v01d opened a new issue #3354:
URL: https://github.com/apache/incubator-nuttx/issues/3354
```
Description: When a C++ ELF module is loaded, its C++ constructors are
called
via sched/task_starthook.c logic. This logic runs in
protected mode.
The is a security hole because the user code runs with kernel-
privileges when the constructor executes.
Destructors likely have the opposite problem. The probably
try to
execute some kernel logic in user mode? Obviously this needs
to
be investigated further.
Status: Open
Priority: Low (unless you need build a secure C++ system).
```
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
For queries about this service, please contact Infrastructure at:
[email protected]
