Re: [patch] file capabilities: Add no_file_caps switch

From: James Morris
Date: Wed Aug 27 2008 - 21:58:13 EST

Next message: David Miller: "Re: sparc build failure"
Previous message: Yinghai Lu: "[PATCH] resource/x86: add sticky resource type"
In reply to: Serge E. Hallyn: "Re: [patch] file capabilities: Add no_file_caps switch"
Next in thread: David Howells: "Re: [patch] file capabilities: Add no_file_caps switch"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, 27 Aug 2008, Serge E. Hallyn wrote:

> Quoting James Morris (jmorris@xxxxxxxxx):
> > On Wed, 27 Aug 2008, David Howells wrote:
> >
> > > (2) Neuter sys_capset(). I've been holding this off for the next merge
> > > window as it isn't a bugfix, unlike (1). Perhaps I should ask James to
> > > push it to Linus. James?
> >
> > Linus only pulled the PF_SUPERPRIV fix once the sys_capset change was
> > removed from the patch. It really does need to be a bugfix at this stage.
>
> Ok, sorry, of course that makes sense. I was just confused about where
> the patch was originally heading.
>
> Would it be appropriate to put the capset neutering patch in your
> security-testing tree, James, or does that feed straight into
> linux-next?

It's already in the next-creds branch, but it could be added to the next
branch (which will be pushed to Linus in the next merge window). Both
branches are in linux-next.

--
James Morris
<jmorris@xxxxxxxxx>
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: David Miller: "Re: sparc build failure"
Previous message: Yinghai Lu: "[PATCH] resource/x86: add sticky resource type"
In reply to: Serge E. Hallyn: "Re: [patch] file capabilities: Add no_file_caps switch"
Next in thread: David Howells: "Re: [patch] file capabilities: Add no_file_caps switch"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]