Received: by 2002:a25:ef43:0:0:0:0:0 with SMTP id w3csp960235ybm;
        Wed, 27 May 2020 12:14:06 -0700 (PDT)
X-Google-Smtp-Source: ABdhPJwjnlM7O7/1BvU78TByE6VoxbUUVS0zWqK8y109xNf+vv0is8mW8iHykIjZW0Tv0tFNpTRg
X-Received: by 2002:a17:906:9254:: with SMTP id c20mr3955670ejx.540.1590606846093;
        Wed, 27 May 2020 12:14:06 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1590606846; cv=none;
        d=google.com; s=arc-20160816;
        b=NYD2sBuf/oP+gtlMUQbqtTyEk++uwb/3x6LN3sRvCdAYD4eCoXR1OO7I1WZKIAC/9t
         YG4HhtkMiumyfa3wphxUpLPRGnd3vOAfFnDFTDo8vdyDZqVvatzhdI8VRZpopH6OE1Tj
         OkFzHGzDWFT7QaBwxYkGnqWrCV06EEPMPzLb7GfATXi0MVIgKHJ8lZ6C4Ge+yTPxYNl+
         p2K9LrPP9JFG6XEaj7oh0rYUUcqCru4n/x/yWSLEmDTm9xSCDwisf1rH3oe4M1s8DBqO
         z9I+bNkeOdyMn3wyn/PN6NhO0r5/Wh7B68q8HfK9tyFzDpMEkPnZHvsYjgEc+kTWSSAM
         4NPA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:mime-version:content-transfer-encoding
         :content-language:accept-language:in-reply-to:references:message-id
         :date:thread-index:thread-topic:subject:cc:to:from;
        bh=cPQVxr0Gv8i3sv36q/ODVf76Goz5ANDAtuPvCuv3yKA=;
        b=Pg63tiJiPjMHeSHzkhSoO3zXpdVhD4ADxcs7jTy3b3+Be06BAv9ePPOwdaXxu5hMON
         cX0LhezHBU4BnR2OPQOhSeYwP59PbzImx8m2Ktw46R6TjsO7IDvVa557O1vnUbYT599V
         IKf1jeBQ8X06GlOQhJ28wq1TNZjfypgJ3jrnFl1SekNqhwZProNgsOaPSX62PPeIWY7e
         MEq4cHF5/Se8/RRXNKO6ZW+97fO7oqA78af42kpJIWsDzZH5ZzRcN+fRDldNFTKB0dpk
         TO4Gi3Yz5YxJbsXGMGFuyt5f9XpIcK39CYyRHzMTBqir8K9JzcJQ6lmIRmqYMhpn9uN2
         SAaA==
ARC-Authentication-Results: i=1; mx.google.com;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18])
        by mx.google.com with ESMTP id bq16si2589384ejb.322.2020.05.27.12.13.43;
        Wed, 27 May 2020 12:14:06 -0700 (PDT)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18;
Authentication-Results: mx.google.com;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S2391435AbgE0QpD (ORCPT <rfc822;ttoukan.linux@gmail.com>
        + 98 others); Wed, 27 May 2020 12:45:03 -0400
Received: from mxo1.dft.dmz.twosigma.com ([208.77.212.183]:39683 "EHLO
        mxo1.dft.dmz.twosigma.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S2387952AbgE0QpD (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Wed, 27 May 2020 12:45:03 -0400
X-Greylist: delayed 450 seconds by postgrey-1.27 at vger.kernel.org; Wed, 27 May 2020 12:45:02 EDT
Received: from localhost (localhost [127.0.0.1])
        by mxo1.dft.dmz.twosigma.com (Postfix) with ESMTP id 49XGhW4ZTxz7t8v;
        Wed, 27 May 2020 16:37:31 +0000 (UTC)
X-Virus-Scanned: Debian amavisd-new at twosigma.com
Received: from mxo1.dft.dmz.twosigma.com ([127.0.0.1])
        by localhost (mxo1.dft.dmz.twosigma.com [127.0.0.1]) (amavisd-new, port 10024)
        with ESMTP id HfevtT7Awm11; Wed, 27 May 2020 16:37:31 +0000 (UTC)
Received: from exmbdft5.ad.twosigma.com (exmbdft5.ad.twosigma.com [172.22.1.56])
        (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits))
