On Tue, Feb 25, 2020 at 10:59 AM Gregory Nutt <spudan...@gmail.com> wrote: > > I think that most syscall which contain pointer has the security issue > > in PROTECTED/KERNEL mode. > > Certainly if high security is need, they all should be reviewed. Linux > goes to a lot of trouble to access data pointed to by user-provided > pointers. We might need to add all of those access macros in the future. > > KERNEL mode is a little more complex in that you also have to assure > that the correct MMU mappings are in place before to access user data > from a different kernel thread (like a work queue).
The whole point of using a RTOS is to get a LIGHTWEIGHT operating system. This is for embedded microcontrollers costing from cents up to a few dollars in products that run embedded software logic. If you need the sort of "security" that makes it possible to run totally untrusted code, then maybe you need a full blown operating system, which also comes with a full blown computer and not an embedded microcontroller. Cheers, Nathan
