On 27/2/19 2:02 pm, Jordan Niethe wrote:
Currently the opal log is globally readable. It is kernel policy to limit
the visibility of physical addresses / kernel pointers to root.
Given this and the fact the opal log may contain this information it would
be better to limit the readability to root.
Signed-off-by: Jordan Niethe <jniet...@gmail.com>
Guess I'll have to get used to typing sudo more often. :(
Makes sense also given that we do the same thing for exports afaict.
Reviewed-by: Andrew Donnellan <andrew.donnel...@au1.ibm.com>
--
Andrew Donnellan OzLabs, ADL Canberra
andrew.donnel...@au1.ibm.com IBM Australia Limited
