[PATCH] x86/64: Add CONFIG_DEVMEM=y for targets/x86/64
Bjørn Mork
bjorn at mork.no
Sun Feb 14 04:33:15 EST 2021
Petr Štetiar <ynezz at true.cz> writes:
> I assume it's for some legacy reasons which don't apply in 2021 to OpenWrt.
Not sure I understand what you mean here. There was a a request for
this feature, so it obviously applies to OpenWrt. And it's already
enabled for the ipq807x and rockchip targets, so you can't really claim
that it's not available in OpenWrt either.
I do hope you don't think OpenWrt is somehow more secure than a current
Debian installation because you arbitrarily remove kernel features like
this one?
/dev/mem doesn't change anything security-wise. The security issues in
OpenWrt are caused by almost every process running as root. This is why
every process has access to the hardware. It has nothing to do with the
availability of kernel interfaces. A rogue application can just load
the kernel code it needs anyway.
Bjørn
More information about the openwrt-devel
mailing list