This is the mail archive of the gdb-patches@sourceware.org mailing list for the GDB project.

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]
Other format:	[Raw text]

Re: [patch] New set auto-load-local-gdbinit + disable it by default

From: Jan Kratochvil <jan dot kratochvil at redhat dot com>
To: Doug Evans <dje at google dot com>
Cc: gdb-patches at sourceware dot org
Date: Tue, 17 Jan 2012 20:12:23 +0100
Subject: Re: [patch] New set auto-load-local-gdbinit + disable it by default
References: <20120117095552.GA6141@host2.jankratochvil.net> <CADPb22Ty_iWAPNifD2zn8RDM13HfHVt0swbRbt+LBua8R5aB4w@mail.gmail.com> <20120117162621.GA3883@host2.jankratochvil.net> <CADPb22S0ewOcbATLRQBf_90oUC43MuKvycn81d7K=Yx-t_u_WQ@mail.gmail.com> <20120117165640.GB5344@host2.jankratochvil.net> <CADPb22S51Er8=Bdirwbj1h=dn0awZjrfuJWXkX8Fdd3tORKE-g@mail.gmail.com> <20120117174839.GA8459@host2.jankratochvil.net> <CADPb22RyVFvXBxfFMxWGZ1WayBhF0Gc-uOvswJbCvHvoUoXJyg@mail.gmail.com> <20120117184244.GA13988@host2.jankratochvil.net> <CADPb22SV0Kcf4Eq6UZsSvekg9rPJjyH11Frf=P6UxhfewYyQpQ@mail.gmail.com>

On Tue, 17 Jan 2012 20:02:21 +0100, Doug Evans wrote:
> I wouldn't want to make such a substantial change based on a guess.

OK, I can post an online survey to <devel at lists.fedoraproject.org> or if
you have any other idea.

> > (a) Extract first and second argument in shell, that will be several lines of
> > Â Âcode.
[...]
> As opposed to a script named, say, secure-gdb that did that?

The problem is that script needs to parse out properly the arguments
(executable/core/PID) including properly recognizing --args, which is probably
doable but I find it a bit fragile and definitely not easy.

> Maintenance of pure additions is far easier than maintenance of local
> mods that involve changes.

It will become difficult wrt maintenance of GDB options parsing compatibility.

But I accept it if you really oppose a new GDB option.

> My point is a security audit of GDB is more than just fixing the bugs
> we know of.
> As is taking on the job of keeping it that way.

I agree but there are no assigned resources for it.

And I find better to ship program with no known security flaws (*) than to
ship it with known security flaws.  And after all I cannot choose the second
option anyway.

(*) I believe there possibly may not be any.

Thanks,
Jan

References:
- [patch] New set auto-load-local-gdbinit + disable it by default
  - From: Jan Kratochvil
- Re: [patch] New set auto-load-local-gdbinit + disable it by default
  - From: Doug Evans
- Re: [patch] New set auto-load-local-gdbinit + disable it by default
  - From: Jan Kratochvil
- Re: [patch] New set auto-load-local-gdbinit + disable it by default
  - From: Doug Evans
- Re: [patch] New set auto-load-local-gdbinit + disable it by default
  - From: Jan Kratochvil
- Re: [patch] New set auto-load-local-gdbinit + disable it by default
  - From: Doug Evans
- Re: [patch] New set auto-load-local-gdbinit + disable it by default
  - From: Jan Kratochvil
- Re: [patch] New set auto-load-local-gdbinit + disable it by default
  - From: Doug Evans
- Re: [patch] New set auto-load-local-gdbinit + disable it by default
  - From: Jan Kratochvil
- Re: [patch] New set auto-load-local-gdbinit + disable it by default
  - From: Doug Evans

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]