Received: by 2002:ab2:6816:0:b0:1f9:5764:f03e with SMTP id t22csp438466lqo; Thu, 16 May 2024 10:18:38 -0700 (PDT) X-Forwarded-Encrypted: i=3; AJvYcCXq+ufk2BJMNS+osENcMPs/4gEA9R8s8D/++FQD40m7X8ruqbIsUafKu19VNojnlLDfmObkCv7fjbmYDm+IHbCR6NncXJbTWxf9PpecAw== X-Google-Smtp-Source: AGHT+IH3TueSasIe4kBrHKk/XCoLKJx6P4GAybiMDIrzK/loLOMGQxf8Vw6suWvrgviMvGB7WHzH X-Received: by 2002:a05:6e02:1fea:b0:36a:3769:9555 with SMTP id e9e14a558f8ab-36cc14f7980mr230831845ab.20.1715879918148; Thu, 16 May 2024 10:18:38 -0700 (PDT) ARC-Seal: i=2; a=rsa-sha256; t=1715879918; cv=pass; d=google.com; s=arc-20160816; b=y2jJ2mz1CKHCciXCtPhdVXmUzIWiMEA5eSzg9XhpiSAL9iAQL69vpzAghFsUbJxHzb ++l9+dkbLQcKueatIpCcGiR8GJtjZnybsfOFqoFvXmz8z5GlIHilQFOoKYm7VRHTIkGf B4+LHGK3+/XhC+mjA+EmfBxty6KhZyeABrlGbqOsVMsq9soUIib2P9slZQpVNpX9uzUs uG2dQ5oWWcInrXsmIgXfgPTdcfjzlkQVZcbclIBt0P7xyVMdXgbz8iqmb+A+JNjp0g/O HxTa2zpVmZzjlXJ9QFPzPpG56Q+2FALhX6okIoxv7+O9CkJjtegeBJxVOFAJNJQ5T1ZZ WqwQ== ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=in-reply-to:references:to:from:subject:cc:message-id:date :content-transfer-encoding:mime-version:list-unsubscribe :list-subscribe:list-id:precedence:dkim-signature; bh=fIK++qma76v6f8TknO156tpt5GQaZPJ+s9y4ZW/mavQ=; fh=/qMEAHQm7LtdN+UrFFWto+EsYln21EmG9O7WEKg30fE=; b=GR9MqCIFzHHZc/q9E9C/DmCswCeU+U7tTARgf8+36peGpKUzJ0XQ/sb8CpG1CoFQjs ghaipL0g07mg7L0mUhoug6glAgKV/xcXDL6DU6Xn2/GSXzT5yb9HUjHad4PSVJ/TBjWL oaE3irHRdT5/SCqHDiJT4Zj0f6IRnllfRPs5kiwGLmxX7mSzTSFWa1S6Lfcb1wMpj58j BecoTQCtStHMrbKR74t3hyPq7k7LXPaKcDPqefco1vHL6haSu1/RnHzXNjTTGWmthdgH gKjFEVsCeomGbjQ3DzF5i9ZE/DaAsM+Nrv1bdP6heK6Cq5z017+5LXEborOnRuhxkoAO 1qXQ==; dara=google.com ARC-Authentication-Results: i=2; mx.google.com; dkim=pass header.i=@kernel.org header.s=k20201202 header.b=rdOjwGHg; arc=pass (i=1 dkim=pass dkdomain=kernel.org); spf=pass (google.com: domain of linux-kernel+bounces-181360-linux.lists.archive=gmail.com@vger.kernel.org designates 2604:1380:45e3:2400::1 as permitted sender) smtp.mailfrom="linux-kernel+bounces-181360-linux.lists.archive=gmail.com@vger.kernel.org"; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org Return-Path: Received: from sv.mirrors.kernel.org (sv.mirrors.kernel.org. [2604:1380:45e3:2400::1]) by mx.google.com with ESMTPS id 41be03b00d2f7-65cc9cde0b0si698753a12.795.2024.05.16.10.18.37 for (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Thu, 16 May 2024 10:18:38 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel+bounces-181360-linux.lists.archive=gmail.com@vger.kernel.org designates 2604:1380:45e3:2400::1 as permitted sender) client-ip=2604:1380:45e3:2400::1; Authentication-Results: mx.google.com; dkim=pass header.i=@kernel.org header.s=k20201202 header.b=rdOjwGHg; arc=pass (i=1 dkim=pass dkdomain=kernel.org); spf=pass (google.com: domain of linux-kernel+bounces-181360-linux.lists.archive=gmail.com@vger.kernel.org designates 2604:1380:45e3:2400::1 as permitted sender) smtp.mailfrom="linux-kernel+bounces-181360-linux.lists.archive=gmail.com@vger.kernel.org"; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org Received: from smtp.subspace.kernel.org (wormhole.subspace.kernel.org [52.25.139.140]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by sv.mirrors.kernel.org (Postfix) with ESMTPS id BE19D282B32 for ; Thu, 16 May 2024 17:18:37 +0000 (UTC) Received: from localhost.localdomain (localhost.localdomain [127.0.0.1]) by smtp.subspace.kernel.org (Postfix) with ESMTP id 7A2D3156672; Thu, 16 May 2024 17:18:28 