-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Andrew Morgan wrote: > Serge E. Hallyn wrote: >> (Sorry, I should have ran shorter tests to get these results a little >> quicker...) > >> Unfortunately these can't be moved here. If you have > >> SECURITY=y >> SECURITY_CAPABILITIES=n > >> then commoncap is not compiled, and > >> security/dummy.c wants securebits
I think I'm just going to delete this reference in the code: I can't find a single instance of this value being set to anything other than the default. Linus' and Andrew Morton's trees only reference it as follows: [EMAIL PROTECTED] linux-2.6]$ git-grep securebits master master:include/linux/sched.h:#include <linux/securebits.h> master:include/linux/securebits.h:extern unsigned securebits; master:include/linux/securebits.h: (1 << (X)) & securebits ) master:kernel/capability.c:unsigned securebits = SECUREBITS_DEFAULT; /* systemwimaster:kernel/capability.c:EXPORT_SYMBOL(securebits); That is, other than acquiring its default value, its never set. For now, I'll leave it defined in the capability code so it can, at least, be played with via a module. >> kernel/sysctl.c wants cap_bset. Strange if we're compiling 'without' capabilities enabled... I'll conditionalize it. Cheers Andrew -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.6 (GNU/Linux) iD8DBQFGxywnQheEq9QabfIRAqK5AKCBPWI1xrl3XEyNACZtBn+7vY4DfQCeJMsm HSLGts8UX98PVGftAN9phz0= =Uorp -----END PGP SIGNATURE----- - To unsubscribe from this list: send the line "unsubscribe linux-security-module" in the body of a message to [EMAIL PROTECTED] More majordomo info at http://vger.kernel.org/majordomo-info.html