This is the mail archive of the
gdb-patches@sourceware.org
mailing list for the GDB project.
Re: [patch] New set auto-load-local-gdbinit + disable it by default
On Tue, 17 Jan 2012 20:02:21 +0100, Doug Evans wrote:
> I wouldn't want to make such a substantial change based on a guess.
OK, I can post an online survey to <devel at lists.fedoraproject.org> or if
you have any other idea.
> > (a) Extract first and second argument in shell, that will be several lines of
> > Â Âcode.
[...]
> As opposed to a script named, say, secure-gdb that did that?
The problem is that script needs to parse out properly the arguments
(executable/core/PID) including properly recognizing --args, which is probably
doable but I find it a bit fragile and definitely not easy.
> Maintenance of pure additions is far easier than maintenance of local
> mods that involve changes.
It will become difficult wrt maintenance of GDB options parsing compatibility.
But I accept it if you really oppose a new GDB option.
> My point is a security audit of GDB is more than just fixing the bugs
> we know of.
> As is taking on the job of keeping it that way.
I agree but there are no assigned resources for it.
And I find better to ship program with no known security flaws (*) than to
ship it with known security flaws. And after all I cannot choose the second
option anyway.
(*) I believe there possibly may not be any.
Thanks,
Jan