Originally posted by RSpliet
View Post
Announcement
Collapse
No announcement yet.
Linux Kernel Hardens Sound Drivers Against Spectre V1 Vulnerability
Collapse
X
-
-
Originally posted by Xaero_Vincent View Postfun isn't over yet! 8 new security vulnerabilities found in Intel processors. Xorg server security is beginning to look like an armed fortress in comparison to CPUs.[/URL]
Leave a comment:
-
Originally posted by mastermind View Post
https://en.wikipedia.org/wiki/Sparse...el_definitions The Linux kernel is not pure C to start off with and sparse already allows adding extra information for code sanity checking. The ideas out of ATS could go into sparse so expanding what faults sparse will find. Of Course while trying to keep syntax simple and common sense for kernel space.
The Linux kernel does have fairly formal memory model that does need to be expanded to be more useful for locating multi threading issues memory.
The fact there is a formal memory model for the Linux kernel means for lots of type things the Linux kernel does not need generic solution instead need the Linux kernel memory model solution. The Linux kernel memory model has odd behaviours different platforms can do due to out of order execution and other things.
Its not like the Linux kernel had to change to a new language to get mathematically provable lock safety. Its require tooling yes but not a new language.
This is always the same thing we need to write a new language to be safe?? Then they go out and write a new language that people have to learn and rewrite the code completely. Please note rewriting the code completely creates room for creating a new set of bugs. The other option is don't change the program language but add tooling like sparse and lockdep. Do note sparse is using flags that are not part of the C language and due to the way they are added they are ignored by the C compiler. So added features to sparse to have it audited is adding extra bits to existing code no full rewriting. Its how marking pointers as user or kernel space and detect if they would be used wrong is done in sparse.
Yes it cool to write a new language its not a cool to add tools to existing languages.
- Likes 2
Leave a comment:
-
Originally posted by Leopard View Post
Don't worry , we got you covered covered.
- Likes 2
Leave a comment:
-
Originally posted by tildearrow
I quit as typo reporter for a few days until my ISP fixes a major connection problem within the area.
- Likes 1
Leave a comment:
-
Originally posted by mastermind View Post
Second problem is that very few programmers think in terms of mathematics. Especially in kernel device drivers, we just want to execute a sequence of operations. Although this is not forbidden by functional languages, it's often more tedious to write such sequential bits of code. It will most likely result in less-readable and thus less maintainable code, in turn leading to fewer kernel contributors.
- Likes 1
Leave a comment:
-
Originally posted by starshipeleven View PostA bit exaggerated, but not totally sarcastic. You do have a too low idea of the quality standards there.
I appreciate the information you provided that demonstrated the Linux devs took a high quality approach to the problem.
- Likes 1
Leave a comment:
Leave a comment: