On Thu, 31 May 2012, kosaki.motohiro@xxxxxxxxx wrote:
From: KOSAKI Motohiro<kosaki.motohiro@xxxxxxxxxxxxxx>
commit 72fa5997 (move RLIMIT_NPROC check from set_user() to do_execve_common())
pointed out set*uid() failure can cause a security problem.
Thus, security_task_fix_setuid() potentially has the same issue. Any security
module shouldn't use it. This patch kills it completely.
Luckily, any security module don't use it. then, this patch doesn't make any
userland visible change.
Capabilities uses it.