Re: [PATCH v1 1/8] virtio: Force only split mode with protected guest

From: Jason Wang
Date: Thu Jun 03 2021 - 22:21:01 EST

Next message: Hugh Dickins: "Re: [PATCH 1/7] mm/thp: fix __split_huge_pmd_locked() on shmem migration entry"
Previous message: Jiabing Wan: "Re:Re: [PATCH] staging: rtl8723bs: core: fix some incorrect type warnings"
In reply to: Jason Wang: "Re: [PATCH v1 1/8] virtio: Force only split mode with protected guest"
Next in thread: Andi Kleen: "[PATCH v1 2/8] virtio: Add boundary checks to virtio ring"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

在 2021/6/4 上午1:33, Andy Lutomirski 写道:

On 6/2/21 5:41 PM, Andi Kleen wrote:

Only allow split mode when in a protected guest. Followon
patches harden the split mode code paths, and we don't want
an malicious host to force anything else. Also disallow
indirect mode for similar reasons.

I read this as "the virtio driver is buggy. Let's disable most of the
buggy code in one special case in which we need a driver without bugs.
In all the other cases (e.g. hardware virtio device connected over
USB-C), driver bugs are still allowed."

Can we just fix the driver without special cases?

I think we can, this is what this series tries to do:

https://www.spinics.net/lists/kvm/msg241825.html

It tries to fix without a special caring for any specific features.

Thanks

--Andy

Next message: Hugh Dickins: "Re: [PATCH 1/7] mm/thp: fix __split_huge_pmd_locked() on shmem migration entry"
Previous message: Jiabing Wan: "Re:Re: [PATCH] staging: rtl8723bs: core: fix some incorrect type warnings"
In reply to: Jason Wang: "Re: [PATCH v1 1/8] virtio: Force only split mode with protected guest"
Next in thread: Andi Kleen: "[PATCH v1 2/8] virtio: Add boundary checks to virtio ring"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]