Received: by 2002:ab2:6816:0:b0:1f9:5764:f03e with SMTP id t22csp519701lqo; Thu, 16 May 2024 13:00:43 -0700 (PDT) X-Forwarded-Encrypted: i=3; AJvYcCWhxk4S0NjblfuqDDAgcC1/MUUK3AmspY8PullOjSRJUYm7UTz2pX5gUaJAtMw4S7OXnlVU/4fFGKvjccRPxmWOTQHjQPlb1EibD8CGAw== X-Google-Smtp-Source: AGHT+IGnxLCpXsyf+Qdd1lONGourTHnVDGOLoWin7algf3DvU+yGRvV4m0C5EvtUGgCmvyYXXYES X-Received: by 2002:a05:6808:4289:b0:3c9:728d:ed78 with SMTP id 5614622812f47-3c997069f87mr19972132b6e.27.1715889643162; Thu, 16 May 2024 13:00:43 -0700 (PDT) ARC-Seal: i=2; a=rsa-sha256; t=1715889643; cv=pass; d=google.com; s=arc-20160816; b=TALWBeab8hH+VOq1/dyDS8NmykOuNqjwG1UzPp2lxat4i10D9b5ggvJ+qq7W3/b/h8 BVw3QLdqH1cj9qgXLqcLSPcOzrL7/Kal+PzxTrqJ1rjnk22I5F8u1R/ixEkPMHR/vMZF Ajf0qBNa+FdaodpygOUQwUabOarcc8aeRY5CkFUFLbvjvnUAMz5zepHc8Yulu4fwS8Lv X2QPsqe64j7lqBf1tD7Bouc6kiEP34D5YriADZMoUAf/RyNqtvOJupWpH30ptbbYqgqT oxy+YFFiFoiyKFKGeGbvbfuOquQtRIiUfzadDtj7yogxLYwijItKxOpusnC7JcMtZJMW jWEA== ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=in-reply-to:references:to:from:subject:cc:message-id:date :content-transfer-encoding:mime-version:list-unsubscribe :list-subscribe:list-id:precedence:dkim-signature; bh=mSCbcyFvWVeCrzk5GDnKYow5FYvlFs9uAysTly05lak=; fh=KsSJhuZIuSm6ekxNlLOHBt3CKn5oIc7N8vNs92Me58M=; b=mJqCF6P3pEZo2lghPMH0S5cGIrbUNTT4zWqm0reZTcU7nHZo/0AhQMk0tjOAI5+UQ0 tz2X9YkAIfhynJMJlZFS0UIvM8zzAv3d49GCC8c0aVa4ahL0hNOdkFB5wCoiA3yDSqGP jiD6uDiLKXOPM2pO3I3Os3Z03z9iVfGIljK9Uz7gLaHQGOj4nMREo7x0hLzbeapPGrq2 t+ZZKdbpNSXws5IkE/qpMh6cGx4rXsBOHvfh65rNk7GvHYuWsCtYTyB9ealnmNXcLYFM oy8LSMheWYGgwbW2BagsUzp46yKg+Sx9kjbRAVPmc59rGhcAOCN1Te9VuKM6oGUdTWM7 lo7w==; dara=google.com ARC-Authentication-Results: i=2; mx.google.com; dkim=pass header.i=@kernel.org header.s=k20201202 header.b="IH/2JEns"; arc=pass (i=1 dkim=pass dkdomain=kernel.org); spf=pass (google.com: domain of linux-kernel+bounces-181551-linux.lists.archive=gmail.com@vger.kernel.org designates 147.75.199.223 as permitted sender) smtp.mailfrom="linux-kernel+bounces-181551-linux.lists.archive=gmail.com@vger.kernel.org"; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org Return-Path: Received: from ny.mirrors.kernel.org (ny.mirrors.kernel.org. [147.75.199.223]) by mx.google.com with ESMTPS id af79cd13be357-792bf3407e0si1643328585a.496.2024.05.16.13.00.42 for (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Thu, 16 May 2024 13:00:43 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel+bounces-181551-linux.lists.archive=gmail.com@vger.kernel.org designates 147.75.199.223 as permitted sender) client-ip=147.75.199.223; Authentication-Results: mx.google.com; dkim=pass header.i=@kernel.org header.s=k20201202 header.b="IH/2JEns"; arc=pass (i=1 dkim=pass dkdomain=kernel.org); spf=pass (google.com: domain of linux-kernel+bounces-181551-linux.lists.archive=gmail.com@vger.kernel.org designates 147.75.199.223 as permitted sender) smtp.mailfrom="linux-kernel+bounces-181551-linux.lists.archive=gmail.com@vger.kernel.org"; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org Received: from smtp.subspace.kernel.org (wormhole.subspace.kernel.org [52.25.139.140]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ny.mirrors.kernel.org (Postfix) with ESMTPS id BD9701C20EC5 for ; Thu, 16 May 2024 20:00:42 +0000 (UTC) Received: from localhost.localdomain (localhost.localdomain [127.0.0.1]) by smtp.subspace.kernel.org (Postfix) with ESMTP id 67FFA157A76; Thu, 16 May 2024 20:00:33 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; dkim=pass (2048-bit key) header.d=kernel.org header.i=@kernel.org header.b="IH/2JEns" Received: from smtp.kernel.org (aws-us-west-2-korg-mail-1.web.codeaurora.org [10.30.226.201]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id 74342147C72; Thu, 16 May 2024 20:00:31 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; arc=none