[PATCH 01/12] Security: Add CAP_COMPROMISE_KERNEL
H. Peter Anvin
hpa at zytor.com
Tue Mar 19 22:48:25 EDT 2013
On 03/19/2013 06:28 PM, Matthew Garrett wrote:
> Mm. The question is whether we can reliably determine the ranges a device should be able to access without having to trust userspace (and, ideally, without having to worry about whether iommu vendors have done their job). It's pretty important for PCI passthrough, so we do need to care.
It is actually very simple: the device should be able to DMA into/out of:
1. pinned pages
2. owned by the process controlling the device
... and nothing else.
-hpa
--
H. Peter Anvin, Intel Open Source Technology Center
I work for Intel. I don't speak on their behalf.
More information about the kexec
mailing list