1 files changed, 3 insertions, 3 deletions
diff --git a/security/commoncap.c b/security/commoncap.c
index 6bf72b175b49..c25e0d27537f 100644
--- a/security/commoncap.c
+++ b/security/commoncap.c
@@ -294,10 +294,10 @@ int cap_capset(struct cred *new,
 *
 * Determine if an inode having a change applied that's marked ATTR_KILL_PRIV
 * affects the security markings on that inode, and if it is, should
- * inode_killpriv() be invoked or the change rejected?
+ * inode_killpriv() be invoked or the change rejected.
 *
- * Returns 0 if granted; +ve if granted, but inode_killpriv() is required; and
+ * Returns 1 if security.capability has a value, meaning inode_killpriv()
- * -ve to deny the change.
+ * is required, 0 otherwise, meaning inode_killpriv() is not required.
 */
 int cap_inode_need_killpriv(struct dentry *dentry)
 {

diff --git a/security/commoncap.c b/security/commoncap.c index 6bf72b175b49..c25e0d27537f 100644 --- a/security/commoncap.c +++ b/security/commoncap.c
@@ -294,10 +294,10 @@ int cap_capset(struct cred *new,
294	*	294	*
295	* Determine if an inode having a change applied that's marked ATTR_KILL_PRIV	295	* Determine if an inode having a change applied that's marked ATTR_KILL_PRIV
296	* affects the security markings on that inode, and if it is, should	296	* affects the security markings on that inode, and if it is, should
297	* inode_killpriv() be invoked or the change rejected?	297	* inode_killpriv() be invoked or the change rejected.
298	*	298	*
299	* Returns 0 if granted; +ve if granted, but inode_killpriv() is required; and	299	* Returns 1 if security.capability has a value, meaning inode_killpriv()
300	* -ve to deny the change.	300	* is required, 0 otherwise, meaning inode_killpriv() is not required.
301	*/	301	*/
302	int cap_inode_need_killpriv(struct dentry *dentry)	302	int cap_inode_need_killpriv(struct dentry *dentry)
303	{	303	{