 2023 09:24:40 -0800 (PST) X-Virus-Status: Clean X-Virus-Scanned: clamav-milter 0.103.11 at lipwig.vger.email Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1443239AbjLGRYU (ORCPT + 99 others); Thu, 7 Dec 2023 12:24:20 -0500 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:51758 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S235231AbjLGRYT (ORCPT ); Thu, 7 Dec 2023 12:24:19 -0500 Received: from smtp.kernel.org (relay.kernel.org [52.25.139.140]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 199CC2D56 for ; Thu, 7 Dec 2023 09:23:39 -0800 (PST) Received: by smtp.kernel.org (Postfix) with ESMTPSA id 61DA1C433C8; Thu, 7 Dec 2023 17:23:30 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kernel.org; s=k20201202; t=1701969811; bh=5ZGbyElS+x41MFLATnYLsznaU+Z7c+doA4GLhjlaIew=; h=Date:From:To:Cc:Subject:In-Reply-To:References:From; b=dkRZ6y5Qj9QrxhwraMvNrHQbxYNnUc2M2Ws9bbkKt+JuGDa4HmB1BPrV1J0phelDG hvhlU7wbIxkEVWP4VkF7WTcgfxvhgSrSPZvgFTvA4zX/pDE/KdKwadzE0oV721g11E ek7H2pt91Li8V97BSTov/77ZSTJMs8jy0w7MymYE0uqYM2K6PZzyRku7gN+8ZUimKI rP5szN53GaJQQKQwCt3/T1d5tjYYxNmv27cLlPIgl9YgOGPL/5dZVYAWECvSLgXZAy jrWDMTAx1RXtudxH21EP4AuhR95sq2kh+jf31AgtqJEJJyT1ZFpijeMAFYIh2r3Stm TddQ5Z7LXvelw== Date: Thu, 7 Dec 2023 09:23:29 -0800 From: Jakub Kicinski To: Aron Silverton Cc: Greg Kroah-Hartman , Saeed Mahameed , Jason Gunthorpe , David Ahern , Arnd Bergmann , Leon Romanovsky , Jiri Pirko , Leonid Bloch , Itay Avraham , linux-kernel@vger.kernel.org, Saeed Mahameed Subject: Re: [PATCH V3 2/5] misc: mlx5ctl: Add mlx5ctl misc driver Message-ID: <20231207092329.3ec04dca@kernel.org> In-Reply-To: References: <20231128162413.GP436702@nvidia.com> <20231128084421.6321b9b2@kernel.org> <20231128175224.GR436702@nvidia.com> <20231128103304.25c2c642@kernel.org> <2023112922-lyricist-unclip-8e78@gregkh> <20231204185210.030a72ca@kernel.org> <20231205204855.52fa5cc1@kernel.org> MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-Spam-Status: No, score=-1.2 required=5.0 tests=DKIMWL_WL_HIGH,DKIM_SIGNED, DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,MAILING_LIST_MULTI, SPF_HELO_NONE,SPF_PASS,T_SCC_BODY_TEXT_LINE autolearn=unavailable autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on lipwig.vger.email Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org X-Greylist: Sender passed SPF test, not delayed by milter-greylist-4.6.4 (lipwig.vger.email [0.0.0.0]); Thu, 07 Dec 2023 09:24:40 -0800 (PST) On Thu, 7 Dec 2023 10:41:25 -0600 Aron Silverton wrote: > > I understand that having everything packaged and shipped together makes > > life easier. > > I think it is a requirement. We operate with Secure Boot. The kernel is > locked down. We don't have debugfs access, even if it were sufficient, > and we cannot compile and load modules. Even without Secure Boot, there > may not be a build environment available. This 'no debugfs' requirement is a kernel lockdown thing, I presume? Are we expected to throw debugfs out the window and for all vendors to reimplement their debug functionality via a misc driver taking arbitrary ioctls? Not only does that sound like a complete waste of time and going backward in terms of quality of the interfaces, needing custom vendor tools etc. etc., but also you go from (hopefully somewhat) upstream reviewed debugfs interface to an interface where the only security assurance is vendor telling you "trust me, it's all good".