From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: by yocto-www.yoctoproject.org (Postfix, from userid 118) id C1EC4E00830; Fri, 7 Nov 2014 18:12:41 -0800 (PST) X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on yocto-www.yoctoproject.org X-Spam-Level: X-Spam-Status: No, score=-2.0 required=5.0 tests=BAYES_00,DKIM_SIGNED, DKIM_VALID, DKIM_VALID_AU, FREEMAIL_FROM, RCVD_IN_DNSWL_NONE autolearn=ham version=3.3.1 X-Spam-HAM-Report: * 0.0 FREEMAIL_FROM Sender email is commonly abused enduser mail provider * (picmaster[at]mail.bg) * -1.9 BAYES_00 BODY: Bayes spam probability is 0 to 1% * [score: 0.0000] * -0.1 DKIM_VALID_AU Message has a valid DKIM or DK signature from author's * domain * 0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily * valid * -0.1 DKIM_VALID Message has at least one valid DKIM or DK signature * -0.0 RCVD_IN_DNSWL_NONE RBL: Sender listed at http://www.dnswl.org/, no * trust * [193.201.172.117 listed in list.dnswl.org] X-Greylist: delayed 566 seconds by postgrey-1.32 at yocto-www; Fri, 07 Nov 2014 18:12:37 PST Received: from mx1.mail.bg (mx1.mail.bg [193.201.172.117]) by yocto-www.yoctoproject.org (Postfix) with ESMTP id 07647E007BA for ; Fri, 7 Nov 2014 18:12:37 -0800 (PST) Received: from [10.10.10.10] (unknown [93.152.132.123]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by mx1.mail.bg (Postfix) with ESMTPSA id D30A4600038D; Sat, 8 Nov 2014 04:03:08 +0200 (EET) DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=mail.bg; s=default; t=1415412188; bh=wCl/rl0OoxYN5ISXD6sI3RCMb5FF2FpLCYnn25qLfr0=; h=Message-ID:Date:From:MIME-Version:To:CC:Subject:References: In-Reply-To:Content-Type:Content-Transfer-Encoding; b=hbJO5mFn6sm52Ya5PqBF4RqI3PMSNvm/UWUAOPtSI1vvzTjPClSS/qRpSncUnuMJr lZi8mriWHuyjEabo38hPACEXu+yC5adBPanF78QBR0Qa+5Ridq29C7VJFTWsW6gFNA Z37mhZjGZH7tYfDN/EyMkEfe8cXqMRIakvjXKcos= Message-ID: <545D79DC.8030701@mail.bg> Date: Sat, 08 Nov 2014 04:03:08 +0200 From: Nikolay Dimitrov User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:31.0) Gecko/20100101 Icedove/31.2.0 MIME-Version: 1.0 To: Alexander Holler References: <1415353415-3805-1-git-send-email-holler@ahsoftware.de> <20141107150003.27c16356@e6520eb.localdomain> <20141107160443.765f9b19@e6520eb.localdomain> <545CE3DE.4070902@ahsoftware.de> <545CF576.5050403@ahsoftware.de> In-Reply-To: <545CF576.5050403@ahsoftware.de> Cc: "meta-freescale@yoctoproject.org" , Jon Nettleton , Otavio Salvador Subject: Re: [PATCH 0/1] arm: imx: fsl_otp: make fuses (OTP memory) read-only X-BeenThere: meta-freescale@yoctoproject.org X-Mailman-Version: 2.1.13 Precedence: list List-Id: Usage and development list for the meta-fsl-* layers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 08 Nov 2014 02:12:41 -0000 Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: 7bit Hi Alexander, The driver allows to be enabled/disabled by a configuration option, so it's a responsibility of your engineering team to properly configure the software for development, manufacturing and production purposes, as there's no "one size fits all" solution for this option. And I think it would be a unwise decision just to cripple the driver because there is potential for misuse the driver. If so, we have to disable also all device files and sysfs entries that allow raw access to physical memory, physical disks, cpu frequency, thermal device, power supply voltages, as all of these can screw-up the product (either by deleting data or by frying a component on the board). And we have to forbid kitchen knives :). I like Eric's idea with sysfs unlock entry. It's also possible to have different sysfs "read" and "write" files' permissions, to provide privilege separation. I also understand your confusion of the answers received on LKML and here, but you should already know that each FOSS tribe has its own customs. What's good for the kernel itself doesn't make it instantly good for actual systems/product integration, so it's normal to have groups with different goals to react differently on the same topic. Kind regards, Nikolay