Re: thoughts on kernel security issues

From: Alan Cox
Date: Sun Jan 30 2005 - 11:52:33 EST

Next message: Russell King: "Re: Deadlock in serial driver 2.6.x"
Previous message: Alan Cox: "Re: Deadlock in serial driver 2.6.x"
In reply to: Linus Torvalds: "Re: thoughts on kernel security issues"
Next in thread: Bill Davidsen: "Re: thoughts on kernel security issues"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mer, 2005-01-26 at 19:15, Olaf Hering wrote:
> And, did that nice interface help at all? No, it did not.
> Noone made seqfile mandatory in 2.6.
> Now we have a few nice big patches to carry around because every driver
> author had its own proc implementation. Well done...

seqfile has helped immensely from what I can see. And gradually it takes
over the kernel because each time someone has a broken proc driver it is
easier to rewrite it in seq_file than fix it any other way.

All good API's work that way, and they really do work. You only have to
look at things like the statistics for Gnome application string caused
security errors versus those for generic C apps to see the huge effect
stuff like g_string classes have had on reliability.

We need *more* API's like this - we are lacking some nice helpers for
simple block/char devices and also lacking a "call under lock" construct
which avoids forgetting to drop locks for example.

Alan

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Russell King: "Re: Deadlock in serial driver 2.6.x"
Previous message: Alan Cox: "Re: Deadlock in serial driver 2.6.x"
In reply to: Linus Torvalds: "Re: thoughts on kernel security issues"
Next in thread: Bill Davidsen: "Re: thoughts on kernel security issues"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]