| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Fri, 13 Apr 2012 09:25:46 +0100 From: James Courtier-Dutton <james.dutton@...il.com> To: Mauro Carvalho Chehab <mchehab@...hat.com> Cc: RĂ©mi Denis-Courmont <remi@...lab.net>, mchehab@...radead.org, linux-media@...r.kernel.org, linux-kernel@...r.kernel.org, Alan Cox <alan@...rguk.ukuu.org.uk> Subject: Re: [RFC] [PATCH] v4l2: use unsigned rather than enums in ioctl() structs On 12 April 2012 15:55, Mauro Carvalho Chehab <mchehab@...hat.com> wrote: > Em 12-04-2012 05:04, James Courtier-Dutton escreveu: >> 6) Add a #if #endif around the old API, so a user compiling their own >> kernel can decide if the old API exists or not. User might want to do >> this for security reasons. > > Add an #if block there will make the header very hard to deal with, as this > is already complex enough without it. The V4L2 API header has 2420 lines. > Such #if blocks will almost duplicate the header size. > But it will work. If you change the kernel-user API, this is a necessary evil you really just have to do. For ALSA, we had a #define ALSA_API_5 and #define ALSA_API_9. The application writer defined one of these before including the header file, and this specified which API version the application writer used. This handles the use from user space. After about 2 years, you can remove the old API version, and the header file is then cleaned up. You need to think about it as an API change. So, you are really going from V4L2 to V4L3. The kernel side of things is a bit messier. You have to use different IOCTLs for the old API than the new API for every IOCTL that has a changed parameter passed to it. We managed to avoid this particular nasty, because in ALSA we had libasound. So, we implemented all the nasty stuff in libasound, letting the kernel only have to implement one API, either the new or the old. So long as you installed a new libasound, the old application would stay working. I don't think you have something like libasound for v4l2 that every application is using, so I would probably go with implementing V4L3. I.e. A brand new API for Video in Linux. You could say the driver for moving from V4L2 to V4L3 would be security due to problems with emums. Note: You can still use enums in the header file, but just pass their value over the api as an int and not an emun type. See the /linux/include/sound/asound.h for an example. -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists