6.4 Lessons Learned
As a programmer and kernel-driver developer:
Define strict security settings for exported device objects. Do not allow unprivileged users to read from or write to these devices.
Always take care to validate input data correctly.
Destination addresses for memory-copy operations shouldn’t be extracted from user-supplied data.
Get A Bug Hunter's Diary now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.