Re: [RFC][PATCH 0/2] Correct behavior for listxattr and 'trusted' xattrs

From: Andreas Gruenbacher
Date: Wed Mar 10 2010 - 06:51:22 EST

Next message: Mark Brown: "Re: [PATCH] mfd: MFD_WM831X should depend on GENERIC_HARDIRQS"
Previous message: Magnus Damm: "[PATCH] Driver core: Early platform kernel-doc update"
In reply to: Andreas Gruenbacher: "Re: [RFC][PATCH 0/2] Correct behavior for listxattr and 'trusted' xattrs"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wednesday 03 March 2010 14:02:58 Stephen Smalley wrote:
> Should it be using has_capability_noaudit() rather than capable() so
> that merely calling listxattr() on a file that happens to have trusted
> xattrs does not set PF_SUPERPRIV on the task and does not trigger an
> audit message?

Yes, makes sense. A version of has_capability_noaudit() without an explicit
task parameter, like security_capable(), would be better still.

Thanks,
Andreas
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Mark Brown: "Re: [PATCH] mfd: MFD_WM831X should depend on GENERIC_HARDIRQS"
Previous message: Magnus Damm: "[PATCH] Driver core: Early platform kernel-doc update"
In reply to: Andreas Gruenbacher: "Re: [RFC][PATCH 0/2] Correct behavior for listxattr and 'trusted' xattrs"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]