On Thu, Dec 12, 2013 at 4:25 PM, Dave Jones <da...@redhat.com> wrote: > On Thu, Dec 12, 2013 at 01:13:41PM -0800, Kees Cook wrote: > > > - who will keep adding these triggers going forward? > > also.. > > - Who will test the existing triggers are doing the right thing when related > code changes. > > We could add something to tests/ maybe for each exploit() addition, to make > sure some > new change isn't introducing an oopsable (or worse!) bug in the actual > exploit test. > > It does mean someone needs to be regularly running said tests though. > As history has shown, things like nx_test have been broken for months at a > time without > anyone complaining. Perhaps Fenguang Wu can add something to the daily test > runs if > we add an over all "make test-secure" target or similar.
This has the added benefit of making sure that the exploits don't (trivially) regress. --Andy > > Dave > -- Andy Lutomirski AMA Capital Management, LLC -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majord...@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
