| commit | 96507853a1cc5ab3ce7123a7486fc3d13fd092b0 | |
| author | G. Branden Robinson <g.branden.robinson@gmail.com> | |
| Sun, 30 Jul 2023 15:31:37 +0000 (30 10:31 -0500) | ||
| committer | Alejandro Colomar <alx@kernel.org> | |
| Sun, 30 Jul 2023 17:29:19 +0000 (30 19:29 +0200) | ||
| tree | 44ddae231d7cc5d12dec7ef361227be84a9decbd | treesnapshot (tar.gz zip) |
| parent | da6d0c648bbc79fb1366029951e1bb1fce6504fa | commitdiff |
memcmp.3: Recast security caveat
Use terminology more carefully.
* Refer to the info sec property of confidentiality[1] instead of saying,
vaguely, "security-critical".
* Try not to confuse anyone who's studied the analysis of algorithms:
don't say "constant time" when "deterministic time" is meant. The
time to perform the memory comparison remains linear (O(n)), not
constant (O(1)).
* Tighten wording.
Link: [1] <https://informationsecurity.wustl.edu/items/confidentiality-integrity-and-availability-the-cia-triad/>
Signed-off-by: "G. Branden Robinson" <g.branden.robinson@gmail.com>
Signed-off-by: Alejandro Colomar <alx@kernel.org>
Use terminology more carefully.
* Refer to the info sec property of confidentiality[1] instead of saying,
vaguely, "security-critical".
* Try not to confuse anyone who's studied the analysis of algorithms:
don't say "constant time" when "deterministic time" is meant. The
time to perform the memory comparison remains linear (O(n)), not
constant (O(1)).
* Tighten wording.
Link: [1] <https://informationsecurity.wustl.edu/items/confidentiality-integrity-and-availability-the-cia-triad/>
Signed-off-by: "G. Branden Robinson" <g.branden.robinson@gmail.com>
Signed-off-by: Alejandro Colomar <alx@kernel.org>
| man3/memcmp.3 | diffblobblamehistory |