lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Date:	Tue, 22 Apr 2014 09:37:36 -0700
From:	Greg Kroah-Hartman <gregkh@...uxfoundation.org>
To:	Rusty Russell <rusty@...tcorp.com.au>
Cc:	linux-kernel@...r.kernel.org,
	Christopher Brannon <chris@...-brannons.com>,
	Samuel Thibault <samuel.thibault@...-lyon.org>
Subject: Re: [PATCH 6/9] drivers/staging/speakup/: avoid world-writable sysfs
 files.

On Tue, Apr 22, 2014 at 01:03:29PM +0930, Rusty Russell wrote:
> In line with practice for module parameters, we're adding a build-time
> check that sysfs files aren't world-writable.

Then why not just use the __ATTR_RO() macro?

> 
> Cc: Christopher Brannon <chris@...-brannons.com>
> Cc: Samuel Thibault <samuel.thibault@...-lyon.org>
> Cc: Greg Kroah-Hartman <gregkh@...uxfoundation.org>
> Signed-off-by: Rusty Russell <rusty@...tcorp.com.au>
> ---
>  drivers/staging/speakup/kobjects.c       | 60 ++++++++++++++++----------------
>  drivers/staging/speakup/speakup_acntpc.c | 14 ++++----
>  drivers/staging/speakup/speakup_acntsa.c | 14 ++++----
>  drivers/staging/speakup/speakup_apollo.c | 16 ++++-----
>  drivers/staging/speakup/speakup_audptr.c | 16 ++++-----
>  drivers/staging/speakup/speakup_bns.c    | 14 ++++----
>  drivers/staging/speakup/speakup_decext.c | 16 ++++-----
>  drivers/staging/speakup/speakup_decpc.c  | 16 ++++-----
>  drivers/staging/speakup/speakup_dectlk.c | 16 ++++-----
>  drivers/staging/speakup/speakup_dtlk.c   | 20 +++++------
>  drivers/staging/speakup/speakup_dummy.c  | 14 ++++----
>  drivers/staging/speakup/speakup_keypc.c  | 10 +++---
>  drivers/staging/speakup/speakup_ltlk.c   | 20 +++++------
>  drivers/staging/speakup/speakup_soft.c   | 22 ++++++------
>  drivers/staging/speakup/speakup_spkout.c | 16 ++++-----
>  drivers/staging/speakup/speakup_txprt.c  | 14 ++++----
>  16 files changed, 149 insertions(+), 149 deletions(-)
> 
> diff --git a/drivers/staging/speakup/kobjects.c b/drivers/staging/speakup/kobjects.c
> index 1ca91f7092b1..c4aa13fc2d13 100644
> --- a/drivers/staging/speakup/kobjects.c
> +++ b/drivers/staging/speakup/kobjects.c
> @@ -853,73 +853,73 @@ static ssize_t message_store(struct kobject *kobj, struct kobj_attribute *attr,
>  static struct kobj_attribute keymap_attribute =
>  	__ATTR(keymap, S_IWUSR|S_IRUGO, keymap_show, keymap_store);
>  static struct kobj_attribute silent_attribute =
> -	__ATTR(silent, S_IWUGO, NULL, silent_store);
> +	__ATTR(silent, S_IWUSR|S_IWGRP, NULL, silent_store);

__ATTR_WO()?

I'd prefer some "standard" permissions for all of these sysfs files,
it's quite confusing otherwise, don't you agree?

thanks

greg k-h
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@...r.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