Received: by 10.223.185.116 with SMTP id b49csp1026980wrg; Fri, 16 Feb 2018 11:03:54 -0800 (PST) X-Google-Smtp-Source: AH8x22546siU8+RBU6IZSobNkHeuAzaiweWHfOC3TR0S1aBT+QQ99qdyRteuJ8PTx5LecktZpafZ X-Received: by 10.98.94.71 with SMTP id s68mr6988415pfb.135.1518807834248; Fri, 16 Feb 2018 11:03:54 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1518807834; cv=none; d=google.com; s=arc-20160816; b=WDMNI7isaLHqcXiFqGGn6KaCd92b3FkhyB7BFS6I6RIru19mj93NO5JPYfiMjTVdPx p7Ft3Nux/kOw5i07bYpSq8kbRHGNod4XvurjY/kG9Tw5z9An4fK5gpuz2djMtOtloX5N jLGBIbhLyfTVFxrbgmLU9cPka48B5S3y0OZXXIaYm1BvYejc28mXxTv7h4lAXSD2xcxS rI74Bnn/906zKav+GpQS6igOE3EWR+Fp/3AF6OB3P6X55grc2c5Boy7lbQ6dcfVOIkGc Jkem05/6xqMKPJAwZ6ssiOmdHXauiZvSivG6DmULKDD1PloNIlBD+l3PS3EnGbHU6PkC r1Vw== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:cc:to:subject:message-id:date:from :references:in-reply-to:mime-version:dkim-signature :arc-authentication-results; bh=GcKUzvazc4aDK/54yUPeQrXbObftlmYpDLzhRP32/CA=; b=Ba5J7Y7JbOCHGIzvN4SsJalKnbuPc5u1LI3Bx1dEytgHhMXKZW5lzpEPiEMJW60een 1sL2RjG0MDNu+x4qHJvDJykpTCJodN9xv3OsQGS6oXprz+M3Z8QAaOIaXVAlQjRSUG4h MbHTixVy6fFGwfCpEEKqsMM55Dov/2Wnc0QeCRA3+jtSkN4Id+pvf2OWvG3ZycX27hdv 6tUJV4kfIwxiEZrEhXnkycvr1lIGZ6KRYtL8J7gDAyhF9HcutxYJf1cWDDZURpypd14j 2eEE+7E0DozYnKZC/cF6D7YEgmVjEALWPlbxsiUOAgPwb9PKhOJNZUut1+oqHPp5ZCLQ QkZQ== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@linaro.org header.s=google header.b=dD94faFD; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=linaro.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id 3-v6si1770358pln.468.2018.02.16.11.03.40; Fri, 16 Feb 2018 11:03:54 -0800 (PST) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; dkim=pass header.i=@linaro.org header.s=google header.b=dD94faFD; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=linaro.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S935423AbeBPLSP (ORCPT + 99 others); Fri, 16 Feb 2018 06:18:15 -0500 Received: from mail-it0-f45.google.com ([209.85.214.45]:52816 "EHLO mail-it0-f45.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S935394AbeBPLSO (ORCPT ); Fri, 16 Feb 2018 06:18:14 -0500 Received: by mail-it0-f45.google.com with SMTP id o13so1495348ito.2 for ; Fri, 16 Feb 2018 03:18:13 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=linaro.org; s=google; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=GcKUzvazc4aDK/54yUPeQrXbObftlmYpDLzhRP32/CA=; b=dD94faFDDkHDIT768d5nnl64nlkG56KoQALlIXoLs25BxyvE2pwIbfKf1ktHBP1Zl0 x2OFrRu8XGYPBRk2PAWd5dUUMjV32uq5XsZa4vjh7dg3Yp6locPlh8ckgF7klmB31rNA epESMcSp1tllSi017ZMV6zRfbuxZ+iFwIp0CU= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=GcKUzvazc4aDK/54yUPeQrXbObftlmYpDLzhRP32/CA=; b=uOginqyFQTHgsBq9LqgxQMm+RTH/ZNAVk2y+u3WP1XjD3uuJhw2C7umbnNH4/UKS/E 38XPhBqH82U2mmRj4K0rTu8wEVYqCHKFT32vPAcmFrxRdsXawwJFFB88+StBCbt/ySiW HWqHaH9Lmr08tP9z0uzkeAVqSMbIX5YDu2162UJZFSL1wtHBUdf3dYSE/4nduM7XFhg2 X3hyWYScavcDkNvcuWFmVaitbwI8yQlemhQitxsxqUnosMzapJOp8QlUjU6JNf1EX+JD z6DM2nsoLRHBrTUhRxa2DWJxkD/AVtshX4KR5oc7WxonfLiexwGN39JnHEfQJVA2jtn/ NlsA== X-Gm-Message-State: APf1xPC6KMi6cgjXFODFvo/yHSXq3NsdwMtDWVvVo9zO0tjwCc23aQoD AORKX+WY8y0USYXmGJI/GdvlTr1D04A+g/T4gjR9DA== X-Received: by 10.36.13.5 with SMTP id 5mr7589993itx.68.1518779893377; Fri, 16 Feb 2018 03:18:13 -0800 (PST) MIME-Version: 1.0 Received: by 10.107.138.209 with HTTP; Fri, 16 Feb 2018 03:18:12 -0800 (PST) In-Reply-To: <20180216110821.GB29042@pd.tnic> References: <20180215182208.35003-1-joe.konno@linux.intel.com> <20180216105548.GA29042@pd.tnic> <20180216110821.GB29042@pd.tnic> From: Ard Biesheuvel Date: Fri, 16 Feb 2018 11:18:12 +0000 Message-ID: Subject: Re: [PATCH 0/2] efivars: reading variables can generate SMIs To: Borislav Petkov Cc: Joe Konno , Matthew Garrett , Ingo Molnar , Andy Lutomirski , linux-efi@vger.kernel.org, Linux Kernel Mailing List , Jeremy Kerr , Andi Kleen , Tony Luck , Benjamin Drung , Peter Jones Content-Type: text/plain; charset="UTF-8" Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On 16 February 2018 at 11:08, Borislav Petkov wrote: > On Fri, Feb 16, 2018 at 10:58:47AM +0000, Ard Biesheuvel wrote: >> By your own reasoning above, that's a no-no as well. > > I'm sure we can come up with some emulation - the same way we did the > BIOS emulation. > >> But thanks for your input. Anyone else got something constructive to contribute? > > The not-breaking userspace is constructive contribution. The last > paragraph is my usual rant. > Fair enough. And I am not disagreeing with you either. So question to Joe: is it well defined which variables may exhibit this behavior? Given that UEFI variables are GUID scoped, would whitelisting certain GUIDs (the ones userland currently relies on to be readable my non-privileged users) and making everything else user-only solve this problem as well?