From: Vladimir Sementsov-Ogievskiy <vsementsov@virtuozzo.com>
To: "Philippe Mathieu-Daudé" <philmd@redhat.com>, qemu-devel@nongnu.org
Cc: Fam Zheng <fam@euphon.net>, Markus Armbruster <armbru@redhat.com>,
qemu-block@nongnu.org, Kevin Wolf <kwolf@redhat.com>,
Max Reitz <mreitz@redhat.com>,
Prasad J Pandit <ppandit@redhat.com>, Bandan Das <bsd@redhat.com>
Subject: Re: [PATCH 3/3] docs/secure-coding-practices: Describe null-co/zeroes-co block drivers
Date: Wed, 10 Mar 2021 15:40:59 +0300 [thread overview]
Message-ID: <42d495fc-c16c-3a8b-40e5-efd24a0f8251@virtuozzo.com> (raw)
In-Reply-To: <20210310114314.1068957-4-philmd@redhat.com>
10.03.2021 14:43, Philippe Mathieu-Daudé wrote:
> Document that security reports must not use the 'null-co' block
> driver, as it leaves memory uninitialized on purposed (this is
> a performance feature).
> Reports must be send using the 'zeroes-co' driver.
>
> Signed-off-by: Philippe Mathieu-Daudé <philmd@redhat.com>
> ---
> docs/devel/secure-coding-practices.rst | 7 +++++++
> 1 file changed, 7 insertions(+)
>
> diff --git a/docs/devel/secure-coding-practices.rst b/docs/devel/secure-coding-practices.rst
> index cbfc8af67e6..64d61085804 100644
> --- a/docs/devel/secure-coding-practices.rst
> +++ b/docs/devel/secure-coding-practices.rst
> @@ -104,3 +104,10 @@ structures and only process the local copy. This prevents
> time-of-check-to-time-of-use (TOCTOU) race conditions that could cause QEMU to
> crash when a vCPU thread modifies guest RAM while device emulation is
> processing it.
> +
> +Use of null-co / zeroes-co block drivers
> +----------------------------------------
> +
> +When reporting security issues, the null-co block driver must not be used,
> +as it is designed for performance and its read accesses are not initialized.
> +The zeroes-co block driver must be used instead.
>
How much it differs from just document that when reporting security issues the null-co block driver must be used with read-zeroes=true?
--
Best regards,
Vladimir
next prev parent reply other threads:[~2021-03-10 12:42 UTC|newest]
Thread overview: 10+ messages / expand[flat|nested] mbox.gz Atom feed top
2021-03-10 11:43 [PATCH 0/3] block: Introduce the 'zeroes-co' driver to help security reports Philippe Mathieu-Daudé
2021-03-10 11:43 ` [PATCH 1/3] block: Introduce the 'zeroes-co' driver Philippe Mathieu-Daudé
2021-03-10 11:43 ` [RFC PATCH 2/3] tests/test-blockjob: Use zeroes-co instead of null-co, read-zeroes=on Philippe Mathieu-Daudé
2021-03-10 11:43 ` [PATCH 3/3] docs/secure-coding-practices: Describe null-co/zeroes-co block drivers Philippe Mathieu-Daudé
2021-03-10 12:40 ` Vladimir Sementsov-Ogievskiy [this message]
2021-03-10 11:55 ` [PATCH 0/3] block: Introduce the 'zeroes-co' driver to help security reports Daniel P. Berrangé
2021-03-10 12:29 ` Philippe Mathieu-Daudé
2021-03-10 12:32 ` Fam Zheng
2021-03-10 12:37 ` Philippe Mathieu-Daudé
2021-03-10 14:24 ` Fam Zheng
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=42d495fc-c16c-3a8b-40e5-efd24a0f8251@virtuozzo.com \
--to=vsementsov@virtuozzo.com \
--cc=armbru@redhat.com \
--cc=bsd@redhat.com \
--cc=fam@euphon.net \
--cc=kwolf@redhat.com \
--cc=mreitz@redhat.com \
--cc=philmd@redhat.com \
--cc=ppandit@redhat.com \
--cc=qemu-block@nongnu.org \
--cc=qemu-devel@nongnu.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).