Re: PATCH: cdrecord: avoiding scsi device numbering for ide devices

From: Alan Cox
Date: Sun Aug 22 2004 - 12:27:06 EST

Next message: Alan Cox: "Re: PROBLEM: Promise Fast Track SX6000 i2o driver."
Previous message: Christer Weinigel: "Re: PATCH: cdrecord: avoiding scsi device numbering for ide devices"
In reply to: Christer Weinigel: "Re: PATCH: cdrecord: avoiding scsi device numbering for ide devices"
Next in thread: Christer Weinigel: "Re: PATCH: cdrecord: avoiding scsi device numbering for ide devices"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Sul, 2004-08-22 at 17:33, Christer Weinigel wrote:
> /me keeping to the bad habit of following up to myself
>
> Regarding the current 2.6.8 kernel, wouldn't it be a better idea to
> move the CAP_SYS_RAWIO check to open time instead of when the ioctl is
> called? This would require a new flag somewhere in the file structure
> I suppose, e.g. file->f_mode & FMODE_RAWIO.

This leads to all sorts of bugs where descriptors owned by one process
are given to another less priviledged one. In the networking world
similar logic led to holes because rsh for example gave root opened fd's
to users.

Alan

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Alan Cox: "Re: PROBLEM: Promise Fast Track SX6000 i2o driver."
Previous message: Christer Weinigel: "Re: PATCH: cdrecord: avoiding scsi device numbering for ide devices"
In reply to: Christer Weinigel: "Re: PATCH: cdrecord: avoiding scsi device numbering for ide devices"
Next in thread: Christer Weinigel: "Re: PATCH: cdrecord: avoiding scsi device numbering for ide devices"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]