| ▲ | toast0 an hour ago | |
OK, I may likely have too much sleep debt to understand, but given the bug is that splice can write to the input fd, you're suggesting maybe splice should only let you use an input fd if the process has access to write to it? But splice is a more or less a generalization of sendfile, and sendfile is often used for webserving where the serving process does not have ownership of the documents it is serving. It doesn't make sense to limit splice such that it can't do the task it was built for. Maybe splice should just not write to the input fd? :P | ||
| ▲ | eqvinox 8 minutes ago | parent | next [-] | |
Yes, it'd curtail splice() usage quite heavily. Maybe too much. But apparently we can't be trusted with the page cache… Maybe the kernel using supervisor-read-only flags could be made to work, only issue then is what happens if something does in fact need to write… | ||
| ▲ | semiquaver 34 minutes ago | parent | prev [-] | |
Aren’t you just saying “don’t write bugs?” | ||