RE: [PATCH 0/8][RFC] IO latency/throughput fixes

From: Hua Zhong
Date: Mon Apr 06 2009 - 18:53:29 EST

Next message: Pallipadi, Venkatesh: "Re: 2.6.29 git master and PAT problems"
Previous message: Jim Keniston: "Re: [PATCH -tip 3/6 V4.1] x86: instruction decorder API"
In reply to: Ray Lee: "Re: [PATCH 0/8][RFC] IO latency/throughput fixes"
Next in thread: Alan Cox: "Re: [PATCH 0/8][RFC] IO latency/throughput fixes"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> Security on an embedded device starts with controlling physical
> access. If they have access to the storage media all bets are off,
> whether it's data=ordered or not. (Access to the storage media is
> really what we're talking about here -- medical data, for example,
> hitting the platter before the metadata updates that then make that
> data unaccessible to other userspace processes.)
>
> Because *if* they have access to the media, they can replace any
> running code on that box, and your security is worthless.
>
> So no, I don't see how that's a valid argument.

The problem with security has nothing to do with embedded. It's
that when you commit metadata first and crash before you write
the data, then you get to see random blocks which might contain
sensitive information from other users.

Hua

--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Pallipadi, Venkatesh: "Re: 2.6.29 git master and PAT problems"
Previous message: Jim Keniston: "Re: [PATCH -tip 3/6 V4.1] x86: instruction decorder API"
In reply to: Ray Lee: "Re: [PATCH 0/8][RFC] IO latency/throughput fixes"
Next in thread: Alan Cox: "Re: [PATCH 0/8][RFC] IO latency/throughput fixes"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]