Automated submission of kernel panic reports
dt71 at gmx.com
dt71 at gmx.com
Thu Oct 31 00:29:58 UTC 2013
Notes/advice/recommendations/proposals/questions/whatever:
This smells of having a potential to make an admin accidentally transmit undesired information, as well as adding some attack surface.
Without testing, I bet that a reguler user will be able to read the panicmail.N file (which will contain the textdump) -- the umask/permissions are not set up properly.
I very much dislike the non-use of double quotes around variable expansions and things like that in the shell code.
The return code of /usr/local/bin/pkesh should be handled.
Place a comment to the location in the code where an admin could put an add-on script that can automatically modify the text to be submitted (both automatic and confirmed mode).
What if the /var/crash/{info,vmcore}.last symlinks were used as a basis for selecting the last dump, instead of the current "$((`cat bounds` - 1))"/"$1" method?
What's wrong with "our" /bin/sh? If a temporary file is used for kgdb commands anyway, would it not be cleaner to use ``-x ${tmpfile}'' instead of input-piping?
How about: ${panicmail_sendto} could be "Full Name <e-mail at address>"?
"# Remove temporary file" is a bit superfluous.
Choose a consistent commenting style: either use periods/fullstops, or don't.
I'd personally use ``>'' instead of ``>>'' first in panicmail_gather().
More information about the freebsd-hackers
mailing list