Re: [RFC PATCH 03/14] keyctl: check capabilities against key's user_ns

From: David Howells
Date: Wed Jul 13 2011 - 12:04:23 EST


Serge Hallyn <serge@xxxxxxxxxx> wrote:

> From: Serge E. Hallyn <serge.hallyn@xxxxxxxxxxxxx>
>
> ATM, task should only be able to get his own user_ns's keys
> anyway, so nsown_capable should also work, but there is no
> advantage to doing that, while using key's user_ns is clearer.
>
> changelog: jun 6:
> compile fix: keyctl.c (key_user, not key has user_ns)
>
> Signed-off-by: Serge E. Hallyn <serge.hallyn@xxxxxxxxxxxxx>
> Cc: David Howells <dhowells@xxxxxxxxxx>
> Cc: Eric W. Biederman <ebiederm@xxxxxxxxxxxx>

Acked-by: David Howells <dhowells@xxxxxxxxxx>
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/