Received: by 2002:ab2:6816:0:b0:1f9:5764:f03e with SMTP id t22csp1460230lqo; Sat, 18 May 2024 04:22:34 -0700 (PDT) X-Forwarded-Encrypted: i=3; AJvYcCVQcK+sTuAmzIuZ/WAfhSaEM8Oy+FP71X+51k4MmrCVDOa1RdrB6KgM+hKxGtIQKfbCrhj2yXRxUu7uiBinoS19TWcvg4qLU8QWQ0o/9w== X-Google-Smtp-Source: AGHT+IFXmr1D/zNEdyFFtjF1p8JOzcEHB5n5i4JqYWSUbgGrqCxTEJv+MWK1BJ3fOjImUC1B3wig X-Received: by 2002:a2e:b002:0:b0:2db:a9c9:4c5e with SMTP id 38308e7fff4ca-2e51fd47edfmr244437611fa.21.1716031354182; Sat, 18 May 2024 04:22:34 -0700 (PDT) ARC-Seal: i=2; a=rsa-sha256; t=1716031354; cv=pass; d=google.com; s=arc-20160816; b=T6FcD+YNthhdaVmhWMQePIxwQCUD9rTiv6QWTwJ+3u3S9NArAO1ZcIhALfe5LFVUrX grPOfh342BQ9ldviMVdYoJP1oSvBPPO83fLKVMhmcYYdNJ1yv6/q+RwYiX30OK2DjDsT RtdbIS4/mRn8DPJzYD+o52LMDEJJe2Gg0PDh7uc1CUomhJNmXNC0a5LMcNhUZDYEioeU KFwhrvNVjj4hzJcJiE2HGCKEVSOW0cOb1REIQODZFa3EwhOxiDpLk3Iynkd2TtU2yAuv /fOPothZrl6SEmeA0efIzeVkfoHl5qfnOiy1aKu0eT3Ovhh9VHTHQA/HxwxHAK/Amcyp 4Nzg== ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=in-reply-to:references:cc:to:from:subject:message-id:date :content-transfer-encoding:mime-version:list-unsubscribe :list-subscribe:list-id:precedence:dkim-signature; bh=iELBELN+ItTNiOWOJCNO9fLBpmFwctgb5zTuPUdT+jE=; fh=DCfTTlAi4z/IOVAs/XfTNqVoKv2hzmzRv2/h+AauQ6c=; b=aurLz05LYkgNNaHjQgKUA76F/edLhnpoooYhqaG4frnxjc4STbUlHuAYKSX8Z2oRFJ nECv2tChs645/+xp1i4pcO/BuT9n2uqTYzf0BmCLXdPzpIpoot562CACGQClbF93Cfh1 9uJnFuXrHjR7eAUZhFKqztQS8WZk6rMhFwS/5s4pe7t4KymNjQTKZn22kJSXw04Ef77G DxfcBy2/nbIVP6w/VuBAzeU9lZkbiXl8AY7XfEnrzvJEhSZdI6b6x0YetxsMVBzaUrcN nlS22+x//uNiykFkkK1URTu4Xu9e/WEKm1OwZzpOBmJJda9raWQGVVBaToLyi+yfsv1x SdEQ==; dara=google.com ARC-Authentication-Results: i=2; mx.google.com; dkim=pass header.i=@kernel.org header.s=k20201202 header.b=BygVJarO; arc=pass (i=1 dkim=pass dkdomain=kernel.org); spf=pass (google.com: domain of linux-kernel+bounces-182827-linux.lists.archive=gmail.com@vger.kernel.org designates 147.75.80.249 as permitted sender) smtp.mailfrom="linux-kernel+bounces-182827-linux.lists.archive=gmail.com@vger.kernel.org"; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org Return-Path: Received: from am.mirrors.kernel.org (am.mirrors.kernel.org. [147.75.80.249]) by mx.google.com with ESMTPS id a640c23a62f3a-a5a179462e4si1043369466b.142.2024.05.18.04.22.34 for (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Sat, 18 May 2024 04:22:34 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel+bounces-182827-linux.lists.archive=gmail.com@vger.kernel.org designates 147.75.80.249 as permitted sender) client-ip=147.75.80.249; Authentication-Results: mx.google.com; dkim=pass header.i=@kernel.org header.s=k20201202 header.b=BygVJarO; arc=pass (i=1 dkim=pass dkdomain=kernel.org); spf=pass (google.com: domain of linux-kernel+bounces-182827-linux.lists.archive=gmail.com@vger.kernel.org designates 147.75.80.249 as permitted sender) smtp.mailfrom="linux-kernel+bounces-182827-linux.lists.archive=gmail.com@vger.kernel.org"; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org Received: from smtp.subspace.kernel.org (wormhole.subspace.kernel.org [52.25.139.140]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by am.mirrors.kernel.org (Postfix) with ESMTPS id 119521F217A3 for ; Sat, 18 May 2024 11:22:25 +0000 (UTC) Received: from localhost.localdomain (localhost.localdomain [127.0.0.1]) by smtp.subspace.kernel.org (Postfix) with ESMTP id 652A839AC3; Sat, 18 May 2024 11:22:05 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; dkim=pass (2048-bit key) header.d=kernel.org header.i=@kernel.org header.b="BygVJarO" Received: from smtp.kernel.org (aws-us-west-2-korg-mail-1.web.codeaurora.org [10.30.226.201]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id 7B12D2E417; Sat, 18 May 2024 11:22:04 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; arc=none smtp.client-ip=10.30.226.201 ARC-Seal:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1716031324; cv=none; b=f7IL3nk8B58LaoxlFRCUixGopve8Tv5NAdBh+GoDoJKrMD+mdSL+Yyy4lcrundH04U5NivgeuSARqltJwdyuT88Ax8IUFtpljfGbX1LRN6xxiUQ62qJKG7VET0zBv1MbUzyvXvUeWxlIPLalsiC4Lc1N2fmAni5CE7ULsxew8uM= ARC-Message-Signature:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1716031324; c=relaxed/simple; bh=iELBELN+ItTNiOWOJCNO9fLBpmFwctgb5zTuPUdT+jE=; h=Mime-Version:Content-Type:Date:Message-Id:Subject:From:To:Cc: References:In-Reply-To; b=lEN2pEA7WdSCw0Pd0FXeMAcy2P+l5vMjK+YDfdPpQ3FNn2WBunUj3cCJsGqrpNNHnE0q74LXQAUMrAvvYZiZSYvQ6tmn9AYSUqfRPCqExdc+MfTBJDBqf7jq7GWyDVqCIeqjq5ao0tohUKDc85hknMQH1n/z5gBRKz3Z02ar/+0= ARC-Authentication-Results:i=1; smtp.subspace.kernel.org; dkim=pass (2048-bit key) header.d=kernel.org header.i=@kernel.org header.b=BygVJarO; arc=none smtp.client-ip=10.30.226.201 Received: by smtp.kernel.org (Postfix) with ESMTPSA id 84605C32782; Sat, 18 May 2024 11:22:00 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kernel.org; s=k20201202; t=1716031324; bh=iELBELN+ItTNiOWOJCNO9fLBpmFwctgb5zTuPUdT+jE=; h=Date:Subject:From:To:Cc:References:In-Reply-To:From; b=BygVJarOdyxgxEoTi4Q6GFh1XwHgWTz+M5G0XqXv5+2vlOnao1Y+E1Obpug7VLlEp N0JFh7oOJIuqcVVViPEX4LzdsUDS3+jd7lPmhGu91aSpf6Fev/X2sc5CO16Id9iWc9 dzB2n8WN9P+hA/PjNskR+wPNnGsdP3sqpZY7sXMbars+lMeppyofOLSo7LEcZx3lAC LfTgVPWj/xQxrVhmik+397AUIU978Tw0YwpBbeK9YlUanbPCxAtnjAwstyO2lh3vRl IPNdka9o22iFyZydhB9XDL/OFnEunFNjXay2z3kq9oSnl13VV0PgQekvT3IHiKKBAO sG6I9kRV3MLNg== Precedence: bulk X-Mailing-List: linux-kernel@vger.kernel.org List-Id: List-Subscribe: List-Unsubscribe: Mime-Version: 1.0 Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=UTF-8 Date: Sat, 18 May 2024 14:21:58 +0300 Message-Id: Subject: Re: [PATCH 0/3] Introduce user namespace capabilities From: "Jarkko Sakkinen" To: "Jarkko Sakkinen" , "Jonathan Calmels" , "Casey Schaufler" Cc: , , "Luis Chamberlain" , "Kees Cook" , "Joel Granados" , "Serge Hallyn" , "Paul Moore" , "James Morris" , "David Howells" , , , , , X-Mailer: aerc 0.17.0 References: <20240516092213.6799-1-jcalmels@3xx0.net> <2804dd75-50fd-481c-8867-bc6cea7ab986@schaufler-ca.com> In-Reply-To: On Sat May 18, 2024 at 2:17 PM EEST, Jarkko Sakkinen wrote: > On Sat May 18, 2024 at 2:08 PM EEST, Jarkko Sakkinen wrote: > > On Fri May 17, 2024 at 10:11 PM EEST, Jonathan Calmels wrote: > > > On Fri, May 17, 2024 at 10:53:24AM GMT, Casey Schaufler wrote: > > > > Of course they do. I have been following the use of capabilities > > > > in Linux since before they were implemented. The uptake has been > > > > disappointing in all use cases. > > > > > > Why "Of course"? > > > What if they should not get *all* privileges? > > > > They do the job given a real-world workload and stress test. > > > > Here the problem is based on a theory and an experiment. > > > > Even a formal model does not necessarily map all "unknown unknowns". > > So this was like the worst "sales pitch" ever: > > 1. The cover letter starts with the idea of having to argue about name > spaces, and have fun while doing that ;-) We all have our own ways to > entertain ourselves but "name space duels" are not my thing. Why not > just start with why we all want this instead? Maybe we don't want it > then. Maybe this is just useless spam given the angle presented? > 2. There's shitloads of computer science and set theory but nothing > that would make common sense. You need to build more understandable=20 > model. There's zero "gist" in this work. > > Maybe this does make sense but the story around it sucks so far. One tip: I think this is wrong forum to present namespace ideas in the first place. It would be probably better to talk about this with e.g. systemd or podman developers, and similar groups. There's zero evidence of the usefulness. Then when you go that route and come back with actual users, things click much more easily. Now this is all in the void. BR, Jarkko