d/freebsd-skq
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Switch prison check from PROV_DRIVER to PRIV_KMEM_WRITE (like /dev/mem).

Browse Source 
Access to the dri device gives effectively access to the entire memory of the machine (you can program
the graphic card to do DMA).

For current/stable/release this is a NOP, as access to memory is not allowed in a jail. This puts the dri
device into the same (in)security class than /dev/mem for future use.

Discussed with:		anholt(?) several years ago
Sponsored by:		Hackathon Essen 2017
This commit is contained in:
netchild 2017-07-09 06:50:15 +00:00
parent c1ea951407
commit 551d519496
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
sys/dev/drm/drmP.h
View File

@ -220,7 +220,7 @@ enum {
#define PAGE_ALIGN(addr) round_page(addr)
/* DRM_SUSER returns true if the user is superuser */
#define DRM_SUSER(p) (priv_check(p, PRIV_DRIVER) == 0)
#define DRM_SUSER(p) (priv_check(p, PRIV_KMEM_WRITE) == 0)
#define DRM_AGP_FIND_DEVICE() agp_find_device()
#define DRM_MTRR_WC MDF_WRITECOMBINE
#define jiffies ticks