Re: Gitorious should use CRC128 / 256 / 512 instead of SHA-1

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



On 1/15/23 14:53, Michal Suchánek wrote:
Many people think that bit errors cannot happen because the memory uses ECC
and the file system uses cryptographic hashes to verify the integrity of the
data. But what many people forget about is that when copying data from
memory to disk, typically using a DMA channel data is copied w/o any kind of
integrity protection, because the integrity protection is not end-to-end.
The integrity protection is only per-link.
>
So long as all links have integrity protection it's end-to-end.
>

Hi Michael,

You clearly don't see what this is about! Only if the same CRC mechanism is end-to-end, you don't have any good integrity mechanism at all!

Let me try to explain what this is about in very simple words. Because memcpy() does not copy the ECC CRC values along with the data, it is an unsafe memory copy mechanism, which may introduce bit-errors without noticing. It does not help to only have ECC RAM or for that sake protect the PCI links.

--HPS



[Index of Archives]     [Linux Kernel Development]     [Gcc Help]     [IETF Annouce]     [DCCP]     [Netdev]     [Networking]     [Security]     [V4L]     [Bugtraq]     [Yosemite]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Linux SCSI]     [Fedora Users]

  Powered by Linux