diff options
| author | Cyrill Gorcunov <[email protected]> | 2012-03-15 22:17:10 +0000 |
|---|---|---|
| committer | Linus Torvalds <[email protected]> | 2012-03-16 00:03:03 +0000 |
| commit | 79f0713d403c800db9d89134e2fd7f846e68d6ee (patch) | |
| tree | 0c59c69742d70080f08d3c42febdf51b8db236ad /fs/jbd/commit.c | |
| parent | rapidio/tsi721: fix bug in register offset definitions (diff) | |
| download | kernel-79f0713d403c800db9d89134e2fd7f846e68d6ee.tar.gz kernel-79f0713d403c800db9d89134e2fd7f846e68d6ee.zip | |
prctl: use CAP_SYS_RESOURCE for PR_SET_MM option
CAP_SYS_ADMIN is already overloaded left and right, so to have more
fine-grained access control use CAP_SYS_RESOURCE here.
The CAP_SYS_RESOUCE is chosen because this prctl option allows a current
process to adjust some fields of memory map descriptor which rather
represents what the process owns: pointers to code, data, stack
segments, command line, auxiliary vector data and etc.
Suggested-by: Michael Kerrisk <[email protected]>
Acked-by: Kees Cook <[email protected]>
Acked-by: Michael Kerrisk <[email protected]>
Cc: Pavel Emelyanov <[email protected]>
Cc: Tejun Heo <[email protected]>
Cc: Oleg Nesterov <[email protected]>
Cc: Paul Bolle <[email protected]>
Cc: KOSAKI Motohiro <[email protected]>
Signed-off-by: Cyrill Gorcunov <[email protected]>
Signed-off-by: Andrew Morton <[email protected]>
Signed-off-by: Linus Torvalds <[email protected]>
Diffstat (limited to 'fs/jbd/commit.c')
0 files changed, 0 insertions, 0 deletions