Re: [PATCH v3 35/36] docs: Document security implications of debugging

qemu-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [PATCH v3 35/36] docs: Document security implications of debugging

From:	Philippe Mathieu-Daudé
Subject:	Re: [PATCH v3 35/36] docs: Document security implications of debugging
Date:	Tue, 27 Jun 2023 23:00:50 +0200
User-agent:	Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:102.0) Gecko/20100101 Thunderbird/102.12.0

On 27/6/23 18:09, Alex Bennée wrote:

From: Ilya Leoshkevich <iii@linux.ibm.com>

Now that the GDB stub explicitly implements reading host files (note
that it was already possible by changing the emulated code to open and
read those files), concerns may arise that it undermines security.

Document the status quo, which is that the users are already
responsible for securing the GDB connection themselves.

Reviewed-by: Alex Bennée <alex.bennee@linaro.org>
Signed-off-by: Ilya Leoshkevich <iii@linux.ibm.com>
Message-Id: <20230621203627.1808446-8-iii@linux.ibm.com>
Signed-off-by: Alex Bennée <alex.bennee@linaro.org>
---
  docs/system/gdb.rst | 15 +++++++++++++++
  1 file changed, 15 insertions(+)


Reviewed-by: Philippe Mathieu-Daudé <philmd@linaro.org>

[Prev in Thread]

Current Thread

[Next in Thread]

Re: [PATCH v3 22/36] include/hw/qdev-core: fixup kerneldoc annotations, (continued)
- [PATCH v3 19/36] plugins: update lockstep to use g_memdup2, Alex Bennée, 2023/06/27
  - Re: [PATCH v3 19/36] plugins: update lockstep to use g_memdup2, Philippe Mathieu-Daudé, 2023/06/27
- [PATCH v3 24/36] docs/devel: split qom-api reference into new file, Alex Bennée, 2023/06/27
- [PATCH v3 20/36] docs/devel: add some front matter to the devel index, Alex Bennée, 2023/06/27
  - Re: [PATCH v3 20/36] docs/devel: add some front matter to the devel index, Philippe Mathieu-Daudé, 2023/06/29
- [PATCH v3 33/36] gdbstub: Report the actual qemu-user pid, Alex Bennée, 2023/06/27
- [PATCH v3 23/36] docs/devel/qom.rst: Correct code style, Alex Bennée, 2023/06/27
- [PATCH v3 36/36] tests/tcg: Add a test for info proc mappings, Alex Bennée, 2023/06/27
- [PATCH v3 35/36] docs: Document security implications of debugging, Alex Bennée, 2023/06/27
  - Re: [PATCH v3 35/36] docs: Document security implications of debugging, Philippe Mathieu-Daudé <=
- [PATCH v3 32/36] gdbstub: Expose gdb_get_process() and gdb_get_first_cpu_in_process(), Alex Bennée, 2023/06/27
  - Re: [PATCH v3 32/36] gdbstub: Expose gdb_get_process() and gdb_get_first_cpu_in_process(), Philippe Mathieu-Daudé, 2023/06/27
- [PATCH v3 29/36] linux-user: Expose do_guest_openat() and do_guest_readlink(), Alex Bennée, 2023/06/27
- [PATCH v3 28/36] gdbstub: clean-up vcont handling to avoid goto, Alex Bennée, 2023/06/27
  - Re: [PATCH v3 28/36] gdbstub: clean-up vcont handling to avoid goto, Richard Henderson, 2023/06/28
- [PATCH v3 06/36] qemu-keymap: properly check return from xkb_keymap_mod_get_index, Alex Bennée, 2023/06/27
- [PATCH v3 18/36] plugins: fix memory leak while parsing options, Alex Bennée, 2023/06/27
- [PATCH v3 21/36] include/migration: mark vmstate_register() as a legacy function, Alex Bennée, 2023/06/27
- [PATCH v3 25/36] docs/devel: introduce some key concepts for QOM development, Alex Bennée, 2023/06/27
  - Re: [PATCH v3 25/36] docs/devel: introduce some key concepts for QOM development, Philippe Mathieu-Daudé, 2023/06/29

Prev by Date: Re: [PATCH v3 32/36] gdbstub: Expose gdb_get_process() and gdb_get_first_cpu_in_process()
Next by Date: Re: [PATCH v3 19/36] plugins: update lockstep to use g_memdup2
Previous by thread: [PATCH v3 35/36] docs: Document security implications of debugging
Next by thread: [PATCH v3 32/36] gdbstub: Expose gdb_get_process() and gdb_get_first_cpu_in_process()
Index(es):
- Date
- Thread