Announcement

Collapse
No announcement yet.

The Linux Graphics Driver Stack Remains Insecure

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • phoronix
    started a topic The Linux Graphics Driver Stack Remains Insecure

    The Linux Graphics Driver Stack Remains Insecure

    Phoronix: The Linux Graphics Driver Stack Remains Insecure

    The Linux graphics driver stack remains currently insecure with some fundamental issues that jeopardize the Linux desktop's integrity, but improvements are still being made to address the current issues...

    http://www.phoronix.com/vr.php?view=MTI5MTM

  • Hamish Wilson
    replied
    Originally posted by bridgman View Post
    Before this thread goes off the rails like the rest of them, it's probably worth mentioning...
    He is learning I see.

    Leave a comment:


  • Delgarde
    replied
    Originally posted by bridgman View Post
    Before this thread goes off the rails like the rest of them, it's probably worth mentioning that code implemented for "security" also provides increased "stability" by intercepting bad accesses caused by driver or app bugs, rather than letting them go through and possibly cause eventual crash/hang problems.
    Yeah, that kind of damage limitation is good... makes it easier to fix future problems, by ensuring the symptoms occur closer to whatever is causing them.

    Leave a comment:


  • bridgman
    replied
    Before this thread goes off the rails like the rest of them, it's probably worth mentioning that code implemented for "security" also provides increased "stability" by intercepting bad accesses caused by driver or app bugs, rather than letting them go through and possibly cause eventual crash/hang problems.

    The security measures being discussed are aimed at making sure the graphics stack is not *worse* than the rest of the Linux stack, not aiming for some abstract higher level of security.
    Last edited by bridgman; 02-03-2013, 01:32 PM.

    Leave a comment:


  • hubick
    replied
    Originally posted by Calinou View Post
    So you're reducing nouveau performance just for "security"??
    just for security?

    You're a PHP programmer, aren't you?

    Leave a comment:


  • bridgman
    replied
    The alternative is scanning every submitted command buffer which is usually even slower.

    And yes, all the drivers are "slowed down for security" AFAIK.

    Leave a comment:


  • Calinou
    replied
    Originally posted by M?P?F View Post
    We always used hw contexts on Nouveau and switching delay isn't that high.
    So you're reducing nouveau performance just for "security"??

    Leave a comment:


  • bridgman
    replied
    Sounds like it was a great presentation, sorry I missed it.

    Leave a comment:


  • MuPuF
    replied
    Originally posted by bridgman View Post
    Believe we are already doing this for GCN hardware. It's not actually a separate VM (didn't think Nouveau does that either), just a separate virtual address space**, but we do use the GPUVM page tables to control what the GPU can access. GPUVM is also implemented for Cayman but don't remember if it's enabled by default yet.

    ** Yay for confusing acronyms... VM can be Virtual Memory or Virtual Machine, but "separate VM" implies Virtual Machine...
    Yeah, I meant virtual address space, by VM I meant Virtual Memory.

    Originally posted by bridgman View Post
    AMD GPUs have hardware support to minimize context switching delays in Cayman, GCN and beyond... basically the ability to have multiple page tables, each associated with a "VM ID" or VMID, then have the hardware automatically switch between them as needed. The HW supports a finite number of VMIDs so they do need to be managed carefully but starting with Cayman there are enough VMIDs to mimimize the overhead.

    As mentioned, it is possible to use GPUVM in earlier hardware but without VMID support the context switching delays make it impractical so we use continue to use command submission validation for older hardware.
    Anyway, good to know radeon switched to using them instead of command submission validation. We always used hw contexts on Nouveau and switching delay isn't that high.

    Leave a comment:


  • hubick
    replied
    I hope they sort this out, especially given the rise of WebGL and how much closer it let's potentially malicious code get to these kinds of issues.

    I think Linux users should really welcome WebGL, as it has the potential to be revolutionary in terms of the number games which are accessible to Linux users. The vast majority of gaming is in casual games, and those are a great target for WebGL. Yay for cross-platform standards!

    Leave a comment:

Working...
X