This patch series addresses two concerns. Currently when a developer wishes to obtain a security blob from the LSM he/she has to guess at the length of the blob being returned. We modify security_inode_getsecurity to return an appropriately sized buffer populated with the security information and the length of that buffer. This is similar to the approach taken by Al Viro for the security_getprocattr hook. The second concern that this patch set addresses is that vfs_getxattr reads the security xattr using inode_getxattr and then proceeds to clobber it with a subsequent call to the LSM. This is fixed by reordering vfs_getxattr. The series applies on top of 2.6.23 aka git hash bbf25010f1a6b761914430f5fca081ec8c7accd1 - To unsubscribe from this list: send the line "unsubscribe linux-fsdevel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html