net/smc: Add warning about remote memory exposure

[ Upstream commit 19a0f7e3 ] The driver explicitly bypasses APIs to register all memory once a connection is made, and thus allows remote access to memory. Signed-off-by: Christoph Hellwig <hch@lst.de> Signed-off-by: Leon Romanovsky <leon@kernel.org> Acked-by: Ursula Braun <ubraun@linux.vnet.ibm.com> Signed-off-by: David S. Miller <davem@davemloft.net> Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>

net/smc: Add warning about remote memory exposure
[ Upstream commit 19a0f7e3 ] The driver explicitly bypasses APIs to register all memory once a connection is made, and thus allows remote access to memory. Signed-off-by: Christoph Hellwig <hch@lst.de> Signed-off-by: Leon Romanovsky <leon@kernel.org> Acked-by: Ursula Braun <ubraun@linux.vnet.ibm.com> Signed-off-by: David S. Miller <davem@davemloft.net> Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
a19f55f9 · Christoph Hellwig · Greg Kroah-Hartman · 516b3ed9 · a19f55f9
Commit a19f55f9 authored May 16, 2017 by Christoph Hellwig Committed by Greg Kroah-Hartman Jun 07, 2017
Hide whitespace changes
Inline Side-by-side

Showing with 4 additions and 0 deletions

net/smc/Kconfig net/smc/Kconfig +4 -0

No files found.
--- a/net/smc/Kconfig
+++ b/net/smc/Kconfig
@@ -8,6 +8,10 @@ config SMC
 	  The Linux implementation of the SMC-R solution is designed as
 	  a separate socket family SMC.

+	  Warning: SMC will expose all memory for remote reads and writes
+	  once a connection is established.  Don't enable this option except
+	  for tightly controlled lab environment.
+
 	  Select this option if you want to run SMC socket applications

 config SMC_DIAG