Complete coverage in Linux security modules
Posted Oct 7, 2005 9:01 UTC (Fri) by liljencrantz
In reply to: Complete coverage in Linux security modules
Parent article: Complete coverage in Linux security modules
I'd be surprised if a comprehensive test suite doesn't exist. This particular bug wouldn't show up in such a test since before you read or write to a file, you need to open it. If the checks on open work, then the checks on readv/writev will never do anything interesting. The only reason for implementing them, as far as I can see, is to limit the damage done if someone finds a way to break the security checks on open.
to post comments)