-
由 Kees Cook 提交于
This reverts commit 68c4a4f8, with various conflict clean-ups. The capability check required too much privilege compared to simple DAC controls. A system builder was forced to have crash handler processes run with CAP_SYSLOG which would give it the ability to read (and wipe) the _current_ dmesg, which is much more access than being given access only to the historical log stored in pstorefs. With the prior commit to make the root directory 0750, the files are protected by default but a system builder can now opt to give access to a specific group (via chgrp on the pstorefs root directory) without being forced to also give away CAP_SYSLOG. Suggested-by: NNick Kralevich <nnk@google.com> Signed-off-by: NKees Cook <keescook@chromium.org> Reviewed-by: NPetr Mladek <pmladek@suse.cz> Reviewed-by: NSergey Senozhatsky <sergey.senozhatsky@gmail.com>
c71b02e4