cap_inode_need_killpriv returns 1 if security.capability exists, 0 otherwise. Fix the description of the return value to reflect this.
Signed-off-by: Stefan Berger <[email protected]> --- security/commoncap.c | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-) diff --git a/security/commoncap.c b/security/commoncap.c index 7abebd7..92931f8 100644 --- a/security/commoncap.c +++ b/security/commoncap.c @@ -302,8 +302,7 @@ static inline void bprm_clear_caps(struct linux_binprm *bprm) * affects the security markings on that inode, and if it is, should * inode_killpriv() be invoked or the change rejected? * - * Returns 0 if granted; +ve if granted, but inode_killpriv() is required; and - * -ve to deny the change. + * Returns 1 if security.capability has a value, 0 otherwise. */ int cap_inode_need_killpriv(struct dentry *dentry) { -- 2.7.4
