From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from hedgehog.birch.relay.mailchannels.net (hedgehog.birch.relay.mailchannels.net [23.83.209.81]) by sourceware.org (Postfix) with ESMTPS id A5CD83858CDB for ; Wed, 18 Oct 2023 14:20:38 +0000 (GMT) DMARC-Filter: OpenDMARC Filter v1.4.2 sourceware.org A5CD83858CDB Authentication-Results: sourceware.org; dmarc=none (p=none dis=none) header.from=gotplt.org Authentication-Results: sourceware.org; spf=pass smtp.mailfrom=gotplt.org ARC-Filter: OpenARC Filter v1.0.0 sourceware.org A5CD83858CDB Authentication-Results: server2.sourceware.org; arc=pass smtp.remote-ip=23.83.209.81 ARC-Seal: i=2; a=rsa-sha256; d=sourceware.org; s=key; t=1697638842; cv=pass; b=eIJvk4wS1CYrWRidt1KtGBGdlKmsxnkNQ2U9IoCNipvvMq5ZpzWTuXncm1pCEqjs3twdgjC5fCoLQTiBYiHiZ95kGa16ORsQaw2QmGluBjBuTvju0Jp9az6DD7wRpw1kJ426L2oIgpKNiTcgDh6wYnco9pzPTDq8jHYYSbozNfc= ARC-Message-Signature: i=2; a=rsa-sha256; d=sourceware.org; s=key; t=1697638842; c=relaxed/simple; bh=XUyDEDBY5FvYP5lAPulpOebTUIWs/5sQebdoFSLugHE=; h=DKIM-Signature:Message-ID:Date:MIME-Version:To:From:Subject; b=stRhY/ouJwqeJMvyvz5rOQToZmriPlQkR2wOcgInkrox7dHB+UIBfw6V/uxKQB0MrZ+RlHXdqEBDObLqWPYRYn0csVPOop8VJZFAERHQOWmrpfjF3ZTCT+ji7gbNnUOoYC873VHjAci57n6jnmlsA/uVap6fZhlXhC9j3FHjtC0= ARC-Authentication-Results: i=2; server2.sourceware.org X-Sender-Id: dreamhost|x-authsender|siddhesh@gotplt.org Received: from relay.mailchannels.net (localhost [127.0.0.1]) by relay.mailchannels.net (Postfix) with ESMTP id 6EDFC142E2A; Wed, 18 Oct 2023 14:20:32 +0000 (UTC) Received: from pdx1-sub0-mail-a202.dreamhost.com (unknown [127.0.0.6]) (Authenticated sender: dreamhost) by relay.mailchannels.net (Postfix) with ESMTPA id DB43F14301C; Wed, 18 Oct 2023 14:20:30 +0000 (UTC) ARC-Seal: i=1; s=arc-2022; d=mailchannels.net; t=1697638830; a=rsa-sha256; cv=none; b=EfEgcazogGS/TPrkVG3inrgPlmYIyX9VmLpIVOwGm3x8FymnLk+FTNC6XIDSprrJNOTebI k8ox4YbojxHWxIu+LOas2LYFUEwEHDNlW4fDSE58f/Szj8d+/vkSYxmfUAOagS9ZuAXEkC RXcvFMEhLkcRRS4SqSqSU9bPwpb8xmSexUmhn+c05/D2URfXHV3iArByVgx6esrqQckD8g 73AAFtUZeoHcANdqmQackOnWianBeFU0x71NsGKRM07Md5+aUmLKwtSXPGF4+QpfF/VgUZ boiwvhoWfBHJVIz2iLbQDcapjrmY0AggTG+CHZ9ZG0bOCXCV5cgeh6qHFL73Sw== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=mailchannels.net; s=arc-2022; t=1697638830; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references:dkim-signature; bh=oSg9Ms0Y6yZRCoDKQ0b4SzasBP5dN8qbPs4P4nmxzUQ=; b=XLtFqZkGMsDLaebxfroW+yuMsRe5gpSsZDzdnQi5GdeTzppWtGdpaiKik5Fs4xceKUD+nF dPTwjJw5+CPFdbTsM0Lxw60IcJlmev3mnf9fUbd6/lLJYZNHhhWRtqmEBi3nsTUeqLhPDD MoFF2r1lKXerCRGxuQ+jz15qED/o100uQaZIhh/XFpC21GVlmwXxkfoXURNAYL1p88Ef+H j4vhL0R8e8+2z4EIwoV9i7yyYPZd1Pk+z2sjsPyHvCddViYE3/m39qFTL0umJ8ZLaP+yiw 99x+UIHktx7bJfPuB71cFbdch5G+D3HRGeCEjIxdBLio/uKoN+IzukvDqLTvCA== ARC-Authentication-Results: i=1; rspamd-77cc7ccf48-2tzsm; auth=pass smtp.auth=dreamhost smtp.mailfrom=siddhesh@gotplt.org X-Sender-Id: dreamhost|x-authsender|siddhesh@gotplt.org X-MC-Relay: Neutral X-MailChannels-SenderId: dreamhost|x-authsender|siddhesh@gotplt.org X-MailChannels-Auth-Id: dreamhost