Revert "linux: Disable LSM for /dev/io port access"

[people/mfischer/ipfire-2.x.git] / src / patches / linux / linux-5.15.32-disable_lsm_for_ioport_access.patch

diff --git a/src/patches/linux/linux-5.15.32-disable_lsm_for_ioport_access.patch b/src/patches/linux/linux-5.15.32-disable_lsm_for_ioport_access.patch
deleted file mode 100644 (file)
index df7521d..0000000
--- a/src/patches/linux/linux-5.15.32-disable_lsm_for_ioport_access.patch
+++ /dev/null
@@ -1,30 +0,0 @@
---- linux-5.15.32.orig/arch/x86/kernel/ioport.c        2022-04-19 12:54:46.468477540 +0000
-+++ linux-5.15.32/arch/x86/kernel/ioport.c     2022-04-19 12:56:21.423185714 +0000
-@@ -4,7 +4,6 @@
-  * by Linus. 32/64 bits code unification by Miguel Botón.
-  */
- #include <linux/capability.h>
--#include <linux/security.h>
- #include <linux/syscalls.h>
- #include <linux/bitmap.h>
- #include <linux/ioport.h>
-@@ -70,8 +69,7 @@
- 
-       if ((from + num <= from) || (from + num > IO_BITMAP_BITS))
-               return -EINVAL;
--      if (turn_on && (!capable(CAP_SYS_RAWIO) ||
--                      security_locked_down(LOCKDOWN_IOPORT)))
-+      if (turn_on && (!capable(CAP_SYS_RAWIO)))
-               return -EPERM;
- 
-       /*
-@@ -186,8 +184,7 @@
- 
-       /* Trying to gain more privileges? */
-       if (level > old) {
--              if (!capable(CAP_SYS_RAWIO) ||
--                  security_locked_down(LOCKDOWN_IOPORT))
-+              if (!capable(CAP_SYS_RAWIO))
-                       return -EPERM;
-       }
-