Subject: Re: Getting rid of /dev/veriexec
To: Elad Efrat <elad@NetBSD.org>
From: Quentin Garnier <cube@cubidou.net>
List: tech-kern
Date: 12/02/2005 17:04:00
--qLni7iB6Dl8qUSwk
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable
On Fri, Dec 02, 2005 at 05:51:09PM +0200, Elad Efrat wrote:
> Jason Thorpe wrote:
>=20
> > As you said before, there is really no change to veriexec here except=
=20
> > for "sysctl entry point vs device entry point". Since both choices are
> > basically non-optimal, I don't see any real benefit to changing=20
> > veriexec at this time, since you're just trading one ugly solution for
> > another.
>=20
> While there is no change to the end-user here, I *still* think that
> sysctl is a more logical place to have these hooks in.
And I *still* don't see any answer to my post in this thread (and my
comments elsewhere...) about compatibility with previous releases.
What I see here is that you're proposing a cosmetic change at the cost
of breaking compatibility. I see _very little_ gain in that.
--=20
Quentin Garnier - cube@cubidou.net - cube@NetBSD.org
"When I find the controls, I'll go where I like, I'll know where I want
to be, but maybe for now I'll stay right here on a silent sea."
KT Tunstall, Silent Sea, Eye to the Telescope, 2004.
--qLni7iB6Dl8qUSwk
Content-Type: application/pgp-signature
Content-Disposition: inline
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.6 (NetBSD)
iQEVAwUBQ5BwcNgoQloHrPnoAQKmdAf8DQF3MZhzapYfYqSNEG6//X7zoW38D2mC
cx3QRXzF6AcAx61ag+14mrqifiM5ME1RMHb1ct5Q/dlKG4OIRzBUhvwddCQTGQq8
8Bx844Bxn+z7Lo4IDDMQfF56ROuD3g3PnBumEQvOVuxVtLwvTqDr9HgdIyk12ptB
DLztR6soPX0tgA4Fm/tYvUDvg5INa9DmjPMmtb7WVwNRa9SyNTm8ksVz5aXttLcB
FUcY2ddOeSrjjL4KStjYI6Qi+7EwjItrP2YgxpmGcr9bWjK+ASIkXsZp7R/AfPFd
VtMsqKy/vFjlIZ5I/zC38KxTJQNc3Umtk7W3w38T1rOUuKEfRwRURg==
=I5jj
-----END PGP SIGNATURE-----
--qLni7iB6Dl8qUSwk--