On Mon, Nov 12, 2018 at 12:45:26PM +0000, Szabolcs Nagy wrote: > >> A lot of the new system calls lack clear specifications or are just > >> somewhat misdesigned. For example, pkey_alloc > > [snip] > >> getrandom still causes boot delays I'll note that what some people consider misdesigns, others consider "fix CVE's". Some people may consider it more important to avoid boot delays; others would consider internet-wide security problems, ala https://factorable.net to be higher priority. It's clear this is one area where I and some glibc developers have had a difference of opinion. The bigger problem is that if a single glibc developer is able to veto any new system call, maybe we *do* need to have a kernel-provided library which bypasses glibc.... - Ted
