[PATCH] doc: add capability to access physical addresses
Dmitry Kozlyuk
dmitry.kozliuk at gmail.com
Thu Jan 19 22:24:24 CET 2023
DAC_READ_SEARCH or DAC_OVERRIDE capability is required to access
/proc/self/pagemap, but the Linux guide mentioned neither one.
Recommend DAC_READ_SEARCH as less impactful.
Fixes: 979bb5d493fb ("doc: add more instructions for running as non-root")
Cc: stable at dpdk.org
Signed-off-by: Dmitry Kozlyuk <dmitry.kozliuk at gmail.com>
Reported-by: Boris Ouretskey <borisusun at gmail.com>
Reported-by: Isaac Boukris <iboukris at gmail.com>
---
doc/guides/linux_gsg/enable_func.rst | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
diff --git a/doc/guides/linux_gsg/enable_func.rst b/doc/guides/linux_gsg/enable_func.rst
index 829084d80e..2344d97403 100644
--- a/doc/guides/linux_gsg/enable_func.rst
+++ b/doc/guides/linux_gsg/enable_func.rst
@@ -55,12 +55,12 @@ Refer to the `documentation <https://www.kernel.org/doc/Documentation/vm/hugetlb
If the driver requires using physical addresses (PA),
the executable file must be granted additional capabilities:
-* ``SYS_ADMIN`` to read ``/proc/self/pagemaps``
+* ``DAC_READ_SEARCH`` and ``SYS_ADMIN`` to read ``/proc/self/pagemaps``
* ``IPC_LOCK`` to lock hugepages in memory
.. code-block:: console
- setcap cap_ipc_lock,cap_sys_admin+ep <executable>
+ setcap cap_dac_read_search,cap_ipc_lock,cap_sys_admin+ep <executable>
If physical addresses are not accessible,
the following message will appear during EAL initialization::
--
2.38.1
More information about the dev
mailing list