From: Elias da Silva <silva@aurigatec.de>
To: Alan Cox <alan@lxorguk.ukuu.org.uk>
Cc: lkml <linux-kernel@vger.kernel.org>, Jens Axboe <axboe@suse.de>
Subject: Re: [PATCH] drivers/block/scsi_ioctl.c, Video DVD playback support
Date: Tue, 25 Jan 2005 10:29:22 +0100 [thread overview]
Message-ID: <200501251029.22646.silva@aurigatec.de> (raw)
In-Reply-To: <1106611309.6148.116.camel@localhost.localdomain>
On Tuesday 25 January 2005 01:01, you wrote:
[snip]
: > This is exactly the point: if the kernel wants to be safe, the
: > authentication procedure should be totally implemented in the kernel
: > and be protected against further changes via "alternative" ways...
: > but it isn't now and probably won't be although it could be.
:
: It provides the DVD_AUTH ioctls to handle this. Why are you banging raw
: commands at hardware when there is an abstraction for it ?
Hello.
This is the way VMware and probably other comparable emulators
access the devices.
Yes, sometimes you have to risk broken software in favor of augmented
security, but so far we only have broken software.
: Someone did actually have a demo of a small fs that allowed you to
: fiddle with the status but possibly the code could get smarter for
: "exclusive user of media". I'm not sure if that is worth it.
Do you have the name of the fs and/or the name of author?
Do we have a clear understanding that this fs would only
be a benefit if *All* the different ways to access the device would
use the same policy enforcement and consistently allow or
disallow certain operations regardless of the access method?
Regards,
Elias
next prev parent reply other threads:[~2005-01-25 9:33 UTC|newest]
Thread overview: 14+ messages / expand[flat|nested] mbox.gz Atom feed top
2005-01-22 2:27 [PATCH] drivers/block/scsi_ioctl.c, Video DVD playback support Elias da Silva
2005-01-24 8:36 ` Jens Axboe
2005-01-24 19:59 ` Elias da Silva
2005-01-24 20:39 ` Jens Axboe
2005-01-24 22:10 ` Elias da Silva
2005-01-25 0:01 ` Alan Cox
2005-01-25 8:05 ` Jens Axboe
2005-01-25 9:29 ` Elias da Silva [this message]
2005-01-25 12:44 ` Alan Cox
2005-01-25 15:52 ` Elias da Silva
2005-01-25 12:45 ` Jens Axboe
2005-01-25 16:13 ` Elias da Silva
2005-01-25 16:21 ` Jens Axboe
2005-01-25 16:28 ` Elias da Silva
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=200501251029.22646.silva@aurigatec.de \
--to=silva@aurigatec.de \
--cc=alan@lxorguk.ukuu.org.uk \
--cc=axboe@suse.de \
--cc=linux-kernel@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox