Received: by 2002:ac0:946b:0:0:0:0:0 with SMTP id j40csp3579910imj; Tue, 12 Feb 2019 00:49:49 -0800 (PST) X-Google-Smtp-Source: AHgI3IaYHE2KZRY7YrDIQW5Eg1mGTycy5FcLSnS65Mz/czNDSiPlsYkAEa5F/uDMld3OAlO/t09b X-Received: by 2002:a17:902:7782:: with SMTP id o2mr2904819pll.315.1549961389643; Tue, 12 Feb 2019 00:49:49 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1549961389; cv=none; d=google.com; s=arc-20160816; b=c1Ur11oXb3qGm//QJuur75s0rinWJJDK47h0D6RTonC5yihVay+h5lmTYRRIUQQnJS lwbRIR8UpJ3KhK8G5mRc4nWRzymvU8aNuOPAqg8AGHXIQOMmE6MrHf2lTwyTbs183+nV 6bMDb6r0iMZOIU7VjXtNfc3BiXSPjrbFCMffUuUbfh+7HEgFlrdD5RQUSqPya6q95oL0 uqauqYimF0TWlddKxsRJ4nmbS+jG3tGIrKxJcixlXfiOqBD+cJKxtwk+8oPyG5A64x0v hXgTwQWU6ApunwpQ4Y4xqElUmrwbMGArxx0NBtuZOFz3JH3ngGK5lkMZc8pOvSpSBDmn hGOA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:user-agent:in-reply-to :content-disposition:mime-version:references:message-id:subject:cc :to:from:date:dkim-signature; bh=XtwXxTooaBV99B0FqTNCqVw5YXef63gLNpcStSgDI2s=; b=tYweLYZu4u8QmUk6LhDNF4KXBxahNBXB6OK2KoQVx5P3PzWSQsTcGj59l31f/EkjaK 2IRXJ10PAdO8Y0ML4rWvKFM6/cb3QAtc3zauB6e+WG2/T8dJje7QQwlKlyV1kxz0qmiZ IJjy98ejYjGd0UOe+a6V5Nv4IvnarzmPw9KePw1EUaedp40E7fDHUWMxjSU6R/CWX8p1 MOuEh9aECisvkIeTF0mF3R3DyztAItVZg6Q8xq3GiGF8n0fpYL6hPfzGZVMd973pwlzJ JL8JwZp6KX+fprJS6CabrjkDxmueLiIr/EiCQsijb70GYxqx71i6INv/ndCvNTi4GzHA 17mw== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@kernel.org header.s=default header.b=huFYGz4+; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id h16si11621394pgj.203.2019.02.12.00.49.33; Tue, 12 Feb 2019 00:49:49 -0800 (PST) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; dkim=pass header.i=@kernel.org header.s=default header.b=huFYGz4+; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1728608AbfBLIs4 (ORCPT + 99 others); Tue, 12 Feb 2019 03:48:56 -0500 Received: from mail.kernel.org ([198.145.29.99]:42652 "EHLO mail.kernel.org" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1728410AbfBLIs4 (ORCPT ); Tue, 12 Feb 2019 03:48:56 -0500 Received: from localhost (5356596B.cm-6-7b.dynamic.ziggo.nl [83.86.89.107]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mail.kernel.org (Postfix) with ESMTPSA id 4458D21773; Tue, 12 Feb 2019 08:48:55 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kernel.org; s=default; t=1549961335; bh=UAJDprAmUxSF4d6r+opZ3U08q7nFOQU82RNdpKvf9aI=; h=Date:From:To:Cc:Subject:References:In-Reply-To:From; b=huFYGz4+DC4H80pbzBrsJwZ2xkSUV+6V6uHVMm+15ugQDjVAtpqzdFExErQnd4dgd QgassdDOTpWuHimaRnSf6bYaUtKV2BS/gou+EIGu9M8ub3YtzUPYIbBncq+eus9M+t qWjHjlaWqLN7jVsuRBXxaA6Eaime+oovP/mmyocE= Date: Tue, 12 Feb 2019 09:48:52 +0100 From: Greg Kroah-Hartman To: "Eric W. Biederman" Cc: linux-kernel@vger.kernel.org, stable@vger.kernel.org, Benjamin Gordon , John Stultz , Kees Cook , "Serge E. Hallyn" , Thomas Gleixner , Arjan van de Ven , Oren Laadan , Ruchi Kandoi , Rom Lemarchand , Todd Kjos , Colin Cross , Nick Kralevich , Dmitry Shmidt , Elliott Hughes , Alexey Dobriyan , Andrew Morton , Linus Torvalds , Sasha Levin Subject: Re: [PATCH 4.20 282/352] fs/proc/base.c: use ns_capable instead of capable for timerslack_ns Message-ID: <20190212084852.GA31657@kroah.com> References: <20190211141846.543045703@linuxfoundation.org> <20190211141904.885459037@linuxfoundation.org> <87tvh9es4x.fsf@xmission.com> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <87tvh9es4x.fsf@xmission.com> User-Agent: Mutt/1.11.3 (2019-02-01) Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Mon, Feb 11, 2019 at 07:02:06PM -0600, Eric W. Biederman wrote: > Greg Kroah-Hartman writes: > > > 4.20-stable review patch. If anyone has any objections, please let me > > know. > > No objection. But I think of this as a feature addition rather than a > fix for something. As a feature that we now allow something we > previously did not does this qualify for a backport to stable? > > It is probably no more harmful in this instance than adding PCI IDs to a > driver. So I am not worried. I am curious the current guidelines > are. > > In most cases a small relaxation of permissions like this requires a lot > of bug fixing as typically code protected by capable(CAP_XXX) has been > written and tested assuming a trusted root user. Those bug fixes are > many times too large for a stable backport. Fair enough, patch is now dropped, thanks for the review. greg k-h