Re: [PATCH] userns: Replace netlink uses of cap_raised withcapable.

From: James Morris
Date: Wed Apr 04 2012 - 00:09:27 EST

Next message: Amit Kachhap: "Re: [linux-pm] [PATCH 1/4] thermal: Add a new trip type to usecooling device instance number"
Previous message: Stephen Rothwell: "linux-next: Tree for Apr 4"
In reply to: Andrew G. Morgan: "Re: [PATCH] userns: Replace netlink uses of cap_raised with capable."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, 3 Apr 2012, Eric W. Biederman wrote:

> In the initial user_namespace the only difference between between
> cap_raised(current_cap(), CAP_SYS_ADMIN) and capable(CAP_SYS_ADMIN)
> are a few sanity checks and the fact that capable(CAP_SYS_ADMIN)
> sets PF_SUPERPRIV if we use the capability.
>
> Since we are going to be using root privilege setting PF_SUPERPRIV
> seems the right thing to do.

Agreed.

Reviewed-by: James Morris <james.l.morris@xxxxxxxxxx>

- James
--
James Morris
<jmorris@xxxxxxxxx>
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Amit Kachhap: "Re: [linux-pm] [PATCH 1/4] thermal: Add a new trip type to usecooling device instance number"
Previous message: Stephen Rothwell: "linux-next: Tree for Apr 4"
In reply to: Andrew G. Morgan: "Re: [PATCH] userns: Replace netlink uses of cap_raised with capable."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]