From owner-cvs-all@FreeBSD.ORG Thu Apr 26 09:11:23 2007 Return-Path: X-Original-To: cvs-all@FreeBSD.org Delivered-To: cvs-all@FreeBSD.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 4550C16A402 for ; Thu, 26 Apr 2007 09:11:23 +0000 (UTC) (envelope-from cperciva@freebsd.org) Received: from pd2mo1so.prod.shaw.ca (shawidc-mo1.cg.shawcable.net [24.71.223.10]) by mx1.freebsd.org (Postfix) with ESMTP id 1CD9113C458 for ; Thu, 26 Apr 2007 09:11:23 +0000 (UTC) (envelope-from cperciva@freebsd.org) Received: from pd2mr4so.prod.shaw.ca (pd2mr4so-qfe3.prod.shaw.ca [10.0.141.107]) by l-daemon (Sun ONE Messaging Server 6.0 HotFix 1.01 (built Mar 15 2004)) with ESMTP id <0JH3008NELHA35F0@l-daemon> for cvs-all@FreeBSD.org; Thu, 26 Apr 2007 03:10:22 -0600 (MDT) Received: from pn2ml4so.prod.shaw.ca ([10.0.121.148]) by pd2mr4so.prod.shaw.ca (Sun Java System Messaging Server 6.2-7.05 (built Sep 5 2006)) with ESMTP id <0JH30003ALHABKJ1@pd2mr4so.prod.shaw.ca> for cvs-all@FreeBSD.org; Thu, 26 Apr 2007 03:10:22 -0600 (MDT) Received: from hexahedron.daemonology.net ([24.82.18.31]) by l-daemon (Sun ONE Messaging Server 6.0 HotFix 1.01 (built Mar 15 2004)) with SMTP id <0JH300EQELH81WY2@l-daemon> for cvs-all@FreeBSD.org; Thu, 26 Apr 2007 03:10:21 -0600 (MDT) Received: (qmail 57034 invoked from network); Thu, 26 Apr 2007 09:10:05 +0000 Received: from unknown (HELO ?127.0.0.1?) (127.0.0.1) by localhost with SMTP; Thu, 26 Apr 2007 09:10:05 +0000 Date: Thu, 26 Apr 2007 02:10:05 -0700 From: Colin Percival In-reply-to: <4630659E.9040300@samsco.org> To: Scott Long Message-id: <46306C6D.4080301@freebsd.org> MIME-version: 1.0 Content-type: text/plain; charset=ISO-8859-1 Content-transfer-encoding: 7bit X-Enigmail-Version: 0.94.0.0 References: <200704211417.l3LEHUKK078832@repoman.freebsd.org> <462A27CD.5090006@freebsd.org> <1177170852.32761.0.camel@localhost> <20070424091858.GA31094@comp.chem.msu.su> <462FA0BC.8020207@freebsd.org> <20070426054228.GA53614@comp.chem.msu.su> <463049C6.9080100@samsco.org> <20070426082958.GC53614@comp.chem.msu.su> <4630659E.9040300@samsco.org> User-Agent: Thunderbird 1.5.0.9 (X11/20061227) Cc: Yar Tikhiy , src-committers@FreeBSD.org, cvs-all@FreeBSD.org, cvs-src@FreeBSD.org Subject: Re: cvs commit: src/sys/amd64/amd64 pmap.c src/sys/i386/i386 pmap.c X-BeenThere: cvs-all@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: CVS commit messages for the entire tree List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 26 Apr 2007 09:11:23 -0000 Scott Long wrote: > Yar Tikhiy wrote: >> [snip] >> It's a good news! But what about explaining the code to the public? >> >> - Mr. Developer, why does it take an ugly hack to make the device work? >> - Can't tell ya, I'm under NDA. > > I think you have to respect that John and Stephan were doing the right > thing with this. This was no different than a security fix that gets > committed before the vulnerability is disclosed. No one seems to get > upset that the security team operates this way. I can only think of one recent case where a security fix was applied without the vulnerability details becoming public within a matter of minutes (i.e., as soon as we could get the advisory signed and uploaded), and that was due to a desire to avoid upstaging my BSDCan talk about hyperthreading (and in that case, all the details became available about 16 hours after patches were committed). That said, I think we have to respect the fact that NDAs, while not ideal, provide limited access to information which would otherwise be entirely unavailable; and in such circumstances I think Yar's suggested response of "Can't tell ya, I'm under NDA" would be perfectly acceptable. Colin Percival