From owner-freebsd-current@FreeBSD.ORG Wed Jul 21 21:51:49 2004 Return-Path: Delivered-To: freebsd-current@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 8337516A4CE; Wed, 21 Jul 2004 21:51:49 +0000 (GMT) Received: from tora.nunu.org (YahooBB219003182029.bbtec.net [219.3.182.29]) by mx1.FreeBSD.org (Postfix) with ESMTP id 7777643D41; Wed, 21 Jul 2004 21:51:47 +0000 (GMT) (envelope-from simokawa@sat.t.u-tokyo.ac.jp) Received: from tora.nunu.org (unknown [192.168.1.2]) by tora.nunu.org (Postfix) with ESMTP id CE9014D1D6; Thu, 22 Jul 2004 06:53:09 +0900 (JST) Date: Thu, 22 Jul 2004 06:53:09 +0900 Message-ID: <87u0w1ni2i.wl@tora.nunu.org> From: Hidetoshi Shimokawa To: Doug Rabson In-Reply-To: <1090421941.7114.26.camel@builder02.qubesoft.com> References: <16634.47272.768935.436137@grasshopper.cs.duke.edu> <200407182039.10773.dfr@nlsystems.com> <16634.54674.966908.540880@grasshopper.cs.duke.edu> <200407182104.53221.dfr@nlsystems.com> <16638.32914.509773.486468@grasshopper.cs.duke.edu> <1090421941.7114.26.camel@builder02.qubesoft.com> User-Agent: Wanderlust/2.10.1 (Watching The Wheels) SEMI/1.14.5 (Awara-Onsen) FLIM/1.14.5 (Demachiyanagi) APEL/10.6 MULE XEmacs/21.4 (patch 14) (Reasonable Discussion) (i386--freebsd) MIME-Version: 1.0 (generated by SEMI 1.14.5 - "Awara-Onsen") Content-Type: text/plain; charset=US-ASCII cc: simokawa@freebsd.org cc: freebsd-current@freebsd.org cc: Andrew Gallatin Subject: Re: Excellent job on the firewire support! X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 21 Jul 2004 21:51:49 -0000 At Wed, 21 Jul 2004 15:59:01 +0100, Doug Rabson wrote: > > If no, assuming I had a Windows or Linux box on the firewire bus, would it be > > possible to access physical memory from a different OS? > > Windows XP has some kind of firewire debug driver that you might have to > load (I haven't read the docs on that). I don't think the linux driver > enables physical access by default but it would be easy to hack it in > (just write all ones to the right fwohci register). The physical access is usually used for SBP-2 initiator mode. Without physical access, the performance of SBP-2 should be poorer and we see more load on CPU. The physical access can be restricted by two way. You can restrict it per node-id and by physical memory range(upper bound). As far as I have tried, WindowsXP seems not to allow physical access of usual nodes. But I think you can easily cheat it by a node with sbp target mode(use sbp_targ(4) ;-). In my opinion, it's hard to ensure security with current OHCI specification. https://www.netsecurity.ne.jp/article/2/6202.html This page describes this problem in Japanese. It says that information source is "iDEFENSE Intelligence Operations, June 18, 2002" but I cannot find the original source (in English). /\ Hidetoshi Shimokawa \/ simokawa@sat.t.u-tokyo.ac.jp PGP public key: http://www.sat.t.u-tokyo.ac.jp/~simokawa/pgp.html