Received: by 2002:a05:7412:b995:b0:f9:9502:5bb8 with SMTP id it21csp7813459rdb; Thu, 4 Jan 2024 08:27:11 -0800 (PST) X-Google-Smtp-Source: AGHT+IHDo254xfHfc7/irQKaeN6sxdDcsHwSPgeNsJ2JFnKUmLuWIfzajUz/7VSIrgFhqMKzFHY3 X-Received: by 2002:a17:906:eec7:b0:a28:9b8:6d59 with SMTP id wu7-20020a170906eec700b00a2809b86d59mr412579ejb.160.1704385631643; Thu, 04 Jan 2024 08:27:11 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1704385631; cv=none; d=google.com; s=arc-20160816; b=YcLo6nO1G6heAwiGkLK8rGlAErEne2uq591hok5yzWcgXk5Yowi2z3Bl9QSQ+bDv3+ zc+qlX85OR6JfS/fmx63DQExSfLKiS8O4FxHyS2J2wW7rm8j65Q8L3gPmGBNUQDYwLG8 oe4nUK3GS3TVWxQocAV8ZTvxmy9p83bq577JAPQ6z4z2PajxsWod4e/UiO9IDWcL+llf XKdy4aNiE1XOG1Hkgir4CuQta1ZBye/RGNQs1seiqyQauew1O9IJ0q5K/5trEd2bRBHv lwY7+I5ujtZabdBpty0dgebPsLeMOdovaKrtIcPD+9Y4mjGGkkU5RlpFE7L+x8qoVGrK z1HA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=content-transfer-encoding:mime-version:list-unsubscribe :list-subscribe:list-id:precedence:references:in-reply-to:message-id :subject:cc:to:from:date; bh=RxkgWcynOHSjpuMBmJWlBXgMkQj0jNyIzNk96T1ctcQ=; fh=anfUAZN7rb2L5RocMKWRm8aMrUWUl2clXlemw9K99wA=; b=mxz1d7iWTatKFJF9fBLul7hvJ9s6KDIgE27tNTNNYykEL8UVPkDu7AYkQx1YY+L8Uk 3tcdGXG3yg4nfmdR9rhlEoCd3THLAsN7EyfMdQDNggk6yAJ+g28zqDSJvbJLdBeutbaW r+Yz24nngzYfakoSDT1a+Yw0IPjMmpZkBhPE9K3yoB+TkbEJ3j+W2EGy2V39F/8YUy9C JZ5VTe/60hniJkX2lzNLjuLyqARTBGgFBbPKGUb5gAsjlDxr5nK9ar6U4d+x2JUnyLFR aRXtHdowqa/aC/OuZYOX5ms3Xb43qDH/LqehUezFpBVv1IDN5+f4WYVjFwgT21Yn0W1J tUgQ== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: domain of linux-kernel+bounces-16922-linux.lists.archive=gmail.com@vger.kernel.org designates 2604:1380:4601:e00::3 as permitted sender) smtp.mailfrom="linux-kernel+bounces-16922-linux.lists.archive=gmail.com@vger.kernel.org" Return-Path: Received: from am.mirrors.kernel.org (am.mirrors.kernel.org. [2604:1380:4601:e00::3]) by mx.google.com with ESMTPS id c9-20020a1709060fc900b00a26bd657038si11076179ejk.51.2024.01.04.08.27.11 for (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Thu, 04 Jan 2024 08:27:11 -0800 (PST) Received-SPF: pass (google.com: domain of linux-kernel+bounces-16922-linux.lists.archive=gmail.com@vger.kernel.org designates 2604:1380:4601:e00::3 as permitted sender) client-ip=2604:1380:4601:e00::3; Authentication-Results: mx.google.com; spf=pass (google.com: domain of linux-kernel+bounces-16922-linux.lists.archive=gmail.com@vger.kernel.org designates 2604:1380:4601:e00::3 as permitted sender) smtp.mailfrom="linux-kernel+bounces-16922-linux.lists.archive=gmail.com@vger.kernel.org" Received: from smtp.subspace.kernel.org (wormhole.subspace.kernel.org [52.25.139.140]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by am.mirrors.kernel.org (Postfix) with ESMTPS id 680201F21304 for ; Thu, 4 Jan 2024 16:27:11 +0000 (UTC) Received: from localhost.localdomain (localhost.localdomain [127.0.0.1]) by smtp.subspace.kernel.org (Postfix) with ESMTP id 8F4B424B27; Thu, 4 Jan 2024 16:26:49 +0000 (UTC) X-Original-To: linux-kernel@vger.kernel.org Received: from smtp.kernel.org (aws-us-west-2-korg-mail-1.web.codeaurora.org [10.30.226.201]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id 1EF21250E9; Thu, 4 Jan 2024 16:26:48 +0000 (UTC) Received: by smtp.kernel.org (Postfix) with ESMTPSA id 7B34AC433C7; Thu, 4 Jan 2024 16:26:47 +0000 (UTC) Date: Thu, 4 Jan 2024 11:27:52 -0500 From: Steven Rostedt To: Petr Mladek Cc: Greg KH , =?UTF-8?B?5a2f5pWs5ae/?= , john.ogness@linutronix.de, senozhatsky@chromium.org, keescook@chromium.org, tony.luck@intel.com, gpiccoli@igalia.com, linux-hardening@vger.kernel.org, linux-kernel@vger.kernel.org, Linus Torvalds Subject: Re: Suggestion for Capability Check Refinement in check_syslog_permissions() Message-ID: <20240104112752.120cb566@gandalf.local.home> In-Reply-To: References: <1ee10aa6.d064.18ccdb23971.Coremail.mengjingzi@iie.ac.cn> <2024010306-tweezers-skinhead-083e@gregkh> X-Mailer: Claws Mail 3.19.1 (GTK+ 2.24.33; x86_64-pc-linux-gnu) Precedence: bulk X-Mailing-List: linux-kernel@vger.kernel.org List-Id: List-Subscribe: List-Unsubscribe: MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit On Thu, 4 Jan 2024 10:43:53 +0100 Petr Mladek wrote: > And CAP_SYS_ADMIN has really been deprecated last 13 years, see the > commit ee24aebffb75a7f940cf ("cap_syslog: accept CAP_SYS_ADMIN for now"). > > Maybe, it is really time to remove it. Perhaps what we should do is to remove it in a simple change that can be easily reverted if someone complains. The point is, Linus always says "Don't break user space", but he has even said that we have broken user API before, but as long as no user space breaks, it's OK. It's the "tree falls in the forest" analogy. If we break user space API, but no user space application uses it, did it really break? If nothing is using CAP_SYS_ADMIN why keep it? If we remove it, and nobody complains, it means that nothing broke. If we remove it and someone complains, then we know it's still needed and we revert the removal just like Linus would do with any other commit that broke user space. -- Steve