On Sat, 2009-05-30 at 15:30 +0100, Alan Cox wrote:Right, so the whole point is to minimize the impact of actual bugs,Why do cars have crashworthiness and seatbelts ? Why not fix the actual
right? So why not focus on fixing those actual bugs? Can we create tools
to help us find such bugs faster? We use sparse for a lot of static
checking, we create things like lockdep and kmemcheck to dynamically
find trouble.
Can we instead of working around a problem, fix the actual problem?
problem (driving errors) ? I mean lets face it they make the vehicle
heavier, less fuel efficient, less fun and more annoying to use.
We can't find every crash bug either, yet we still ship the kernel and
people actually use it too.
What makes these security bugs so much more important than all the other
ones?