[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [MiNT] kernel 1.15.10b fragmentation




"Konrad M. Kokoszkiewicz" wrote:
> 
> > There are other programming languages where this holds true as well,
> > e.g. certain Pascal variants, etc.
> 
> And the AES could also verify pointers passed to it by applications,
> instead of accessing invalid memory and crashing down bringing the system
> off along.
> 

Some time ago I suggested to Frank the following function:

whatever_result_mode Pvalidate_vector(short pid, void *address, size_t length);

> However, IMHO, the more proper solution would be to develop an AES which
> works completely in user context. This would allow (in some future) to
> remove the F_OS_SPECIAL flag, which is simply a dangerous idiotism, and
> creates a security hole big like the Baltic Sea.
> 

The AES would become unbearable slow if it cannot access the parameter areas
directly. The AES is a important part of the operating environment and should
be granted a certain level of trust.

It would be a good idee however to replace the simple F_OS_SPECIAL flag setting
by a more elaborate authentication procedure.

-- 
Groeten; Regards.
Henk Robbers.    mailto:h.robbers@chello.nl
                   http://members.ams.chello.nl/h.robbers/Home.html
A free multitasking GEM for MiNT: XaAES (heavily under construction);
Interactive disassembler: TT-Digger;  Experimental text editor: AHCX;