[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [PATCH v13 6/9] gfxstream + rutabaga: add initial support for gfxstream

To: Alyssa Ross <hi@xxxxxxxxx>, Gurchetan Singh <gurchetansingh@xxxxxxxxxxxx>, Mark Cave-Ayland <mark.cave-ayland@xxxxxxxxxxxx>
From: Akihiko Odaki <akihiko.odaki@xxxxxxxxx>
Date: Fri, 22 Sep 2023 16:54:51 +0900
Cc: qemu-devel@xxxxxxxxxx, Xenia Ragiadakou <xenia.ragiadakou@xxxxxxx>, marcandre.lureau@xxxxxxxxxx, ray.huang@xxxxxxx, alex.bennee@xxxxxxxxxx, shentey@xxxxxxxxx, ernunes@xxxxxxxxxx, manos.pitsidianakis@xxxxxxxxxx, philmd@xxxxxxxxxx, Gerd Hoffmann <kraxel@xxxxxxxxxx>, "Michael S . Tsirkin" <mst@xxxxxxxxxx>, Stefano Stabellini <sstabellini@xxxxxxxxxx>, Anthony PERARD <anthony.perard@xxxxxxxxxx>, Antonio Caggiano <quic_acaggian@xxxxxxxxxxx>, "Dr . David Alan Gilbert" <dgilbert@xxxxxxxxxx>, Robert Beckett <bob.beckett@xxxxxxxxxxxxx>, Dmitry Osipenko <dmitry.osipenko@xxxxxxxxxxxxx>, xen-devel@xxxxxxxxxxxxxxxxxxxx, Albert Esteve <aesteve@xxxxxxxxxx>, Roger Pau Monné <roger.pau@xxxxxxxxxx>, Alex Deucher <alexander.deucher@xxxxxxx>, Christian König <christian.koenig@xxxxxxx>, Pierre-Eric Pelloux-Prayer <pierre-eric.pelloux-prayer@xxxxxxx>, Honglei Huang <honglei1.huang@xxxxxxx>, Julia Zhang <julia.zhang@xxxxxxx>, Chen Jiqian <Jiqian.Chen@xxxxxxx>
Delivery-date: Fri, 22 Sep 2023 07:55:06 +0000
List-id: Xen developer discussion <xen-devel.lists.xenproject.org>

On 2023/09/22 16:42, Alyssa Ross wrote:

Akihiko Odaki <akihiko.odaki@xxxxxxxxx> writes:

Practically there is very low chance to hit the bug. I think only
fuzzers and malicious actors will trigger it, and probably no one will
dare using virtio-gpu-rutabaga or virtio-gpu-gl in a security-sensitive
context.


Well, this is exactly what Chrome OS does, albiet with crosvm rather
than QEMU, right?

I think so, but QEMU's virtio-gpu-rutabaga and virtio-gpu-gl should bevery different from crosvm in terms that it does not isolate thegraphics stack into a separate process while I believe crosvm does so.Having the entire graphics stack in a VMM is a security nightmare; itmeans giving a complex shader compiler the highest privilege. We need touse vhost-user-gpu instead for process isolation.

Since we already have such a serious security hazard, I don't think wehave to care much about security. But security approximately equals toreliability, which matters for virtio-gpu-rutabaga and virtio-gpu-gltoo, so it's still nice to get the bug fixed.

References:
- Re: [PATCH v13 6/9] gfxstream + rutabaga: add initial support for gfxstream
  - From: Akihiko Odaki
- Re: [PATCH v13 6/9] gfxstream + rutabaga: add initial support for gfxstream
  - From: Mark Cave-Ayland
- Re: [PATCH v13 6/9] gfxstream + rutabaga: add initial support for gfxstream
  - From: Gurchetan Singh
- Re: [PATCH v13 6/9] gfxstream + rutabaga: add initial support for gfxstream
  - From: Akihiko Odaki
- Re: [PATCH v13 6/9] gfxstream + rutabaga: add initial support for gfxstream
  - From: Alyssa Ross

Prev by Date: Re: [PATCH v13 6/9] gfxstream + rutabaga: add initial support for gfxstream
Next by Date: Re: [PATCH v3] console/serial: bump buffer from 16K to 128K
Previous by thread: Re: [PATCH v13 6/9] gfxstream + rutabaga: add initial support for gfxstream
Next by thread: [xen-unstable test] 183074: regressions - FAIL
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.