On 01/05/2012 11:05 AM, Paolo Bonzini wrote:
On 12/23/2011 03:39 PM, Paolo Bonzini wrote:
QEMU does have a scsi option (to be used like -device
virtio-blk-pci,drive=foo,scsi=off). However, it only
masks the feature bit, and does not reject the command
if a malicious guest disregards the feature
On 12/23/2011 08:39 AM, Paolo Bonzini wrote:
QEMU does have a scsi option (to be used like -device
virtio-blk-pci,drive=foo,scsi=off). However, it only
masks the feature bit, and does not reject the command
if a malicious guest disregards the feature bits and
issues a request.
Without this
On 12/23/2011 03:39 PM, Paolo Bonzini wrote:
QEMU does have a scsi option (to be used like -device
virtio-blk-pci,drive=foo,scsi=off). However, it only
masks the feature bit, and does not reject the command
if a malicious guest disregards the feature bits and
issues a request.
Without this
On Fri, Dec 23, 2011 at 03:39:03PM +0100, Paolo Bonzini wrote:
QEMU does have a scsi option (to be used like -device
virtio-blk-pci,drive=foo,scsi=off). However, it only
masks the feature bit, and does not reject the command
if a malicious guest disregards the feature bits and
issues a
QEMU does have a scsi option (to be used like -device
virtio-blk-pci,drive=foo,scsi=off). However, it only
masks the feature bit, and does not reject the command
if a malicious guest disregards the feature bits and
issues a request.
Without this patch, using scsi=off does not protect you
from