kernel-hardening.lists.openwall.com archive mirror
 help / color / mirror / Atom feed
From: Solar Designer <solar@openwall.com>
To: "Tobin C. Harding" <me@tobin.cc>
Cc: Tycho Andersen <tycho@tycho.ws>,
	Kees Cook <keescook@chromium.org>,
	kernel-hardening@lists.openwall.com,
	Mrinal Pandey <mrinalmni@gmail.com>,
	Tycho Andersen <tycho@tycho.pizza>
Subject: Re: [PATCH] scripts: Add intended executable mode and SPDX license
Date: Wed, 2 Sep 2020 14:16:05 +0200	[thread overview]
Message-ID: <20200902121604.GA10684@openwall.com> (raw)
In-Reply-To: <20200901042450.GA780@ares>

On Tue, Sep 01, 2020 at 02:24:50PM +1000, Tobin C. Harding wrote:
> On Mon, Aug 31, 2020 at 06:15:19PM -0600, Tycho Andersen wrote:
> > On Thu, Aug 27, 2020 at 11:02:00AM -0700, Kees Cook wrote:
> > > On Thu, Aug 27, 2020 at 03:06:53PM +0200, Solar Designer wrote:
> > > > How about we remove kernel-hardening from the MAINTAINERS entries it's
> > > > currently in? -
> > > > 
> > > > GCC PLUGINS
> > > > M:      Kees Cook <keescook@chromium.org>
> > > > R:      Emese Revfy <re.emese@gmail.com>
> > > > L:      kernel-hardening@lists.openwall.com
> > > > S:      Maintained
> > > > F:      Documentation/kbuild/gcc-plugins.rst
> > > > F:      scripts/Makefile.gcc-plugins
> > > > F:      scripts/gcc-plugin.sh
> > > > F:      scripts/gcc-plugins/
> > > > 
> > > > LEAKING_ADDRESSES
> > > > M:      Tobin C. Harding <me@tobin.cc>
> > > > M:      Tycho Andersen <tycho@tycho.ws>
> > > > L:      kernel-hardening@lists.openwall.com
> > > > S:      Maintained
> > > > T:      git git://git.kernel.org/pub/scm/linux/kernel/git/tobin/leaks.git
> > > > F:      scripts/leaking_addresses.pl
> > > > 
> > > > Alternatively, would this be acceptable? -
> > > > 
> > > > L:      kernel-hardening@lists.openwall.com (only for messages focused on core functionality, not for maintenance detail)
> > > > 
> > > > I think the latter would be best, if allowed.
> > > > 
> > > > Kees, please comment (so that we'd hopefully not need that next time),
> > > > and if you agree please make a change to MAINTAINERS.
> > > 
> > > A comment isn't going to really help fix this (much of the CCing is done
> > > by scripts, etc).

Understood.  Maybe some other agreed-upon syntax would help - a new tag
letter in place of "L" and/or e-mail address obfuscation or an https URL
for further information instead of a direct posting address - but I
guess this is only worth introducing if we're not unique with this wish.

> > > I've tended to prefer more emails than missing discussions, and I think
> > > it's not unreasonable to have the list mentioned in MAINTAINERS for
> > > those things. It does, of course, mean that "maintenance" patches get
> > > directed there too, as you say.
> > > 
> > > If it's really something you'd like to avoid, I can drop those
> > > references. My instinct is to leave it as-is, but the strength of my
> > > opinion is pretty small. Let me know what you prefer...

Thank you for your comments, Kees.

It's not a matter of my preference, but of what works best for getting
more actual work done.  Unfortunately, we have to make our subjective
guesses on this.  FYI, when we dropped the [kernel-hardening] prefix on
Subjects this appears to have resulted in some people unsubscribing.
I agree we had to do that anyway because of CC'ing other lists, which
is customary in Linux kernel development.  Before that change, we had a
slow but steady growth in the number of subscribers.  When we made that
change, the numbers of people joining and leaving became about the same,
so we're staying at 600 to 650 subscribed addresses for a long time now.
These numbers are fine by themselves; it's more relevant who is on the
list, not how many.  I think we might have "forced" some capable people
to unsubscribe, but like I explained we kind of had to.  Now I think
we're doing the same with these maintenance-only threads, and I think we
don't have to.  This is why I think we should preferably either somehow
limit the requested CC's to messages focused on core functionality, or
if we can't then drop the list references from MAINTAINERS.  We should
also not discuss this for very long, as this discussion itself hurts
actual work in a similar way.

> > One thing about leaking_addresses.pl is that I'm not sure anyone is
> > actively using it at this point. I told Tobin I'd help review stuff,
> > but I don't even have a GPG key with enough signatures to send PRs.
> > I'm slowly working on figuring that out, but in the meantime I wonder
> > if we couldn't move it into some self test somehow, so that at least
> > nobody adds new leaks? Does that seem worth doing?
> > 
> > It would then probably go away as a separate perl script and live
> > under selftests, which could mean we could drop the reference to the
> > list. But that's me making it someone else's problem then, kind of :)
> > 
> > Also, I'm switching my e-mail address to tycho@tycho.pizza, so future
> > replies will be from there.
> 
> I don't mind if the reference to kernel-hardening is removed, if in
> the event that someone sends a patch that needs input from the kernel
> hardening community we can always mail the list.

Thank you for your comments as well, Tycho and Tobin.

Alexander

  reply	other threads:[~2020-09-02 12:17 UTC|newest]

Thread overview: 13+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2020-08-27  9:24 [PATCH] scripts: Add intended executable mode and SPDX license Mrinal Pandey
2020-08-27  9:34 ` Lukas Bulwahn
2020-08-27  9:43 ` Greg KH
2020-08-27  9:49   ` Lukas Bulwahn
2020-08-27 10:00     ` Greg KH
2020-08-27 13:06 ` Solar Designer
2020-08-27 18:02   ` Kees Cook
2020-09-01  0:15     ` Tycho Andersen
2020-09-01  4:24       ` Tobin C. Harding
2020-09-02 12:16         ` Solar Designer [this message]
2020-08-31  0:44 ` Andrew Morton
2020-08-31  5:45   ` Lukas Bulwahn
2020-08-31 19:20     ` Kees Cook

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=20200902121604.GA10684@openwall.com \
    --to=solar@openwall.com \
    --cc=keescook@chromium.org \
    --cc=kernel-hardening@lists.openwall.com \
    --cc=me@tobin.cc \
    --cc=mrinalmni@gmail.com \
    --cc=tycho@tycho.pizza \
    --cc=tycho@tycho.ws \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).