| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Sat, 25 May 2013 08:18:55 +0200 From: Paolo Bonzini <pbonzini@...hat.com> To: James Bottomley <James.Bottomley@...senPartnership.com> CC: linux-kernel@...r.kernel.org, tj@...nel.org, FUJITA Tomonori <fujita.tomonori@....ntt.co.jp>, Doug Gilbert <dgilbert@...erlog.com>, linux-scsi@...r.kernel.org, Jens Axboe <axboe@...nel.dk> Subject: Re: [PATCH v3 part1 1/4] sg_io: pass request_queue to blk_verify_command Il 25/05/2013 06:14, James Bottomley ha scritto: > On Fri, 2013-05-24 at 10:32 +0200, Paolo Bonzini wrote: >> Il 24/05/2013 10:03, James Bottomley ha scritto: >>>>>>>>>>> Does anyone in the real world actually care about this bug? >>>>>>>>> >>>>>>>>> Yes, or I would move on and not waste so much time on this. >>>>>>> >>>>>>> Fine, so produce a simple fix for this bug which we can discuss that's >>>>>>> not tied to this feature. >>>>> >>>>> Honestly, I have no idea how this is even possible. >>> Really? It looks to me like a simple block on the commands for disk >>> devices in the opcode switch would do it (with a corresponding change to >>> sg.c:sg_allow_access). >> >> Which switch? What I can do is something like this in blk_verify_command: > > not in blk_verify_command: outside of it, in the three places it's used. In other words, if (blk_verify_command(...) || blk_verify_command_with_queue(q, ...)) We must have different taste. Paolo -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists