From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from eggs.gnu.org ([2001:4830:134:3::10]:41503)
	by lists.gnu.org with esmtp (Exim 4.71)
	(envelope-from <eblake@redhat.com>) id 1ZVpI7-000194-5c
	for qemu-devel@nongnu.org; Sat, 29 Aug 2015 19:12:08 -0400
Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71)
	(envelope-from <eblake@redhat.com>) id 1ZVpI3-00089i-2V
	for qemu-devel@nongnu.org; Sat, 29 Aug 2015 19:12:07 -0400
Received: from mx1.redhat.com ([209.132.183.28]:55087)
	by eggs.gnu.org with esmtp (Exim 4.71)
	(envelope-from <eblake@redhat.com>) id 1ZVpI2-00089d-TX
	for qemu-devel@nongnu.org; Sat, 29 Aug 2015 19:12:03 -0400
References: <CAKyx-3NoTTH6XGsiLP-Z1G4nzMWvm1_+0ojkLz07vujXzEkZuw@mail.gmail.com>
	<55E1D289.9000202@redhat.com>
	<C9A57B2A-6B7D-4201-9D9E-95F4114E8FC5@gmail.com>
	<55E1E03A.6060002@redhat.com>
	<1DBD1CD3-3C0E-4AC6-97EB-FC51F09EF5F8@gmail.com>
	<55E1F385.2040409@redhat.com>
	<94F6A4AC-9CB6-41A0-BD31-1E680C0700C0@gmail.com>
	<55E20D7B.7000208@redhat.com>
	<26E35BCA-84A1-4622-B603-209B1A527125@gmail.com>
From: Eric Blake <eblake@redhat.com>
Message-ID: <55E23C41.2010706@redhat.com>
Date: Sat, 29 Aug 2015 17:12:01 -0600
MIME-Version: 1.0
In-Reply-To: <26E35BCA-84A1-4622-B603-209B1A527125@gmail.com>
Content-Type: multipart/signed; micalg=pgp-sha256;
	protocol="application/pgp-signature";
	boundary="pSR5gwidrts4Su2w2lhe25pLulILe0N2V"
Subject: Re: [Qemu-devel] Mount image file feature
List-Id: <qemu-devel.nongnu.org>
List-Unsubscribe: <https://lists.nongnu.org/mailman/options/qemu-devel>,
	<mailto:qemu-devel-request@nongnu.org?subject=unsubscribe>
List-Archive: <http://lists.nongnu.org/archive/html/qemu-devel>
List-Post: <mailto:qemu-devel@nongnu.org>
List-Help: <mailto:qemu-devel-request@nongnu.org?subject=help>
List-Subscribe: <https://lists.nongnu.org/mailman/listinfo/qemu-devel>,
	<mailto:qemu-devel-request@nongnu.org?subject=subscribe>
To: Programmingkid <programmingkidx@gmail.com>, Max Reitz <mreitz@redhat.com>
Cc: Peter Maydell <peter.maydell@linaro.org>, qemu-devel qemu-devel <qemu-devel@nongnu.org>

This is an OpenPGP/MIME signed message (RFC 4880 and 3156)
--pSR5gwidrts4Su2w2lhe25pLulILe0N2V
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: quoted-printable

On 08/29/2015 02:18 PM, Programmingkid wrote:

>>
>> (1) 'change' always uses 'raw' as the format, but the selector
>> apparently offers you the full range of image formats
>> (supportedImageFileTypes).
>=20
> So far it has worked out just fine. Doesn't QEMU detect the format itse=
lf?

You DON'T want to rely on qemu detecting the format itself.  That is a
CVE waiting to happen.  If you hand a raw disk to the guest, and the
guest writes particular metadata to resemble some other format, and then
qemu probes that other format, you have allowed the guest to take over
the host.

--=20
Eric Blake   eblake redhat com    +1-919-301-3266
Libvirt virtualization library http://libvirt.org


--pSR5gwidrts4Su2w2lhe25pLulILe0N2V
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: OpenPGP digital signature
Content-Disposition: attachment; filename="signature.asc"

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2
Comment: Public key at http://people.redhat.com/eblake/eblake.gpg
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iQEcBAEBCAAGBQJV4jxBAAoJEKeha0olJ0NqlEcIAJWeDZ1rDh5PZxIVY8gXUfrG
9hJOCA8Tc8cD8C6++TNLvgKjlzmxfjga73Qcq1bK2gCcVJsQnzVCGBH9ratRhM+i
spqv2sXq7JI7o7pfcacN27yS4pnm8SXxE8W8DbLY23s3agtIocVYGeMAZqhc6xvT
bh5V8huE+86ysVxETRBc4Wa2HcJ0geVWpatsl6qlYLX5vIycko+vbzuIAySsqkST
T9AsUkPvDULvVf3CwyBnRlAzkRl9N03x+RO+Uf27imAGx45UhSTXrfz5mfN6EHPm
y7ABWu07P9rsQG+VbsH+Q9mDEMnpV/W76wmpoEnz6l9SQ8/1o+98L621zthd2Qk=
=c7hT
-----END PGP SIGNATURE-----

--pSR5gwidrts4Su2w2lhe25pLulILe0N2V--