        (No client certificate requested)
        by mxo1.dft.dmz.twosigma.com (Postfix) with ESMTPS id 49XGhW3mXNz3wZB;
        Wed, 27 May 2020 16:37:31 +0000 (UTC)
Received: from EXMBDFT11.ad.twosigma.com (172.23.162.14) by
 exmbdft5.ad.twosigma.com (172.22.1.56) with Microsoft SMTP Server (TLS) id
 15.0.1497.2; Wed, 27 May 2020 16:37:31 +0000
Received: from EXMBDFT11.ad.twosigma.com ([fe80::8d66:2326:5416:86a9]) by
 EXMBDFT11.ad.twosigma.com ([fe80::8d66:2326:5416:86a9%19]) with mapi id
 15.00.1497.000; Wed, 27 May 2020 16:37:31 +0000
From:   Nicolas Viennot <Nicolas.Viennot@twosigma.com>
To:     Casey Schaufler <casey@schaufler-ca.com>,
        Adrian Reber <areber@redhat.com>
CC:     Christian Brauner <christian.brauner@ubuntu.com>,
        Eric Biederman <ebiederm@xmission.com>,
        Pavel Emelyanov <ovzxemul@gmail.com>,
        Oleg Nesterov <oleg@redhat.com>,
        Dmitry Safonov <0x7f454c46@gmail.com>,
        Andrei Vagin <avagin@gmail.com>,
        =?utf-8?B?TWljaGHFgiBDxYJhcGnFhHNraQ==?= <mclapinski@google.com>,
        Kamil Yurtsever <kyurtsever@google.com>,
        "Dirk Petersen" <dipeit@gmail.com>,
        Christine Flood <chf@redhat.com>,
        Mike Rapoport <rppt@linux.ibm.com>,
        Radostin Stoyanov <rstoyanov1@gmail.com>,
        "Cyrill Gorcunov" <gorcunov@openvz.org>,
        Serge Hallyn <serge@hallyn.com>,
        "Stephen Smalley" <stephen.smalley.work@gmail.com>,
        Sargun Dhillon <sargun@sargun.me>,
        Arnd Bergmann <arnd@arndb.de>,
        Aaron Goidel <acgoide@tycho.nsa.gov>,
        "linux-security-module@vger.kernel.org" 
        <linux-security-module@vger.kernel.org>,
        "linux-kernel@vger.kernel.org" <linux-kernel@vger.kernel.org>,
        "selinux@vger.kernel.org" <selinux@vger.kernel.org>,
        Eric Paris <eparis@parisplace.org>,
        Jann Horn <jannh@google.com>
Subject: RE: [PATCH] capabilities: Introduce CAP_RESTORE
Thread-Topic: [PATCH] capabilities: Introduce CAP_RESTORE
Thread-Index: AQHWL/2VaDM8D7CUOUK8NWcR6t6ZmKi0T3WAgAQnIICAALWDAIACzv0AgAAj3gCAAAp/wA==
Date:   Wed, 27 May 2020 16:37:31 +0000
Message-ID: <ac167440b8b64f02a034dd94687b8aee@EXMBDFT11.ad.twosigma.com>
References: <20200522055350.806609-1-areber@redhat.com>
 <dc86dffb-c7f8-15bb-db4e-be135da650cc@schaufler-ca.com>
 <20200525080541.GF104922@dcbz.redhat.com>
 <a75f3f71-66cf-e615-2cd5-86ac65a3bbdc@schaufler-ca.com>
 <20200527134842.GA250149@dcbz.redhat.com>
 <f43921ac-2e55-7d9d-406a-d0f4cfd8ff93@schaufler-ca.com>
In-Reply-To: <f43921ac-2e55-7d9d-406a-d0f4cfd8ff93@schaufler-ca.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: 
X-MS-TNEF-Correlator: 
x-ms-exchange-transport-fromentityheader: Hosted
x-originating-ip: [192.168.118.183]
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
Sender: linux-kernel-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org
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