-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Serge E. Hallyn wrote: >> For suid, this is handled by remove_suid -> notify_change with >> ATTR_KILL_SUID/SGID. No equivalent for security xattrs presently. > > I assume we're all agreed that we do in fact want to treat > security.capability xattrs like suid (and not like security.selinux > xattrs)?
Yes. > Andrew, have you started a patch to fix that already? No. I'll not be able to look at this again until late tonight PST (maybe). Cheers Andrew -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (Darwin) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFGnpL1+bHCR3gb8jsRAi7DAKCKlxV1hx5jY39wchHE3uX2OMtJMACgsJ+t tSF6n6DXa24PoObt3rDNYus= =wJ+e -----END PGP SIGNATURE----- - To unsubscribe from this list: send the line "unsubscribe linux-security-module" in the body of a message to [EMAIL PROTECTED] More majordomo info at http://vger.kernel.org/majordomo-info.html