Re: [Xen-devel] Is:livepatch-build-tools.git declare it supported? Was:Re: [PATCH for-4.9] livepatch: Declare live patching as a supported feature

On 08/29/2017 03:44 PM, Konrad Rzeszutek Wilk wrote: > .giant snip.. >> Indeed; and as I think I said before, I think we need to move forward >> with getting a statement on livepatching in, and since most of the >> voices involved in this conversation seem to be in favor of saying >>

Re: [Xen-devel] Is:livepatch-build-tools.git declare it supported? Was:Re: [PATCH for-4.9] livepatch: Declare live patching as a supported feature

On 29/08/17 15:44, Konrad Rzeszutek Wilk wrote: > .giant snip.. >> Indeed; and as I think I said before, I think we need to move forward >> with getting a statement on livepatching in, and since most of the >> voices involved in this conversation seem to be in favor of saying >> livepatch-tools

Re: [Xen-devel] Is:livepatch-build-tools.git declare it supported? Was:Re: [PATCH for-4.9] livepatch: Declare live patching as a supported feature

.giant snip.. > Indeed; and as I think I said before, I think we need to move forward > with getting a statement on livepatching in, and since most of the > voices involved in this conversation seem to be in favor of saying > livepatch-tools are *not* supported, I won't object. I'm only still

Re: [Xen-devel] Is:livepatch-build-tools.git declare it supported? Was:Re: [PATCH for-4.9] livepatch: Declare live patching as a supported feature

On Tue, Aug 22, 2017 at 11:58:57AM +0100, George Dunlap wrote: > I think guest OS support is actually a pretty good analog. I can't > imagine not issuing XSAs for bugs in Linux, just as I can't imagine > not issuing XSAs for actual security issues that get found in the > livepatch tools. If you

Re: [Xen-devel] Is:livepatch-build-tools.git declare it supported? Was:Re: [PATCH for-4.9] livepatch: Declare live patching as a supported feature

On Tue, Aug 22, 2017 at 7:37 AM, Jan Beulich wrote: On 21.08.17 at 17:28, wrote: >> So your argument seems to be: >> >> 1. We can only provide security support in situations where we can test >> all possible combinations in the support matrix. >>

Re: [Xen-devel] Is:livepatch-build-tools.git declare it supported? Was:Re: [PATCH for-4.9] livepatch: Declare live patching as a supported feature

>>> On 21.08.17 at 17:28, wrote: > So your argument seems to be: > > 1. We can only provide security support in situations where we can test > all possible combinations in the support matrix. > > 2. We cannot test the entire matrix of combinations for Xen x livepatch >

Re: [Xen-devel] Is:livepatch-build-tools.git declare it supported? Was:Re: [PATCH for-4.9] livepatch: Declare live patching as a supported feature

On 08/21/2017 01:07 PM, Jan Beulich wrote: And remember, this is not "We have tested all compiler versions and promise you there are no bugs." It's, "If someone finds a bug for this set of compilers, we will tell you about it so you can do something about it." >>> >>> I can

Re: [Xen-devel] Is:livepatch-build-tools.git declare it supported? Was:Re: [PATCH for-4.9] livepatch: Declare live patching as a supported feature

>>> On 21.08.17 at 12:59, wrote: > On Wed, Aug 9, 2017 at 8:36 AM, Jan Beulich wrote: > On 08.08.17 at 13:16, wrote: >>> On 08/07/2017 04:59 PM, Jan Beulich wrote: >>> George Dunlap

Re: [Xen-devel] Is:livepatch-build-tools.git declare it supported? Was:Re: [PATCH for-4.9] livepatch: Declare live patching as a supported feature

On Wed, Aug 9, 2017 at 8:36 AM, Jan Beulich wrote: On 08.08.17 at 13:16, wrote: >> On 08/07/2017 04:59 PM, Jan Beulich wrote: >> George Dunlap 08/07/17 12:27 PM >>> So it seems that people are still not quite

Re: [Xen-devel] Is:livepatch-build-tools.git declare it supported? Was:Re: [PATCH for-4.9] livepatch: Declare live patching as a supported feature

>>> On 08.08.17 at 13:16, wrote: > On 08/07/2017 04:59 PM, Jan Beulich wrote: > George Dunlap 08/07/17 12:27 PM >>> >>> So it seems that people are still not quite clear about what I'm proposing. >> >> And indeed your examples helped me

Re: [Xen-devel] Is:livepatch-build-tools.git declare it supported? Was:Re: [PATCH for-4.9] livepatch: Declare live patching as a supported feature

On 08/07/2017 04:59 PM, Jan Beulich wrote: George Dunlap 08/07/17 12:27 PM >>> >> So it seems that people are still not quite clear about what I'm proposing. > > And indeed your examples helped me understand better what you mean > (or at least I hope they did). >

Re: [Xen-devel] Is:livepatch-build-tools.git declare it supported? Was:Re: [PATCH for-4.9] livepatch: Declare live patching as a supported feature

>>> George Dunlap 08/07/17 12:27 PM >>> >So it seems that people are still not quite clear about what I'm proposing. And indeed your examples helped me understand better what you mean (or at least I hope they did). >Suppose someone builds a livepatch with the correct

Re: [Xen-devel] Is:livepatch-build-tools.git declare it supported? Was:Re: [PATCH for-4.9] livepatch: Declare live patching as a supported feature

On 08/06/2017 01:07 AM, Konrad Rzeszutek Wilk wrote: > On Thu, Aug 03, 2017 at 06:21:30PM +0100, George Dunlap wrote: >> On 08/03/2017 06:20 PM, George Dunlap wrote: >>> On 07/03/2017 03:53 PM, Ross Lagerwall wrote: On 06/30/2017 02:42 PM, George Dunlap wrote: > On 06/28/2017 05:18 PM,

[Xen-devel] Is:livepatch-build-tools.git declare it supported? Was:Re: [PATCH for-4.9] livepatch: Declare live patching as a supported feature

On Thu, Aug 03, 2017 at 06:21:30PM +0100, George Dunlap wrote: > On 08/03/2017 06:20 PM, George Dunlap wrote: > > On 07/03/2017 03:53 PM, Ross Lagerwall wrote: > >> On 06/30/2017 02:42 PM, George Dunlap wrote: > >>> On 06/28/2017 05:18 PM, Ross Lagerwall wrote: > On 06/27/2017 10:17 AM,