| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20170516070330.GP3616@mtr-leonro.local>
Date: Tue, 16 May 2017 10:03:30 +0300
From: Leon Romanovsky <leon@...nel.org>
To: davem@...emloft.net
Cc: ubraun@...ux.vnet.ibm.com, netdev@...r.kernel.org,
linux-rdma@...r.kernel.org, Christoph Hellwig <hch@....de>
Subject: Re: [PATCH net v1] net/smc: Add warning about remote memory exposure
+ linux-rdma ML.
On Tue, May 16, 2017 at 09:51:38AM +0300, Leon Romanovsky wrote:
> From: Christoph Hellwig <hch@....de>
>
> The driver explicitly bypasses APIs to register all memory once a
> connection is made, and thus allows remote access to memory.
>
> Signed-off-by: Christoph Hellwig <hch@....de>
> Signed-off-by: Leon Romanovsky <leon@...nel.org>
> ---
> Dave,
> Can you please forward this patch to stable?
> Thanks
> ---
> Changes from v0:
> * Remove BROKEN Kconfig option as a followup of this discussion
> https://patchwork.ozlabs.org/patch/760454/
> * Refine commit message
> ---
> net/smc/Kconfig | 4 ++++
> 1 file changed, 4 insertions(+)
>
> diff --git a/net/smc/Kconfig b/net/smc/Kconfig
> index c717ef0896aa..33954852f3f8 100644
> --- a/net/smc/Kconfig
> +++ b/net/smc/Kconfig
> @@ -8,6 +8,10 @@ config SMC
> The Linux implementation of the SMC-R solution is designed as
> a separate socket family SMC.
>
> + Warning: SMC will expose all memory for remote reads and writes
> + once a connection is established. Don't enable this option except
> + for tightly controlled lab environment.
> +
> Select this option if you want to run SMC socket applications
>
> config SMC_DIAG
> --
> 2.12.2
>
Download attachment "signature.asc" of type "application/pgp-signature" (834 bytes)
Powered by blists - more mailing lists