6.4 Lessons Learned

As a programmer and kernel-driver developer:

• Define strict security settings for exported device objects. Do not allow unprivileged users to read from or write to these devices.

• Always take care to validate input data correctly.

• Destination addresses for memory-copy operations shouldn’t be extracted from user-supplied data.