Re: Standardizing an MSR or other hypercall to get an RNG seed?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Subject: Re: Standardizing an MSR or other hypercall to get an RNG seed?
From: "Theodore Ts'o" <tytso@xxxxxxx>
Date: Fri, 19 Sep 2014 19:35:02 -0400
Cc: Andy Lutomirski <luto@xxxxxxxxxxxxxx>, "Nakajima, Jun" <jun.nakajima@xxxxxxxxx>, David Hepkin <davidhep@xxxxxxxxxxxxx>, Paolo Bonzini <pbonzini@xxxxxxxxxx>, KY Srinivasan <kys@xxxxxxxxxxxxx>, Mathew John <mathewj@xxxxxxxxxxxxx>, John Starks <John.Starks@xxxxxxxxxxxxx>, kvm list <kvm@xxxxxxxxxxxxxxx>, Gleb Natapov <gleb@xxxxxxxxxx>, Niels Ferguson <niels@xxxxxxxxxxxxx>, Jake Oshins <jakeo@xxxxxxxxxxxxx>, Linux Virtualization <virtualization@xxxxxxxxxxxxxxxxxxxxxxxxxx>
In-reply-to: <541CBC71.6050707@zytor.com>
References: <CAL54oT1Q8kABge=t4s5REVWWakboON-6vfszMRkVz=ks_3vRoA@mail.gmail.com> <CALCETrUXz1B=x6rjkQri_qU5Tv-XM5du=rUr-=E-EfNSvOnThg@mail.gmail.com> <CALCETrWZ1cF23aT82yGfTKS48d2G+_Od7hEkAzDWzDhqpHNVqA@mail.gmail.com> <CAL54oT0sibBiLSHf+eajdRgxqs1jgSzdTTCWBUH9M25ZL10EzA@mail.gmail.com> <541C5C8A.6030304@zytor.com> <20140919220537.GR26995@thunk.org> <CALCETrXct3eqJH7wATfR=H3NrAHXMkydRKsctVhpzZ4jsv87bw@mail.gmail.com> <20140919225727.GT26995@thunk.org> <CALCETrVbhvB3ExxxNQRB21NYbpvoXgKpX6XxzMKsd=b47rKCeA@mail.gmail.com> <541CBC71.6050707@zytor.com>
User-agent: Mutt/1.5.23 (2014-03-12)

On Fri, Sep 19, 2014 at 04:29:53PM -0700, H. Peter Anvin wrote:
> 
> Actually, a much bigger reason is because it lets rogue guest *user
> space*, even will a well-behaved guest OS, do something potentially
> harmful to the host.

Right, but if the host kernel is dependent on the guest OS for
security, the game is over.  The Guest Kernel must NEVER been able to
do anything harmful to the host.  If it can, it is a severe security
bug in KVM that must be fixed ASAP.

						- Ted
--
To unsubscribe from this list: send the line "unsubscribe kvm" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at  http://vger.kernel.org/majordomo-info.html

Follow-Ups:
- Re: Standardizing an MSR or other hypercall to get an RNG seed?
  - From: H. Peter Anvin
- Re: Standardizing an MSR or other hypercall to get an RNG seed?
  - From: Andy Lutomirski

References:
- Re: Standardizing an MSR or other hypercall to get an RNG seed?
  - From: Nakajima, Jun
- Re: Standardizing an MSR or other hypercall to get an RNG seed?
  - From: Andy Lutomirski
- Re: Standardizing an MSR or other hypercall to get an RNG seed?
  - From: Andy Lutomirski
- Re: Standardizing an MSR or other hypercall to get an RNG seed?
  - From: Nakajima, Jun
- Re: Standardizing an MSR or other hypercall to get an RNG seed?
  - From: H. Peter Anvin
- Re: Standardizing an MSR or other hypercall to get an RNG seed?
  - From: Theodore Ts'o
- Re: Standardizing an MSR or other hypercall to get an RNG seed?
  - From: Andy Lutomirski
- Re: Standardizing an MSR or other hypercall to get an RNG seed?
  - From: Theodore Ts'o
- Re: Standardizing an MSR or other hypercall to get an RNG seed?
  - From: Andy Lutomirski
- Re: Standardizing an MSR or other hypercall to get an RNG seed?
  - From: H. Peter Anvin

Prev by Date: Re: Standardizing an MSR or other hypercall to get an RNG seed?
Next by Date: Re: Standardizing an MSR or other hypercall to get an RNG seed?
Previous by thread: Re: Standardizing an MSR or other hypercall to get an RNG seed?
Next by thread: Re: Standardizing an MSR or other hypercall to get an RNG seed?
Index(es):
- Date
- Thread

[Index of Archives] [KVM ARM] [KVM ia64] [KVM ppc] [Virtualization Tools] [Spice Development] [Libvirt] [Libvirt Users] [Linux USB Devel] [Linux Audio Users] [Yosemite Questions] [Linux Kernel] [Linux SCSI] [XFree86]