Re: Problems with some of the current hooks

From: Stephen Smalley (sdsat_private)
Date: Mon Aug 06 2001 - 06:47:16 PDT

  • Next message: Stephen Smalley: "Re: NFSv4"

    On 3 Aug 2001, David Wagner wrote:
    > I propose to change this warning to be a bit more clear about what
    > care should be taken.  For example: When the arg parameter represents
    > a user space pointer, it should never be used.  (Calling copy_from_user()
    > on it is definitely right out, as it creates a TOCTTOU vulnerability.)
    Sure, this is an easy change.
    Stephen D. Smalley, NAI Labs
    linux-security-module mailing list

    This archive was generated by hypermail 2b30 : Mon Aug 06 2001 - 06:48:28 PDT