| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20150122084517.GA2093@infradead.org> Date: Thu, 22 Jan 2015 00:45:17 -0800 From: Christoph Hellwig <hch@...radead.org> To: Keith Busch <keith.busch@...el.com> Cc: Yan Liu <yan@...estorage.com>, Matthew Wilcox <willy@...ux.intel.com>, linux-kernel@...r.kernel.org, linux-nvme@...ts.infradead.org Subject: Re: [PATCH 1/1] NVMe: Do not take nsid while a passthrough IO command is being issued via a block device file descriptor On Thu, Jan 22, 2015 at 12:47:24AM +0000, Keith Busch wrote: > The IOCTL's purpose was to let someone submit completely arbitrary > commands on IO queues. This technically shouldn't even need a namespace > handle, but we don't have a request_queue associated to IO queues without > one like the admin queue has. In fact, we ought to fix that so we can > issue IO commands without namespaces. Honestly, this sounds like a horrible idea. As namespaces aren't really any different from SCSI LUNs they should only be accessible through the device associated with the namespaces, and admin commands should only be allowed through the character device (if at all). For these security and usability reasons we did get rid of the SG_FLAG_LUN_INHIBIT flag in the SCSI passthrough interface, which allowed for similar horrible things in the distant past. -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists