Subject: CVS commit: src/sys/dev
To: None <source-changes@NetBSD.org>
From: Elad Efrat <elad@netbsd.org>
List: source-changes
Date: 10/28/2006 15:13:11
Module Name:	src
Committed By:	elad
Date:		Sat Oct 28 15:13:11 UTC 2006

Modified Files:
	src/sys/dev: verified_exec.c

Log Message:
Remove bogus sanity check.

The passed size doesn't mean anything really and can only help detect
corrupted configuration files, which should be done in userland anyway.

Note it's possible to trigger a kernel panic by passing a junk
pointer in the 'fingerprint' member of the parameters, but then again
that's true for anything that copies in data from a userland-supplied
pointer. And we have plenty of those.

At the moment, Veriexec only allows the super-user to open the pseudo
device, so it's ~okay. Maybe we should address that in copy(9) or
something?


To generate a diff of this commit:
cvs rdiff -r1.44 -r1.45 src/sys/dev/verified_exec.c

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.