smtp.client-ip=10.30.226.201 ARC-Seal:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1715889632; cv=none; b=hIyQi+lMmNuXrlsMeCbgNCI3jjbFMP2Pvi/8HyYMzhRURFlJZqzM2YTAQ/pI+YQ3w5c7T1CK2FwawV4YUgNRj/Dn4qFTXnFkI6yrOuBM4+rm9+DWMvs5VWcLpJcPn/MUrOKXMx8pYMsxdr4enoStqsvu59kju91CTWACbainGz0= ARC-Message-Signature:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1715889632; c=relaxed/simple; bh=oIo0+8UooOueZ1JprNItUa0mTgu6yRRFRPC/LxHzJLc=; h=Mime-Version:Content-Type:Date:Message-Id:Cc:Subject:From:To: References:In-Reply-To; b=nbUWc+n/aQwaDVjXvu6F3qxOAl6dOQlz9+KQHNgCPe10kCorXIDVINUrtM73uSbKCpZGW/noh8yf8nODifBFfhJy3c4U/pUasjdxXcxtQfddWnqk0eJWAiHYCUE9xePXYBVVSW7FC7ynefQFBjAybKgCzs3+alNWU4AECBioHR4= ARC-Authentication-Results:i=1; smtp.subspace.kernel.org; dkim=pass (2048-bit key) header.d=kernel.org header.i=@kernel.org header.b=IH/2JEns; arc=none smtp.client-ip=10.30.226.201 Received: by smtp.kernel.org (Postfix) with ESMTPSA id 7A118C32786; Thu, 16 May 2024 20:00:27 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kernel.org; s=k20201202; t=1715889631; bh=oIo0+8UooOueZ1JprNItUa0mTgu6yRRFRPC/LxHzJLc=; h=Date:Cc:Subject:From:To:References:In-Reply-To:From; b=IH/2JEnsmDlYis68tcQXP1jSBA3ibITkeUFmxniYgQGaAs8DNqOT3EwnUgSJb54CN V/7atgZBY8hdRJNdhMccnbCD6Y2By6cug68ykSbUtakB88OoXt83+xmsWJQwmDIwV3 IMXfl9FqhLGH6Q3knt2DUpZy57l9tgtg6mb27STOgCXdyXNG2KqIYjS9QF/FnZYzni ovbTzu5ZAgbTjdXtGfvC2f6aZbXlt7DUW4zMhSE3TWaH1ZT6+RQ8wEy8wERHyplnPu MTib+i7N8RLjx3SYSlUB+xa50dKhMGTXW1GVh7koRG6VUfZsG0PEpI9fzyqHpXtd25 wmqhq7DJUp77A== Precedence: bulk X-Mailing-List: linux-kernel@vger.kernel.org List-Id: List-Subscribe: List-Unsubscribe: Mime-Version: 1.0 Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=UTF-8 Date: Thu, 16 May 2024 23:00:25 +0300 Message-Id: Cc: , , , , Subject: Re: [PATCH 0/3] Introduce user namespace capabilities From: "Jarkko Sakkinen" To: "Jarkko Sakkinen" , "Casey Schaufler" , "Jonathan Calmels" , , , "Luis Chamberlain" , "Kees Cook" , "Joel Granados" , "Serge Hallyn" , "Paul Moore" , "James Morris" , "David Howells" X-Mailer: aerc 0.17.0 References: <20240516092213.6799-1-jcalmels@3xx0.net> <2804dd75-50fd-481c-8867-bc6cea7ab986@schaufler-ca.com> In-Reply-To: On Thu May 16, 2024 at 10:31 PM EEST, Jarkko Sakkinen wrote: > On Thu May 16, 2024 at 10:29 PM EEST, Jarkko Sakkinen wrote: > > On Thu May 16, 2024 at 10:07 PM EEST, Casey Schaufler wrote: > > > I suggest that adding a capability set for user namespaces is a bad i= dea: > > > - It is in no way obvious what problem it solves > > > - It is not obvious how it solves any problem > > > - The capability mechanism has not been popular, and relying on a > > > community (e.g. container developers) to embrace it based on this > > > enhancement is a recipe for failure > > > - Capabilities are already more complicated than modern developers > > > want to deal with. Adding another, special purpose set, is going > > > to make them even more difficult to use. > > > > What Inh, Prm, Eff, Bnd and Amb is not dead obvious to you? ;-) > > One UNs cannot hurt... > > > > I'm not following containers that much but didn't seccomp profiles > > supposed to be the silver bullet? > > Also, I think Kata Containers style way of doing containers is pretty > solid. I've heard that some video streaming service at least in recent > past did launch VM per stream so it's not like VM's cannot be made to > scale I guess. Sorry for multiple responses but this actually nails the key question: who will use this? Even if this would work out somehow, is there someone who will actually use this, and not few other more robust solutions available? I mean it is worth of time to maintain it, if there is no potential users for a feature. In addition to "show me the code", there is always also "show me the payloa= d". BR, Jarkko