Re: experimental patch for toshiba_acpi

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

On Fri, 27 Feb 2009, Richard Hughes wrote:
> In the meantime, you've insulted me enough for one email thread.
> 
> Len, I would agree with Matthew that the patch should not be merged, and
> that any missing functionality should be added to the existing ACPI
> driver.

FWIW, I also think the patch, as it stands, is NOT a good idea.

I will ignore the human interaction protocol screwups that happened in
the thread even if they left me with a bad taste in the mouth just
from watching from the outside.

There are strong technical reasons to not accept the patch IMHO:

1. If something can brick a box, access to it must not be provided
   unfiltered, not even kernel-side (through exported functions,
   active virtual memory regions that a bug could overwrite, etc),
   let alone to userland.  At least not as the normal operational mode
   of a driver (might-brick-something functionality hidden behind a
   developer mode accessed through a Kconfig option would be OK).

   If there isn't a safe group of functions for all models the driver
   will load at, filtering must be done by whitelisting.  It really
   doesn't matter if the table will be big, it can live in __initdata,
   in fact, if it were not for the can-brick stuff, it could be done
   through the firmware interface (easy upgrading for new models).

   If filtering is implemented, giving userspace access through
   /dev/toshiba for selected HCI functions would not be a problem.
   However, see (2) below.

2. Standard kernel functionality is to be made accessible through
   standard kernel interfaces.  This means brightness control and
   rfkill control, power supplies, thermal and fan control, hotkeys
   and generic event reporting, among others.

   Userspace could use /dev/toshiba for anything else there isn't a
   generic interface for, though.

   Access to such functionality also through /dev/toshiba should be
   provided only for backwards compatibility, with a set date for
   removal (say, one year).

-- 
  "One disk to rule them all, One disk to find them. One disk to bring
  them all and in the darkness grind them. In the Land of Redmond
  where the shadows lie." -- The Silicon Valley Tarot
  Henrique Holschuh
--
To unsubscribe from this list: send the line "unsubscribe linux-acpi" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at  http://vger.kernel.org/majordomo-info.html
[Index of Archives]     [Linux IBM ACPI]     [Linux Power Management]     [Linux Kernel]     [Linux Laptop]     [Kernel Newbies]     [Share Photos]     [Security]     [Netfilter]     [Bugtraq]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Samba]     [Video 4 Linux]     [Device Mapper]     [Linux Resources]

  Powered by Linux