[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Re: [dm-devel] [Drbd-dev] [PATCH 2/2 v2] netlink: kill eff_cap from struct netlink_skb_parms

From: Chris Wright <chrisw sous-sol org>
To: Chris Wright <chrisw sous-sol org>, David Miller <davem davemloft net>, linux-fbdev vger kernel org, netdev vger kernel org, linux-security-module vger kernel org, dm-devel redhat com, Evgeniy Polyakov <zbr ioremap net>, kaber trash net, drbd-dev lists linbit com
Subject: Re: [dm-devel] [Drbd-dev] [PATCH 2/2 v2] netlink: kill eff_cap from struct netlink_skb_parms
Date: Thu, 3 Mar 2011 15:53:05 -0800

* Lars Ellenberg (lars ellenberg linbit com) wrote:
> Last time I checked, current() for connector based netlink message
> consumers was the work queue that is used for connector.
> 
> So unless that changed, or my understanding is wrong, current_cap()
> inside cn_queue_wrapper(), respectively the d->callback()
> will not be the userland sender process' capabilities, but the work
> queue capabilities.

Yes, you're right.

> If so, then this change introduces the possibility for normal users to
> send privileged commands to connector based subsystems, even if they
> may not be able to bind() to suitable sockets to receive any replies.
> 
> Am I missing something?

No, thanks for review.  This puts back the async issue.

References:
- [dm-devel] [PATCH 2/2] netlink: kill eff_cap from struct netlink_skb_parms
  - From: Patrick McHardy
- Re: [dm-devel] [PATCH 2/2] netlink: kill eff_cap from struct netlink_skb_parms
  - From: Chris Wright
- Re: [dm-devel] [PATCH 2/2] netlink: kill eff_cap from struct netlink_skb_parms
  - From: David Miller
- [dm-devel] [PATCH 2/2 v2] netlink: kill eff_cap from struct netlink_skb_parms
  - From: Chris Wright
- Re: [dm-devel] [Drbd-dev] [PATCH 2/2 v2] netlink: kill eff_cap from struct netlink_skb_parms
  - From: Lars Ellenberg

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]