Subject: Re: How kauth can make meaningful decisions about passthru ioctls
To: None <email@example.com>
From: Elad Efrat <elad@NetBSD.org>
Date: 11/30/2006 15:10:25
Thor Lancelot Simon wrote:
> Sure. We're concerned about what the ioctl being passed-through could
> cause the device to do. Think about what amr(4) would have to do if
> it didn't know how to parse the sub-commands: it'd have to tell the
> listener "it could be any of these: ..." .
> We could, I suppose, order the commands from "safest" to "most dangerous"
> and require that the question indicate the "most dangerous". But what's
> "more dangerous", writing the device data or writing the device
> configuration? I think a similar issue exists even for read.
sounds logical. unless someone objects, I'll come up with a diff.