From: Dan Carpenter <dan.carpenter@oracle.com>
To: James Morris <jmorris@namei.org>
Cc: ksummit-discuss@lists.linuxfoundation.org
Subject: Re: [Ksummit-discuss] [TECH TOPIC] Security
Date: Sat, 22 Sep 2018 16:16:40 +0300 [thread overview]
Message-ID: <20180922131640.pxjwukrckggxtg3s@mwanda> (raw)
In-Reply-To: <alpine.LRH.2.21.1809220709090.19240@namei.org>
Sort of related to this. I think we should have a public email list to
discuss potential security problems. We've actually talked about making
the security@kernel.org list public at some point when people started
flooding it with static checker warnings about potential SELinux missing
checks.
The downsides are 1) Maintainers will be annoyed. They don't want me or
anyone to forward them static checker output (they are polite about
this). But they also want to be the first to know about real bugs found
by static analysis. These are conflicting and impossible desires... 2)
Script kiddies will follow the list and learn about bugs earlier. I
don't see this as a huge issue if we restricted it to driver specific
bugs.
Security work is lonely. Everyone expects *all* the bugs to be fixed
perfectly and in absolute secrecy.
Every other special interest group has a mailing list linux in
automotive or small kernels. Security would be the same. Also I
sometimes see obviously bad security fixes. There is one integer
overflow fixes which I have re-fixed three times. Older me is able to
review other people's integer overflow fixes and spot bugs. It would be
good to have a way to share that knowledge.
Most maintainers do not want to deal with more than a 5% false positive
rate in static checker warnings. I, on the other hand, regularly deal
with a 95% false positive checks and there are probably other people
like me who can spend a whole day looking and feel happy to find one
bug.
regards,
dan carpenter
next prev parent reply other threads:[~2018-09-22 13:16 UTC|newest]
Thread overview: 7+ messages / expand[flat|nested] mbox.gz Atom feed top
2018-09-21 21:14 James Morris
2018-09-22 13:16 ` Dan Carpenter [this message]
2018-09-23 13:15 ` Laura Abbott
2018-09-23 13:20 ` Jiri Kosina
2018-09-23 18:34 ` Theodore Y. Ts'o
2018-09-23 18:54 ` Jiri Kosina
2018-09-24 9:21 ` Dan Carpenter
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20180922131640.pxjwukrckggxtg3s@mwanda \
--to=dan.carpenter@oracle.com \
--cc=jmorris@namei.org \
--cc=ksummit-discuss@lists.linuxfoundation.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox