From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from kanga.kvack.org (kanga.kvack.org [205.233.56.17]) by smtp.lore.kernel.org (Postfix) with ESMTP id 40D77C02180 for ; Thu, 16 Jan 2025 05:27:05 +0000 (UTC) Received: by kanga.kvack.org (Postfix) id 687F66B007B; Thu, 16 Jan 2025 00:27:04 -0500 (EST) Received: by kanga.kvack.org (Postfix, from userid 40) id 637CE6B0082; Thu, 16 Jan 2025 00:27:04 -0500 (EST) X-Delivered-To: int-list-linux-mm@kvack.org Received: by kanga.kvack.org (Postfix, from userid 63042) id 526856B0085; Thu, 16 Jan 2025 00:27:04 -0500 (EST) X-Delivered-To: linux-mm@kvack.org Received: from relay.hostedemail.com (smtprelay0012.hostedemail.com [216.40.44.12]) by kanga.kvack.org (Postfix) with ESMTP id 34D4C6B007B for ; Thu, 16 Jan 2025 00:27:04 -0500 (EST) Received: from smtpin09.hostedemail.com (a10.router.float.18 [10.200.18.1]) by unirelay03.hostedemail.com (Postfix) with ESMTP id DB668A07B4 for ; Thu, 16 Jan 2025 05:27:03 +0000 (UTC) X-FDA: 83012181126.09.6631B70 Received: from verein.lst.de (verein.lst.de [213.95.11.211]) by imf10.hostedemail.com (Postfix) with ESMTP id 0CC24C0006 for ; Thu, 16 Jan 2025 05:27:01 +0000 (UTC) Authentication-Results: imf10.hostedemail.com; dkim=none; dmarc=none; spf=pass (imf10.hostedemail.com: domain of hch@lst.de designates 213.95.11.211 as permitted sender) smtp.mailfrom=hch@lst.de ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=hostedemail.com; s=arc-20220608; t=1737005222; h=from:from:sender:reply-to:subject:subject:date:date: message-id:message-id:to:to:cc:cc:mime-version:mime-version: content-type:content-type:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=UEG1jgv3mQuQDuEatDan8CuPdD/a51LXkKCCTvHcp8w=; b=eAw+BPEuzzFEHatOVnuK+1bFPauhJcQR1RM+tqZOJc5PnpXkyDu89H4VZw/2pKEV2+eKp7 s2kqzklWOuf+t7xm3dngn+FkHYy6rmk9SWCs3c5tx0Emj/8rMp7+jcioGHzA/KpKBphrwA ISK0coOCDoHkNYkfFTSEEzyzb6cfbVo= ARC-Seal: i=1; s=arc-20220608; d=hostedemail.com; t=1737005222; a=rsa-sha256; cv=none; b=4VwUz67ci7alAmvKK0tX7h1Vd09lXDpqqsLMaTWgU7TElGIy8CzQVLTZxOVX9RqbNzqzby D27Qkykn2zfJa86rr4WBR69sSwekmuWL0NMGLGEjX1cePVZQgEmzhM2zNSJIb7e5/6cTEu 4zZKrLP/a0MA8PNIxkegArEYnBM66Uo= ARC-Authentication-Results: i=1; imf10.hostedemail.com; dkim=none; dmarc=none; spf=pass (imf10.hostedemail.com: domain of hch@lst.de designates 213.95.11.211 as permitted sender) smtp.mailfrom=hch@lst.de Received: by verein.lst.de (Postfix, from userid 2407) id C80B568BEB; Thu, 16 Jan 2025 06:26:55 +0100 (CET) Date: Thu, 16 Jan 2025 06:26:55 +0100 From: Christoph Hellwig To: Kees Cook Cc: Lorenzo Stoakes , Jeff Xu , akpm@linux-foundation.org, jannh@google.com, torvalds@linux-foundation.org, adhemerval.zanella@linaro.org, oleg@redhat.com, linux-kernel@vger.kernel.org, linux-hardening@vger.kernel.org, linux-mm@kvack.org, jorgelo@chromium.org, sroettger@google.com, ojeda@kernel.org, adobriyan@gmail.com, anna-maria@linutronix.de, mark.rutland@arm.com, linus.walleij@linaro.org, Jason@zx2c4.com, deller@gmx.de, rdunlap@infradead.org, davem@davemloft.net, hch@lst.de, peterx@redhat.com, hca@linux.ibm.com, f.fainelli@gmail.com, gerg@kernel.org, dave.hansen@linux.intel.com, mingo@kernel.org, ardb@kernel.org, Liam.Howlett@oracle.com, mhocko@suse.com, 42.hyeyoo@gmail.com, peterz@infradead.org, ardb@google.com, enh@google.com, rientjes@google.com, groeck@chromium.org, mpe@ellerman.id.au, Vlastimil Babka , Andrei Vagin , Dmitry Safonov <0x7f454c46@gmail.com>, Mike Rapoport , Alexander Mikhalitsyn , Benjamin Berg Subject: Re: [PATCH v4 1/1] exec: seal system mappings Message-ID: <20250116052655.GA23894@lst.de> References: <20241125202021.3684919-1-jeffxu@google.com> <20241125202021.3684919-2-jeffxu@google.com> <202412171248.409B10D@keescook> <202501061647.6C8F34CB1A@keescook> <5cf1601b-70c3-45bb-81ef-416d89c415c2@lucifer.local> <202501151538.3E757401@keescook> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <202501151538.3E757401@keescook> User-Agent: Mutt/1.5.17 (2007-11-01) X-Rspamd-Queue-Id: 0CC24C0006 X-Stat-Signature: gjfg9336oqibpg3rcu59ycqbtrk1cce1 X-Rspam-User: X-Rspamd-Server: rspam12 X-HE-Tag: 1737005221-468432 X-HE-Meta: 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 gslUvdmM zRGK7rOuilzaRPzKVsp4YktVYiZylY7bKkuUpNU9Uo9HhxX9K2aT0wcsyT4gfiUvhRQ8KZtJFMp1EpV9Z9CVIYLSjQY8vdc9qFRcVpXaSh7Un0hLZSBJjlomJ56WnISq3eU7PBKMJ84IvoSavAnuclQ4jD9PZT9paWJSK0/9pDXVV7jI= X-Bogosity: Ham, tests=bogofilter, spamicity=0.063299, version=1.2.4 Sender: owner-linux-mm@kvack.org Precedence: bulk X-Loop: owner-majordomo@kvack.org List-ID: List-Subscribe: List-Unsubscribe: On Wed, Jan 15, 2025 at 03:52:23PM -0800, Kees Cook wrote: > > You seem to be saying you're pushing an internal feature on upstream and > > only care about internal use cases, this is not how upstream works, as > > Matthew alludes to. > > Internal? No. Chrome OS and Android. Linux runs more Android devices > than everything else in the world combined -- this is not some random > experiment. All of which are tightly controlled by Google and not actually open to users. Which doesn't say they don't matter, but they matter a lot less than fetures widely useful to the open not locked down userbase of classic Linux.