X-Stop-Inform: 3cf4a38c489d2f58_1697638832194_188249402 X-MC-Loop-Signature: 1697638832194:3652792202 X-MC-Ingress-Time: 1697638832194 Received: from pdx1-sub0-mail-a202.dreamhost.com (pop.dreamhost.com [64.90.62.162]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384) by 100.100.60.218 (trex/6.9.2); Wed, 18 Oct 2023 14:20:32 +0000 Received: from [192.168.2.12] (bras-vprn-toroon4834w-lp130-02-142-113-138-136.dsl.bell.ca [142.113.138.136]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits)) (No client certificate requested) (Authenticated sender: siddhesh@gotplt.org) by pdx1-sub0-mail-a202.dreamhost.com (Postfix) with ESMTPSA id 4S9Y0Z3K0WzX7; Wed, 18 Oct 2023 07:20:30 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gotplt.org; s=dreamhost; t=1697638830; bh=oSg9Ms0Y6yZRCoDKQ0b4SzasBP5dN8qbPs4P4nmxzUQ=; h=Date:To:Cc:From:Subject:Content-Type:Content-Transfer-Encoding; b=X9pV7HyOIeY6pfFwnz4uss6ckgbg25V58sAV9OBG3pEuWuxuIhqqMc7MXaZRz1Jiy dU2BDk9FPT0P6+RbyXuHA1K4mfgsBNf4OFAb0O1e0c9b68fdonX0K1YNE1xMmV4ksR zj8vZNarD9fUhxeS/BJkZm454JhFta3vjnoDSqNkuKNeg9lnxny+KRX1Uf0sbCc2s4 tclD1F0c4PV9R6hESv+MQycLCLweqtZIV9k5DU75Zb3iAYgHf8P1G00To0Vnyq57sA xvWo3ZKzLDo+M2nXClLht2MXtDcT3WZLhtjR0r6vfRolcLCyBLWLVlhiM63STi+dJ2 1gSr/PVfYLYTQ== Message-ID: <44db5ffe-3612-86fb-215b-11cc873752b3@gotplt.org> Date: Wed, 18 Oct 2023 10:20:29 -0400 MIME-Version: 1.0 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:102.0) Gecko/20100101 Thunderbird/102.15.1 Content-Language: en-US To: DJ Delorie Cc: adhemerval.zanella@linaro.org, libc-alpha@sourceware.org References: From: Siddhesh Poyarekar Subject: Re: RFC: system-wide default tunables In-Reply-To: Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit X-Spam-Status: No, score=-3031.8 required=5.0 tests=BAYES_00,DKIM_SIGNED,DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,NICE_REPLY_A,RCVD_IN_DNSWL_NONE,RCVD_IN_MSPIKE_H3,RCVD_IN_MSPIKE_WL,SPF_HELO_NONE,SPF_PASS,TXREP autolearn=ham autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on server2.sourceware.org List-Id: On 2023-10-17 13:14, DJ Delorie wrote: > Siddhesh Poyarekar writes: >> Actually I wasn't thinking of any conf file related constraint markup, I >> was thinking of TUNABLE_CALLBACKs encoding constraints in whichever way >> they deem fit. e.g. for ibt it could be: >> >> void >> TUNABLE_CALLBACK (set_x86_ibt) (tunable_val_t *valp) >> { >> if (!strcmp (valp->system_default, "always_on")) >> return; >> >> /* Otherwise read the value. */ >> } > > So the tunable definition *itself* decides whether the sysadmin wants to > override a user? Sort of; the tunable definition decides how much control a systemwide tunable (consequently the sysadmin) has, on the capability of a user to override it. So for security tunables it could be a latch value (like above) that a user may not be able to override. For numeric value tunables it could be a range that a user is not allowed to surpass. For string tunables, it could be a list of values the user is allowed to set; the first valid value in the list could be the default. Thanks, Sid