Re: [PATCH v3] proc: Use seq_read_iter for /proc/*/maps

From: Linus Torvalds
Date: Tue May 04 2021 - 16:25:18 EST

Next message: Paolo Bonzini: "Re: [PATCH v2 1/7] KVM: x86/mmu: Track if shadow MMU active"
Previous message: Michael Walle: "Re: [net-next] net: dsa: felix: disable always guard band bit for TAS config"
In reply to: Arusekk: "Re: [PATCH v3] proc: Use seq_read_iter for /proc/*/maps"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, May 4, 2021 at 1:21 PM Arusekk <arek_koz@xxxxx> wrote:
>
> Keeping it the way it is for the sake of security of userspace applications
> looks more like security through obscurity to me.

No, it's simply "no valid use" and "why expose interfaces that don't
need to be exposed".

splice() _has_ been a security issue before. It's why I want to limit
it now. I want to enable it only for cases that seem to be worth
enabling for.

Have we fixed all the splice security issues? I certainly hope so. Are
you correct in stating that there are probably other places that might
be more interesting to attackers? Sure. But none of that changes the
basic issue: why expose this?

Linus

Next message: Paolo Bonzini: "Re: [PATCH v2 1/7] KVM: x86/mmu: Track if shadow MMU active"
Previous message: Michael Walle: "Re: [net-next] net: dsa: felix: disable always guard band bit for TAS config"
In reply to: Arusekk: "Re: [PATCH v3] proc: Use seq_read_iter for /proc/*/maps"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]