Received: by 2002:a05:7412:bbc7:b0:fc:a2b0:25d7 with SMTP id kh7csp543377rdb; Thu, 1 Feb 2024 17:06:19 -0800 (PST) X-Google-Smtp-Source: AGHT+IEUWTFvdiWQBJekFdOvinKPjT/o6jYDgmiRLXjM+aJOkMRx5cc/QgQq7TFTMF83kdHrUUiT X-Received: by 2002:a17:906:448:b0:a31:1907:2fe8 with SMTP id e8-20020a170906044800b00a3119072fe8mr455123eja.48.1706835979198; Thu, 01 Feb 2024 17:06:19 -0800 (PST) ARC-Seal: i=2; a=rsa-sha256; t=1706835979; cv=pass; d=google.com; s=arc-20160816; b=EbbyN7hlAtBiLGRoXq21uEGDHxYP6qtEQxy6AzCGVwMUaUVh6tL/ZP23CXVOoj4FH6 yLOqFa9BD78Yw0EquwNjjUji+dUDSo/7g7/C6uAL8CNMi2hxiyDIb8BgD4jZKCWhRZ4A RXdCTNLds3sWuSpS1Jp2Zq4p7u+n4Ek7aHTJ22WJTfKY9Udc3EyiqghJZmsMaxXax+cx iFcbIbWwbYBHLV7UpEefvddur+KTYcTTprblFUjCQYX2ka8VzvBwSH8jkawRKdFbujax AMEu0GW68HXfF8hXAJVQX2rNUQDwGgYLvObpXbz5OiQj1G0zs3ksKe22MsmrtieqYb7F pxDg== ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=in-reply-to:content-disposition:mime-version:list-unsubscribe :list-subscribe:list-id:precedence:references:message-id:subject:to :from:date:dkim-signature; bh=pN58hUxorIT9hIDxbIZfSVcPSnoxnBvx6xtgLj2kTJc=; fh=v79OIo2L5t4Ae8cdeebvxsFL3Ma7DL4fSQ8i8Df05AQ=; b=qlPCgaKgxd0xL7/UwGpKPaMuYgsELs4fCtHQDqcEheqjRlJj5eaAVnLro4eAvJ6412 eGLPbbTyBZTX47CEktM1cvtymRwK6lldkU/mIcAyXnnKGlGQ7EYIBLWKEOW4lddduiMV uL8hvRbj5kPEuppiuoIbEc1BZCmkPWsnr3dC60g+ja610yeHap0xyKJ002GEbgJygdtP KRvNpGNHjVtGnZnt2nz4Sroa9bYsOM9Zlbt9u80U+Gz+hB/xAKQ6tXRfWmVEKejPVQOg Zv8Z+u6AtbFu87A1RDPpzBjrPjLEuCdYXH1V4N90/vB4+n4BIeJf05RgTyqUM1hd6qX3 czHw==; dara=google.com ARC-Authentication-Results: i=2; mx.google.com; dkim=pass header.i=@linuxfoundation.org header.s=korg header.b=esiuD9iU; arc=pass (i=1 dkim=pass dkdomain=linuxfoundation.org); spf=pass (google.com: domain of linux-kernel+bounces-49047-linux.lists.archive=gmail.com@vger.kernel.org designates 2604:1380:4601:e00::3 as permitted sender) smtp.mailfrom="linux-kernel+bounces-49047-linux.lists.archive=gmail.com@vger.kernel.org"; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=linuxfoundation.org X-Forwarded-Encrypted: i=1; AJvYcCVdFA4GZHTMs4s3pdupT+Ij27jK8kP4W68loMWUxNxdY9ape/pPoU9O7rEOhrKiTSINFVSpY0jSwX6er2KjHjzaEdW4LhWDmlyAo0PJOg== Return-Path: Received: from am.mirrors.kernel.org (am.mirrors.kernel.org. [2604:1380:4601:e00::3]) by mx.google.com with ESMTPS id i11-20020a170906698b00b00a35fdfac2besi295744ejr.1024.2024.02.01.17.06.19 for (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Thu, 01 Feb 2024 17:06:19 -0800 (PST) Received-SPF: pass (google.com: domain of linux-kernel+bounces-49047-linux.lists.archive=gmail.com@vger.kernel.org designates 2604:1380:4601:e00::3 as permitted sender) client-ip=2604:1380:4601:e00::3; Authentication-Results: mx.google.com; dkim=pass header.i=@linuxfoundation.org header.s=korg header.b=esiuD9iU; arc=pass (i=1 dkim=pass dkdomain=linuxfoundation.org); spf=pass (google.com: domain of linux-kernel+bounces-49047-linux.lists.archive=gmail.com@vger.kernel.org designates 2604:1380:4601:e00::3 as permitted sender) smtp.mailfrom="linux-kernel+bounces-49047-linux.lists.archive=gmail.com@vger.kernel.org"; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=linuxfoundation.org Received: from smtp.subspace.kernel.org (wormhole.subspace.kernel.org [52.25.139.140]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by am.mirrors.kernel.org (Postfix) with ESMTPS id 1BE901F24008 for ; Fri, 2 Feb 2024 01:06:15 +0000 (UTC) Received: from localhost.localdomain (localhost.localdomain [127.0.0.1]) by smtp.subspace.kernel.org (Postfix) with ESMTP id EA8385C85; Fri, 2 Feb 2024 01:06:05 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; dkim=pass (1024-bit key) header.d=linuxfoundation.org header.i=@linuxfoundation.org header.b="esiuD9iU" Received: from smtp.kernel.org (aws-us-west-2-korg-mail-1.web.codeaurora.org [10.30.226.201]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id D73F753A1; Fri, 2 Feb 2024 01:06:04 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; arc=none smtp.client-ip=10.30.226.201 ARC-Seal:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1706835965; cv=none; b=SrHntAGg4NUv1TsQVbXFfWU+WFYaOvABqca/IAhHb+2udVWjljag6sCzMx4DJ2+pw1kTPaZtIyuMtiJH9g+epTIKj64bKfbKzJoxqCO//Xuai7PgcXu/1/1cCAMK4d4Kzy5TDcM1B4BORVi9Fn579maVcEGjiI2gPuKuIfQcWOg= ARC-Message-Signature:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1706835965; c=relaxed/simple; bh=FCd8HoHZrcX63bQlMAlSTqIPH/4qdHcUl1FKM5j5vsA=; h=Date:From:To:Subject:Message-ID:References:MIME-Version: Content-Type:Content-Disposition:In-Reply-To; b=X8Qbln+6a/z1mPYAH8dLl2zPXnc0H9btqasYeZFcreWlLjYFYq1vzSrufpg2L2JFVykN70YQdb9zNuWlwONTjpU+cpSPsKX5cEp01olS3iFz3Bmymsfj1DCeGjHF6UzC6nle1fitj20Q0cQfmaHpkFZs2uKI7NJ61sPHsg2kxA8= ARC-Authentication-Results:i=1; smtp.subspace.kernel.org; dkim=pass (1024-bit key) header.d=linuxfoundation.org header.i=@linuxfoundation.org header.b=esiuD9iU; arc=none smtp.client-ip=10.30.226.201 Received: by smtp.kernel.org (Postfix) with ESMTPSA id 3FC09C433C7; Fri, 2 Feb 2024 01:06:04 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=linuxfoundation.org; s=korg; t=1706835964; bh=FCd8HoHZrcX63bQlMAlSTqIPH/4qdHcUl1FKM5j5vsA=; h=Date:From:To:Subject:References:In-Reply-To:From; b=esiuD9iU7YeWm66qZS9sotr0oscjl9KHVUZ0JvRlbyJyTgwZ2DAHvReTGSJj8Exwk QsMvI06Zan9QzIH7ULW++Jl5sWbQROYd2EqWQtOwbm7OmDIp7qWO3e04fRioc4jaFG n2kFJpJUOY92viQr7+kBMQwQD7oBQXt6boqi7cEc= Date: Thu, 1 Feb 2024 17:06:03 -0800 From: Greg KH To: "Liam R. Howlett" , Jeff Xu , Jonathan Corbet , akpm@linux-foundation.org, keescook@chromium.org, jannh@google.com, sroettger@google.com, willy@infradead.org, torvalds@linux-foundation.org, usama.anjum@collabora.com, rdunlap@infradead.org, jeffxu@google.com, jorgelo@chromium.org, groeck@chromium.org, linux-kernel@vger.kernel.org, linux-kselftest@vger.kernel.org, linux-mm@kvack.org, pedro.falcato@gmail.com, dave.hansen@intel.com, linux-hardening@vger.kernel.org Subject: Re: [PATCH v8 0/4] Introduce mseal Message-ID: <2024020137-hacking-tightwad-a485@gregkh> References: <20240131175027.3287009-1-jeffxu@chromium.org> <20240131193411.opisg5yoyxkwoyil@revolver> <20240201204512.ht3e33yj77kkxi4q@revolver> <60731.1706826280@cvs.openbsd.org> Precedence: bulk X-Mailing-List: linux-kernel@vger.kernel.org List-Id: List-Subscribe: List-Unsubscribe: MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <60731.1706826280@cvs.openbsd.org> On Thu, Feb 01, 2024 at 03:24:40PM -0700, Theo de Raadt wrote: > As an outsider, Linux development is really strange: > > Two sub-features are being pushed very hard, and the primary developer > doesn't have code which uses either of them. And once it goes in, it > cannot be changed. > > It's very different from my world, where the absolutely minimal > interface was written to apply to a whole operating system plus 10,000+ > applications, and then took months of testing before it was approved for > inclusion. And if it was subtly wrong, we would be able to change it. No, it's this "feature" submission that is strange to think that we don't need that. We do need, and will require, an actual working userspace something to use it, otherwise as you say, there's no way to actually know if it works properly or not and we can't change it once we accept it. So along those lines, Jeff, do you have a pointer to the Chrome patches, or glibc patches, that use this new interface that proves that it actually works? Those would be great to see to at least verify it's been tested in a real-world situation and actually works for your use case. thanks, greg k-h