Received: by 2002:a05:7412:8d10:b0:f3:1519:9f41 with SMTP id bj16csp575885rdb; Tue, 5 Dec 2023 13:26:24 -0800 (PST) X-Google-Smtp-Source: AGHT+IEpwn/CoOkICR4/FDvo3WHfBWZoKGtcIVyy47+U3S4zZywVHIJWx5huUTfEaLXADz1Qy9SQ X-Received: by 2002:a17:902:7e4c:b0:1d0:69d9:f391 with SMTP id a12-20020a1709027e4c00b001d069d9f391mr3942887pln.40.1701811584440; Tue, 05 Dec 2023 13:26:24 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1701811584; cv=none; d=google.com; s=arc-20160816; b=yWTCykMG9FND69TzjpOzU5SiZP+QroEIloTR4as/4DmhZkXwotH2Ynun6TnfO6QOeM TrjEGvvBJ1n+MmtAjSFWPXU1uJ720PcnTmiD3YmQIlp8DvcePHLoLvcmuzRDaeCuMpbL uWjAngNGlDvdJJoIdO6Vr+EolHbQo1vGSjMMv2ZJ9bKM5em2kZxVWzFomJZOeIBkP/pr ooccaQPs9coBrxMgWtb/DoPqfbBzMr4NhsYhYHUKlHTkfS9JYCpp5++AtuzigYsLvZUL 2kM1b9lXItZOp9IOr5gfD22pZErJB+89GAbOZbh6bxLfC6at4x4+Jwjy1Ck6w9qbwaHY 3SFg== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:in-reply-to:references:subject:cc:to:from :message-id:date:dkim-signature; bh=JqyDFnCiC9C9iaP1KCSgmfjfaCqCGpifT7WUKn8rGrk=; fh=/6XIXZIcpk1lyQeZ/vA8ozslt1yFevT5u3RqFzo/R+M=; b=E/Oxx6idfdcUlgnlpde9bBvD1Zvb8tp5ghpushNNWIr7a0+dWqaACNlpyfG08xivG+ p+feM5foaSEyXXYT1ZFFCZihatgLUe+NkZLZG/81c1+4IhcO3CtbNhD+GvS7yWgXcBHJ NXDmAQn+Y3fGz34SNttBdhg8mbSKqYhjTpd/S82CLxESLZq3zuTH462tclVerVo+ocnX /L29lnIGL7yJjyH+5ljmykM0DbV9FX2IfSK+kcUo8LDig8WfxMwEq5Ta2ynZ7k5IiyYo bNgWZrypkxsqXravu+uyIjuAHd5pcbNQWosf8qVkklZBXM1+i6Sj4eKN6xqOl9ukB9Ua 38KA== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@paul-moore.com header.s=google header.b=b0PBwmWR; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.33 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=paul-moore.com Return-Path: Received: from lipwig.vger.email (lipwig.vger.email. [23.128.96.33]) by mx.google.com with ESMTPS id f10-20020a170902e98a00b001d0a0ee28e0si3952579plb.288.2023.12.05.13.26.24 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Tue, 05 Dec 2023 13:26:24 -0800 (PST) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.33 as permitted sender) client-ip=23.128.96.33; Authentication-Results: mx.google.com; dkim=pass header.i=@paul-moore.com header.s=google header.b=b0PBwmWR; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.33 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=paul-moore.com Received: from out1.vger.email (depot.vger.email [IPv6:2620:137:e000::3:0]) by lipwig.vger.email (Postfix) with ESMTP id 8CD49807C74B; Tue, 5 Dec 2023 13:26:05 -0800 (PST) X-Virus-Status: Clean X-Virus-Scanned: clamav-milter 0.103.11 at lipwig.vger.email Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1345798AbjLEVZ2 (ORCPT + 99 others); Tue, 5 Dec 2023 16:25:28 -0500 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:34938 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1345726AbjLEVZZ (ORCPT ); Tue, 5 Dec 2023 16:25:25 -0500 Received: from mail-qv1-xf2a.google.com (mail-qv1-xf2a.google.com [IPv6:2607:f8b0:4864:20::f2a]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 7939FD41 for ; Tue, 5 Dec 2023 13:25:30 -0800 (PST) Received: by mail-qv1-xf2a.google.com with SMTP id 6a1803df08f44-67adc37b797so6975496d6.1 for ; Tue, 05 Dec 2023 13:25:30 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=paul-moore.com; s=google; t=1701811529; x=1702416329; darn=vger.kernel.org; h=in-reply-to:references:subject:cc:to:from:message-id:date:from:to :cc:subject:date:message-id:reply-to; bh=JqyDFnCiC9C9iaP1KCSgmfjfaCqCGpifT7WUKn8rGrk=; b=b0PBwmWRMGvYvkJoisONmNJ+3T+kkZQqj0m4xMPH8H4VUzuQuonEf/1qKMSlGcFODG xJ+T43gtLkRJgKMc86OTz+SAPB3wbKOJ9/Bnygiz1YyRsO1HljWY7NUgPjPS6nKO/0bP 3UPjHn/vbK2xLjkYQZ4dctCMZCc1gaxE+MMH+xygPjyvPaIipzxqQ3QlLbGsMxlu9ELT cNx57Om0Erb6BkOChBEGoOacngBYq9Zv3RzZJR2+cb7YCK1XEzbU2pOM7feYRz4srtJr h59hSsZSVVl33yEDvFQi3BIIHFyrzJROvUYLH4T71aQVZlcadBtRPftckPnrtbDCkR7K mrBg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1701811529; x=1702416329; h=in-reply-to:references:subject:cc:to:from:message-id:date :x-gm-message-state:from:to:cc:subject:date:message-id:reply-to; bh=JqyDFnCiC9C9iaP1KCSgmfjfaCqCGpifT7WUKn8rGrk=; b=tOb/oYZU7ACrsBq1HX4/4DjMwkn+RanrnmuMfn0VYZAYo0AFPJ1K2mfFiIswLbdMqB 9wfY/HrDAMLiTiVSOVU9AP6PchKhzGLZVD4YjOO33TZqHV7V+nUPW+HeaI9CEUOFOG/M gU3B6X/dtu1xUSDPFPcsZxe6mK5hLGAPoN2+idcymBQgJDClc8QcVggMywYuZdMnfsQz r+DyiZp9wEJxJWWv0V33NrLMLbbUStPt/idPGeTui+cYMb2qGU7IDOoN2PtnJt4SAg+p J+JiiUm+dyNX123LUtrTONDbRtn9jd5vvMcPeWNinRIV/uioS+Bw9OeAjDqgOi5740ES 78NQ== X-Gm-Message-State: AOJu0Yx9vuQrrXnBGGERiXhpvTpsYE/KdLHhschROjI06gPSHWUSHrm5 JXmIQ9a+FyFzFus+cx237Z+e X-Received: by 2002:a0c:fccf:0:b0:679:f5c8:2462 with SMTP id i15-20020a0cfccf000000b00679f5c82462mr1507275qvq.14.1701811529555; Tue, 05 Dec 2023 13:25:29 -0800 (PST) Received: from localhost ([70.22.175.108]) by smtp.gmail.com with ESMTPSA id c7-20020a0ce147000000b0067ae01ab283sm315639qvl.36.2023.12.05.13.25.29 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Tue, 05 Dec 2023 13:25:29 -0800 (PST) Date: Tue, 05 Dec 2023 16:25:28 -0500 Message-ID: <77e8575a68e862c5c0e64803bf2582b5@paul-moore.com> From: Paul Moore To: "Seth Forshee (DigitalOcean)" , Christian Brauner , Serge Hallyn , Eric Paris , James Morris , Alexander Viro , Miklos Szeredi , Amir Goldstein Cc: linux-kernel@vger.kernel.org, linux-fsdevel@vger.kernel.org, linux-security-module@vger.kernel.org, audit@vger.kernel.org, linux-unionfs@vger.kernel.org, "Seth Forshee (DigitalOcean)" Subject: Re: [PATCH 14/16] commoncap: remove cap_inode_getsecurity() References: <20231129-idmap-fscap-refactor-v1-14-da5a26058a5b@kernel.org> In-Reply-To: <20231129-idmap-fscap-refactor-v1-14-da5a26058a5b@kernel.org> X-Spam-Status: No, score=-0.9 required=5.0 tests=DKIM_SIGNED,DKIM_VALID, DKIM_VALID_AU,HEADER_FROM_DIFFERENT_DOMAINS,MAILING_LIST_MULTI, SPF_HELO_NONE,SPF_PASS,T_SCC_BODY_TEXT_LINE autolearn=unavailable autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on lipwig.vger.email Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org X-Greylist: Sender passed SPF test, not delayed by milter-greylist-4.6.4 (lipwig.vger.email [0.0.0.0]); Tue, 05 Dec 2023 13:26:05 -0800 (PST) On Nov 29, 2023 "Seth Forshee (DigitalOcean)" wrote: > > Reading of fscaps xattrs is now done via vfs_get_fscaps(), so there is > no longer any need to do it from security_inode_getsecurity(). Remove > cap_inode_getsecurity() and its associated helpers which are now unused. > > We don't allow reading capabilities xattrs this way anyomre, so remove > the handler and associated helpers. > > Signed-off-by: Seth Forshee (DigitalOcean) > --- > include/linux/security.h | 5 +- > security/commoncap.c | 132 ----------------------------------------------- > 2 files changed, 1 insertion(+), 136 deletions(-) Once again, you should get Serge's ACK on the commoncap.c stuff, but no objections from a LSM perspective. Acked-by: Paul Moore (LSM) -- paul-moore.com