Re: capable()-function

• Next message: Alexander Viro: "Re: [bk/patch] driver model update: device_unregister()"
• Previous message: Joe Thornber: "Re: [PATCH] 2.5 version of device mapper submission"
• In reply to: Tony Glader: "Re: capable()-function"
• Next in thread: Tony Glader: "Re: capable()-function"
• Reply: Tony Glader: "Re: capable()-function"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

* Tony Glader (Tony.Glader@blueberrysolutions.com) wrote:
> On Wed, 9 Oct 2002, Chris Wright wrote:
>
> > > In this case capable() call has been made from a kernel module. I think a
> > The userspace task that called the ioctl() is the one to look at.
>
> ...
>
> > > CapInh: 0000000000000000
> > > CapPrm: 00000000fffffeff
> > > CapEff: 00000000fffffeff
> >
> > Ok, I don't think the capable() check is failing.
>
> So though me too, but now we are getting to the point - capable() check
> fails! How that can be possible?

You could dump something like this before the capable() call:

printk(KERN_DEBUG "%s:(%d) eff: 0x%x\n", current->comm, current->pid,
                                                cap_t(current->cap_effective));
-chris

-- 
Linux Security Modules     http://lsm.immunix.org     http://lsm.bkbits.net
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

• Next message: Alexander Viro: "Re: [bk/patch] driver model update: device_unregister()"
• Previous message: Joe Thornber: "Re: [PATCH] 2.5 version of device mapper submission"
• In reply to: Tony Glader: "Re: capable()-function"
• Next in thread: Tony Glader: "Re: capable()-function"
• Reply: Tony Glader: "Re: capable()-function"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Tue Oct 15 2002 - 22:00:33 EST