The cases I'd looked at seemed to mostly involve obsolete hardware or only
allow command submission to SCSI targets, so I wasn't too worried about them -
but, like I said, I've no inherent objection to using CAP_SYS_RAWIO as long as
we modify any cases where userspace really does need that access.
--
Matthew Garrett |
matthew.garr...@nebula.comn�����r��y����b�X��ǧv�^�){.n�+����{����zX����ܨ}���Ơz�&j:+v�������zZ+��+zf���h���~����i���z�
�w���?�����&�)ߢf��^jǫy�m��@A�a���
0��h���i
- Re: [PATCH 01/12] Security: Add CAP_COMPROMISE_... James Morris
- Re: [PATCH 01/12] Security: Add CAP_COMPROMISE_KERNEL Yves-Alexis Perez
- Re: [PATCH 01/12] Security: Add CAP_COMPROMISE_KERNEL H. Peter Anvin
- Re: [PATCH 01/12] Security: Add CAP_COMPROMISE_KERN... H. Peter Anvin
- Re: [PATCH 01/12] Security: Add CAP_COMPROMISE_KERN... Matthew Garrett
- Re: [PATCH 01/12] Security: Add CAP_COMPROMISE_... H. Peter Anvin
- Re: [PATCH 01/12] Security: Add CAP_COMPROM... Matthew Garrett
- Re: [PATCH 01/12] Security: Add CAP_COM... H. Peter Anvin
- Re: [PATCH 01/12] Security: Add CAP_COMPROMISE_KERNEL Matthew Garrett
- Re: [PATCH 01/12] Security: Add CAP_COMPROMISE_KERN... H. Peter Anvin
- Re: [PATCH 01/12] Security: Add CAP_COMPROMISE_KERNEL Matthew Garrett
- Re: [PATCH 01/12] Security: Add CAP_COMPROMISE_KERNEL Matthew Garrett
- Re: [PATCH 01/12] Security: Add CAP_COMPROMISE_KERN... H. Peter Anvin
- Re: [PATCH 01/12] Security: Add CAP_COMPROMISE_... H. Peter Anvin
- Re: [PATCH 01/12] Security: Add CAP_COMPROM... Alex Williamson
- Re: [PATCH 01/12] Security: Add CAP_COM... H. Peter Anvin
- Re: [PATCH 01/12] Security: Add CA... Alex Williamson
- Re: [PATCH 01/12] Security: Add CAP_COMPROMISE_KERNEL Matthew Garrett
