[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Qemu-devel] [PATCH] spapr-vscsi: Adding VSCSI capabilities
|
From: |
Benjamin Herrenschmidt |
|
Subject: |
Re: [Qemu-devel] [PATCH] spapr-vscsi: Adding VSCSI capabilities |
|
Date: |
Tue, 27 Aug 2013 10:45:15 +1000 |
On Mon, 2013-08-26 at 15:37 +0200, Paolo Bonzini wrote:
> There are certainly cases where time-of-check-to-time-of-use
> vulnerability could make QEMU access uninitialized memory (or worse,
> out-of-bounds arrays). For example, you could try racing the host on
> the length of a scatter/gather list.
Sure, and I mentioned that too, the latest patch from Nikunj addresses
it, I still think however that it's not a good practice to copy
everything, then do the byteswaps on the result (and it defeats use of
sparse for endian checking if we ever want to do that).
Ben.
- [Qemu-devel] [PATCH] spapr-vscsi: Adding VSCSI capabilities, Alexey Kardashevskiy, 2013/08/23
- Re: [Qemu-devel] [PATCH] spapr-vscsi: Adding VSCSI capabilities, Alexander Graf, 2013/08/25
- Re: [Qemu-devel] [PATCH] spapr-vscsi: Adding VSCSI capabilities, Benjamin Herrenschmidt, 2013/08/25
- Re: [Qemu-devel] [PATCH] spapr-vscsi: Adding VSCSI capabilities, Nikunj A Dadhania, 2013/08/26
- Re: [Qemu-devel] [PATCH] spapr-vscsi: Adding VSCSI capabilities, Alexander Graf, 2013/08/26
- Re: [Qemu-devel] [PATCH] spapr-vscsi: Adding VSCSI capabilities, Benjamin Herrenschmidt, 2013/08/26
- Re: [Qemu-devel] [PATCH] spapr-vscsi: Adding VSCSI capabilities, Alexander Graf, 2013/08/26
- Re: [Qemu-devel] [PATCH] spapr-vscsi: Adding VSCSI capabilities, Nikunj A Dadhania, 2013/08/26
- Re: [Qemu-devel] [PATCH] spapr-vscsi: Adding VSCSI capabilities, Alexander Graf, 2013/08/26
- Re: [Qemu-devel] [PATCH] spapr-vscsi: Adding VSCSI capabilities, Benjamin Herrenschmidt, 2013/08/26
- Re: [Qemu-devel] [PATCH] spapr-vscsi: Adding VSCSI capabilities, Nikunj A Dadhania, 2013/08/26
- Re: [Qemu-devel] [PATCH] spapr-vscsi: Adding VSCSI capabilities, Nikunj A Dadhania, 2013/08/26