Received: by 2002:ab2:6816:0:b0:1f9:5764:f03e with SMTP id t22csp507430lqo; Thu, 16 May 2024 12:32:37 -0700 (PDT) X-Forwarded-Encrypted: i=3; AJvYcCWpD8+SCM6Q0L1aqd0wi6Jwy1FMrdGXXqCVR41fImLUYnbfWiwN5ONz5vg6elMPFFCEFWe3BQHCVUTgBNf0oGh1efqOLDsQWTbbaduscQ== X-Google-Smtp-Source: AGHT+IHzaSqxHgfpI7cXDSiQqjj2qpWsilIQl3hMtyNVXMVNUrs3uz4ij1RCaINYezVx1r54EcOf X-Received: by 2002:a05:620a:4085:b0:792:c3a3:ba3b with SMTP id af79cd13be357-792c75779aamr2471717485a.10.1715887957074; Thu, 16 May 2024 12:32:37 -0700 (PDT) ARC-Seal: i=2; a=rsa-sha256; t=1715887957; cv=pass; d=google.com; s=arc-20160816; b=ZXaFFUlxOhaA/33YuDpE6Hegsw7thNgJ46a1sHqksmdx3rR5H0VKQdWM4IGI+Yluj8 BX3YNbLOnzEhXDddSSdhEEHmmt0wEhejEe9haTuilzVWrcp93F8B9+gOLI0Ysw6Ass/z L3UTM88a8NtTDuTsEcSpxTzfOKAVSNQh8J1AuF0V2Va/4Q/AwIOOwuwdH4GYmkHD2nOb tWs0EUt6AxglWyWYzjEZ++3XWot55lfzHRZpzIL1mF3K5URcjivjb5JpE2xysnTSsO/y NhjdBsHgZjbMD7uUv4MtHyWpohOXyB++bi4Na4MtarJwdB19bxG7ZkTU4Rpdd0zZKKpm YD6w== ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=in-reply-to:references:to:from:subject:cc:message-id:date :content-transfer-encoding:mime-version:list-unsubscribe :list-subscribe:list-id:precedence:dkim-signature; bh=B+eB+KhbFuGW3A5J7/UFz5RNsKXKSnySXeedGVqB19U=; fh=KsSJhuZIuSm6ekxNlLOHBt3CKn5oIc7N8vNs92Me58M=; b=Zjgbjp0kr/HHKSBZqAjiV/GhBomPoV6N0dukuQQCXrOI+Eeew/xcpHgvBZBVd0doaQ WsWtoj8+K/rj/UY/2Tb83z6nlt2PRBJ17wPXRamLW5HnHPWfnwu2JO7GS53tdRy68Y8N j3tgDE7djKsjG3s6DYNXgRVO0rNee0rB0qCA63vVUKXqBRw92tSiYJCPlwTR/nD96OAk jRjG84M3FpG3gF0P4iFcO8tARizlYrefz6V0McFtkAJPgueSye5b0H/LujXotfg1oX63 9M4T0TzzLhu2+P+2s2HNEdNdZnfKuhw27VtxPyxUUzYJ1lMelG6rR80s/RXcOaazVsGz bYrg==; dara=google.com ARC-Authentication-Results: i=2; mx.google.com; dkim=pass header.i=@kernel.org header.s=k20201202 header.b="d/EThQr8"; arc=pass (i=1 dkim=pass dkdomain=kernel.org); spf=pass (google.com: domain of linux-kernel+bounces-181533-linux.lists.archive=gmail.com@vger.kernel.org designates 147.75.199.223 as permitted sender) smtp.mailfrom="linux-kernel+bounces-181533-linux.lists.archive=gmail.com@vger.kernel.org"; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org Return-Path: Received: from ny.mirrors.kernel.org (ny.mirrors.kernel.org. [147.75.199.223]) by mx.google.com with ESMTPS id af79cd13be357-792e8eb72f8si207645685a.683.2024.05.16.12.32.36 for (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Thu, 16 May 2024 12:32:37 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel+bounces-181533-linux.lists.archive=gmail.com@vger.kernel.org designates 147.75.199.223 as permitted sender) client-ip=147.75.199.223; Authentication-Results: mx.google.com; dkim=pass header.i=@kernel.org header.s=k20201202 header.b="d/EThQr8"; arc=pass (i=1 dkim=pass dkdomain=kernel.org); spf=pass (google.com: domain of linux-kernel+bounces-181533-linux.lists.archive=gmail.com@vger.kernel.org designates 147.75.199.223 as permitted sender) smtp.mailfrom="linux-kernel+bounces-181533-linux.lists.archive=gmail.com@vger.kernel.org"; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org Received: from smtp.subspace.kernel.org (wormhole.subspace.kernel.org [52.25.139.140]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ny.mirrors.kernel.org (Postfix) with ESMTPS id A7D1E1C215AC for ; Thu, 16 May 2024 19:32:11 +0000 (UTC) Received: from localhost.localdomain (localhost.localdomain [127.0.0.1]) by smtp.subspace.kernel.org (Postfix) with ESMTP id DE610157480; Thu, 16 May 2024 19:32:00 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; dkim=pass (2048-bit key) header.d=kernel.org header.i=@kernel.org header.b="d/EThQr8" Received: from smtp.kernel.org (aws-us-west-2-korg-mail-1.web.codeaurora.org [10.30.226.201]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id F19D114533D; Thu, 16 May 2024 19:31:59 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; arc=none smtp.client-ip=10.30.226.201 ARC-Seal:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1715887920; cv=none; b=eR4XPBQtKZmuVT6f032YcHeOcMLQy0c8EEHRYWiAEw9u4EBKWXF53ElDNpWp6Yw/2SR2tgqhisO/RkAQRhUoggdBZqNQ4LEp9HplXkIlRRVCEXVSjMUc6PQ3O0Z7JsAel64DJXb/4A3VC8p4iqWAcs0T3lFmkGHxA9UVqGd5SbI= ARC-Message-Signature:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1715887920; c=relaxed/simple; bh=QS3rWyqiNz1bMHqpo1/6vgSRC+6QfSN7Fb8rIEEX/L8=; h=Mime-Version:Content-Type:Date:Message-Id:Cc:Subject:From:To: References:In-Reply-To; b=OWUknunKcxcU3Jm5dY0/lNQjhiSAkU7PYzqAHhH/Y01oVO8RK9xyl0UI+m6NHOs3skIyGjlpsm5EQbPcGdRr2Ygc86Yp16hH3lFoDgU14o2P54IX1qHnMVEqdDzQPS0gzPGJGICqikBpX+wn0kQavkoIOPzJngoPYPcox3jgZpc= ARC-Authentication-Results:i=1; smtp.subspace.kernel.org; dkim=pass (2048-bit key) header.d=kernel.org header.i=@kernel.org header.b=d/EThQr8; arc=none smtp.client-ip=10.30.226.201 Received: by smtp.kernel.org (Postfix) with ESMTPSA id 3619CC32786; Thu, 16 May 2024 19:31:55 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kernel.org; s=k20201202; t=1715887919; bh=QS3rWyqiNz1bMHqpo1/6vgSRC+6QfSN7Fb8rIEEX/L8=; h=Date:Cc:Subject:From:To:References:In-Reply-To:From; b=d/EThQr8Yjxxs6XG21fXUmzllZqq+V5qpW0ltah9r9oooBwamLANJ9O7FYU6/vfyI CbiKZgNlxPOjAcapN/LASyE+XWI6rQmQhZplX9/6r4JN28JbNaNTfTEbxK8QHPA1a8 WGYmvTTnmtAg3SYWP7O+Cv+Qn7I5rJt50i9ml+1CGpNFRc1tqHFctsm3q6SRWZQOHN /xPuFP2CuHOL6aIdWq4s9ALjGYe5/EgXBGGloPZ+2oylJexbmMSZNTp6q+4Pfmtpd/ NT9E2YjUiJjAmlk1IweAoWmL+WNG/itEZ5D9AYTNby9ZoJSjccInht8h8uztjJ/862 fqMMIL/cWAX+Q== Precedence: bulk X-Mailing-List: linux-kernel@vger.kernel.org List-Id: List-Subscribe: List-Unsubscribe: Mime-Version: 1.0 Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=UTF-8 Date: Thu, 16 May 2024 22:31:54 +0300 Message-Id: Cc: , , , , Subject: Re: [PATCH 0/3] Introduce user namespace capabilities From: "Jarkko Sakkinen" To: "Jarkko Sakkinen" , "Casey Schaufler" , "Jonathan Calmels" , , , "Luis Chamberlain" , "Kees Cook" , "Joel Granados" , "Serge Hallyn" , "Paul Moore" , "James Morris" , "David Howells" X-Mailer: aerc 0.17.0 References: <20240516092213.6799-1-jcalmels@3xx0.net> <2804dd75-50fd-481c-8867-bc6cea7ab986@schaufler-ca.com> In-Reply-To: On Thu May 16, 2024 at 10:29 PM EEST, Jarkko Sakkinen wrote: > On Thu May 16, 2024 at 10:07 PM EEST, Casey Schaufler wrote: > > I suggest that adding a capability set for user namespaces is a bad ide= a: > > - It is in no way obvious what problem it solves > > - It is not obvious how it solves any problem > > - The capability mechanism has not been popular, and relying on a > > community (e.g. container developers) to embrace it based on this > > enhancement is a recipe for failure > > - Capabilities are already more complicated than modern developers > > want to deal with. Adding another, special purpose set, is going > > to make them even more difficult to use. > > What Inh, Prm, Eff, Bnd and Amb is not dead obvious to you? ;-) > One UNs cannot hurt... > > I'm not following containers that much but didn't seccomp profiles > supposed to be the silver bullet? Also, I think Kata Containers style way of doing containers is pretty solid. I've heard that some video streaming service at least in recent past did launch VM per stream so it's not like VM's cannot be made to scale I guess. BR, Jarkko