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; dkim=pass (2048-bit key) header.d=kernel.org header.i=@kernel.org header.b="rdOjwGHg" Received: from smtp.kernel.org (aws-us-west-2-korg-mail-1.web.codeaurora.org [10.30.226.201]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id 9219B154BF0; Thu, 16 May 2024 17:18:27 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; arc=none smtp.client-ip=10.30.226.201 ARC-Seal:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1715879907; cv=none; b=MxwFXH55IcuK8aAOoa50RstgesX/iF+XAafC1JpCIsxK14XH/G/skffKOpdPmuvy7K8z3q2n3BarqWLmuqpPyeZoxJYtNOgj1LiDDvkkrSQceYhHz4m0EF+8SaehB/MqZe/I6E9vX3M13/qDfxw9ld1hui9q5ywfn6GA2kuq2hk= ARC-Message-Signature:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1715879907; c=relaxed/simple; bh=fIK++qma76v6f8TknO156tpt5GQaZPJ+s9y4ZW/mavQ=; h=Mime-Version:Content-Type:Date:Message-Id:Cc:Subject:From:To: References:In-Reply-To; b=JHqSgg0Q04rNRGqc6qGrRlNCPJDCTGKkpbJ/iJepGdhLGGP7TR/M17/l/BgB1F6jUu/KF46eBg8msTVkLk3dMgByzUcGqpSmYneRXsL8xyI4jjtuk4KBARYB4abLqphpREBh1ATbULAKezWpoWWGoAR/6MCB7kL+KaTlJgXRB/8= ARC-Authentication-Results:i=1; smtp.subspace.kernel.org; dkim=pass (2048-bit key) header.d=kernel.org header.i=@kernel.org header.b=rdOjwGHg; arc=none smtp.client-ip=10.30.226.201 Received: by smtp.kernel.org (Postfix) with ESMTPSA id 217FFC113CC; Thu, 16 May 2024 17:18:23 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kernel.org; s=k20201202; t=1715879907; bh=fIK++qma76v6f8TknO156tpt5GQaZPJ+s9y4ZW/mavQ=; h=Date:Cc:Subject:From:To:References:In-Reply-To:From; b=rdOjwGHgCqG3/ineB6Oty5GlbvyY3FGa5MaGsr7QsgqE7RwBRax43tYFSxhyNkM3O xvCgoQE+c6eQxKm0Hd9H5SonC7lgFIyeYvMz6yqH//2dY22/kFLzzPn5EO9rVJ9PCK 8GDyfegnO0bLk/lqUFzxWTVkpyEiM5zk2y5Ouyx/QrZB0vNGnl3ijiK/eF7sok+iab Sh5LzcBRbGZO2hEvBkihpNXL5CTUrcYLgmNdAS7sSmVWgq3neuVPg/XIp0u5tamkFb AqUvhzBKZpVOrQ3AptQ72EYJ/3M0R/ULEBexGzuF5+PsL8crJ9BaPCPV9P8mw5bjdx loHHl3sp4DRUw== Precedence: bulk X-Mailing-List: linux-kernel@vger.kernel.org List-Id: List-Subscribe: List-Unsubscribe: Mime-Version: 1.0 Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=UTF-8 Date: Thu, 16 May 2024 20:18:22 +0300 Message-Id: Cc: , , "Luis Chamberlain" , "Kees Cook" , "Joel Granados" , "James Morris" , "David Howells" , , , , , Subject: Re: [PATCH 0/3] Introduce user namespace capabilities From: "Jarkko Sakkinen" To: "Paul Moore" , "Jonathan Calmels" , "Serge Hallyn" X-Mailer: aerc 0.17.0 References: <20240516092213.6799-1-jcalmels@3xx0.net> In-Reply-To: On Thu May 16, 2024 at 7:23 PM EEST, Paul Moore wrote: > On Thu, May 16, 2024 at 5:21=E2=80=AFAM Jonathan Calmels wrote: > > > > It's that time of the year again where we debate security settings for = user > > namespaces ;) > > > > I=E2=80=99ve been experimenting with different approaches to address th= e gripe > > around user namespaces being used as attack vectors. > > After invaluable feedback from Serge and Christian offline, this is wha= t I > > came up with. > > As Serge is the capabilities maintainer it would be good to hear his > thoughts on-list about this proposal. Also it would make sense to make this just a bit more digestible to a wider group of maintainers, i.e. a better introduction to the topic instead of huge list of references (no bandwidth to read them all). This is exactly kind of patch set that makes you ignore it unless you are pro-active exactly in this domain. I think this could bring more actually useful feedback. BR, Jarkko