From owner-freebsd-current@FreeBSD.ORG Mon Jun 16 18:54:48 2008 Return-Path: Delivered-To: current@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 9F05D1065676 for ; Mon, 16 Jun 2008 18:54:48 +0000 (UTC) (envelope-from cokane@freebsd.org) Received: from QMTA08.emeryville.ca.mail.comcast.net (qmta08.emeryville.ca.mail.comcast.net [76.96.30.80]) by mx1.freebsd.org (Postfix) with ESMTP id 708758FC1B for ; Mon, 16 Jun 2008 18:54:48 +0000 (UTC) (envelope-from cokane@freebsd.org) Received: from OMTA02.emeryville.ca.mail.comcast.net ([76.96.30.19]) by QMTA08.emeryville.ca.mail.comcast.net with comcast id eeZB1Z08s0QkzPwA809Z00; Mon, 16 Jun 2008 18:44:46 +0000 Received: from mail.cokane.org ([24.60.133.163]) by OMTA02.emeryville.ca.mail.comcast.net with comcast id eikl1Z0013Xh0XL8Nikl7z; Mon, 16 Jun 2008 18:44:46 +0000 X-Authority-Analysis: v=1.0 c=1 a=s8X_vqkLaPIA:10 a=fHXOHqj8bjYA:10 a=8wqX481ul-BPZ8mBZigA:9 a=wh_gWa8emjFl5k3mvfxz1FOKYF8A:4 a=SV7veod9ZcQA:10 a=LY0hPdMaydYA:10 a=idq206tLcQmjyEoNvbgA:9 a=hoiT_ecBIQrlQg0inMYP409GwKwA:4 a=rPt6xJ-oxjAA:10 Received: by mail.cokane.org (Postfix, from userid 103) id C19101DB2F9; Mon, 16 Jun 2008 14:44:44 -0400 (EDT) X-Spam-Checker-Version: SpamAssassin 3.1.8-gr1 (2007-02-13) on discordia X-Spam-Level: X-Spam-Status: No, score=-4.4 required=5.0 tests=ALL_TRUSTED,BAYES_00 autolearn=ham version=3.1.8-gr1 Received: from [172.20.1.3] (erwin.int.cokane.org [172.20.1.3]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by mail.cokane.org (Postfix) with ESMTP id 722191DB2F9; Mon, 16 Jun 2008 14:44:38 -0400 (EDT) From: Coleman Kane To: Stanislav Sedov In-Reply-To: <20080616222740.5cdd9490.stas@FreeBSD.org> References: <20080606020927.8d6675e1.stas@FreeBSD.org> <10261.1212703949@critter.freebsd.dk> <20080606025533.8322ee08.stas@FreeBSD.org> <1212758604.1904.33.camel@localhost> <20080615230250.7f3efae4.stas@FreeBSD.org> <1213557999.1816.15.camel@localhost> <20080616204433.48ad9879.stas@FreeBSD.org> <20080616222740.5cdd9490.stas@FreeBSD.org> Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-sqFBwwcZozgkReHFvg+z" Organization: FreeBSD Project Date: Mon, 16 Jun 2008 14:42:41 -0400 Message-Id: <1213641761.2184.0.camel@localhost> Mime-Version: 1.0 X-Mailer: Evolution 2.22.2 FreeBSD GNOME Team Port Cc: kib@freebsd.org, Poul-Henning Kamp , Rui Paulo , current@freebsd.org, Peter Jeremy Subject: Re: cpuctl(formely devcpu) patch test request X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 16 Jun 2008 18:54:48 -0000 --=-sqFBwwcZozgkReHFvg+z Content-Type: text/plain Content-Transfer-Encoding: quoted-printable On Mon, 2008-06-16 at 22:27 +0400, Stanislav Sedov wrote: > On Mon, 16 Jun 2008 19:10:17 +0100 > "Rui Paulo" mentioned: >=20 > > There's no security issue here. > > If the system administrator is concerned about "security" of cpuctl, > > he/she just has to compile-out cpuctl or remove the module from the > > file system. > >=20 >=20 > Well, in this case it would be possible to load that again. Setting > a non-zero securelevel or implementing a specific MAC policy might > be a more correct solution. cpuctl(4) won't allow any MSR operations > if securelevel is above zero. >=20 Is it potentially "unsafe" to use RDMSR? --=20 Coleman Kane --=-sqFBwwcZozgkReHFvg+z Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (FreeBSD) iEYEABECAAYFAkhWtBsACgkQcMSxQcXat5cYQACfRfihcd7RhACdADN6wbHxjue4 xxgAnRCMqQ/zqrwqtgxQ3ssxTYo3FEiW =U8Un -----END PGP SIGNATURE----- --=-sqFBwwcZozgkReHFvg+z--