From mboxrd@z Thu Jan  1 00:00:00 1970
From: Christoph Hellwig <hch@infradead.org>
Subject: Re: [PATCH] backout the xattr override access checks flag
Date: Fri, 21 Feb 2003 15:58:34 +0000
Sender: linux-fsdevel-owner@vger.kernel.org
Message-ID: <20030221155834.B32594@infradead.org>
References: <A1C30C1C0FB8D5118D810004754C0375966728@hsl-lj3x.hermes.si>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Cc: Andreas Gruenbacher <agruen@suse.de>,
	Christoph Hellwig <hch@sgi.com>, linux-fsdevel@vger.kernel.org,
	torvalds@transmeta.com
Return-path: <linux-fsdevel-owner@vger.kernel.org>
To: Luka Renko <luka.renko@hermes.si>
Content-Disposition: inline
In-Reply-To: <A1C30C1C0FB8D5118D810004754C0375966728@hsl-lj3x.hermes.si>; from luka.renko@hermes.si on Fri, Feb 21, 2003 at 01:50:33PM +0100
List-Id: linux-fsdevel.vger.kernel.org

On Fri, Feb 21, 2003 at 01:50:33PM +0100, Luka Renko wrote:
> I would agree with Andreas that temporarily raising capabilities for process
> by kernel module is probably not a good thing. I think having the flag (that
> cannot be passed from user space) is better.

So could you please explain why this is better in your eyes? 

> Any HSM kernel module is potential user of this. The project I am working is
> currently doing capability/permission modifications to allow writing EAs in
> some cases.

SGI's dmapi implementation doesn't need it.. (it uses the proper credentials
passing in XFS instead, something we should have at the VFS level but
unfortunately 2.5 once again didn't get this)