block: fine-granular CAP_SYS_ADMIN for Persistent Reservation (9a72a024) · Commits · Mirrors / github.com / raspberrypi_linux

Commit 9a72a024 authored Jun 13, 2023 by

Jingbo Xu Committed by Jens Axboe Jun 20, 2023

block: fine-granular CAP_SYS_ADMIN for Persistent Reservation



Allow of unprivileged Persistent Reservation operations on devices
if the write permission check on the device node has passed.

brw-rw---- 1 root disk 259, 0 Jun 13 07:09 /dev/nvme0n1

In the example above, the "disk" group of nvme0n1 is also allowed to
make reservations on the device even without CAP_SYS_ADMIN.

Signed-off-by: Jingbo Xu <jefflexu@linux.alibaba.com>
Reviewed-by: Christoph Hellwig <hch@lst.de>
Link: https://lore.kernel.org/r/20230613084008.93795-3-jefflexu@linux.alibaba.com
Signed-off-by: Jens Axboe <axboe@kernel.dk>

parent 12629621

Hide whitespace changes

Inline Side-by-side

Please register or to comment