From fce6a5f8303cd891efd8bbfef861e357dc90e88e Mon Sep 17 00:00:00 2001
From: Patrick Schleizer <adrelanos@whonix.org>
Date: Tue, 14 Jan 2025 03:51:43 -0500
Subject: [PATCH] comment

---
 .../permission-hardener.d/25_default_whitelist_qubes.conf  | 7 +++++--
 1 file changed, 5 insertions(+), 2 deletions(-)

diff --git a/usr/lib/permission-hardener.d/25_default_whitelist_qubes.conf b/usr/lib/permission-hardener.d/25_default_whitelist_qubes.conf
index d175670..4fefe4f 100644
--- a/usr/lib/permission-hardener.d/25_default_whitelist_qubes.conf
+++ b/usr/lib/permission-hardener.d/25_default_whitelist_qubes.conf
@@ -13,6 +13,9 @@
 ## https://github.com/QubesOS/qubes-issues/issues/8633
 ##
 ## match both:
-#/usr/bin/qfile-unpacker
-#/usr/lib/qubes/qfile-unpacker whitelist
+## - /usr/lib/qubes/qfile-unpacker whitelist
+##   - Not bit-for-bit identical to /usr/lib/qubes/qfile-unpacker.
+##   - Stripping SUID from this does *not* break file copying.
+##   - TODO: further reserach required on its purpose
+## - /usr/bin/qfile-unpacker
 qfile-unpacker matchwhitelist