Received: by 2002:a05:6a10:c604:0:0:0:0 with SMTP id y4csp51082pxt; Wed, 4 Aug 2021 15:30:09 -0700 (PDT) X-Google-Smtp-Source: ABdhPJwoJYPwaBkkQ17dfe/SH/uNS+qF30oucdQCSl73sggXctN5xL4VMFwlwVPm/fb5rrppefLi X-Received: by 2002:a02:cc21:: with SMTP id o1mr1597457jap.114.1628116208353; Wed, 04 Aug 2021 15:30:08 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1628116208; cv=none; d=google.com; s=arc-20160816; b=NYY+eM4861ougB1V96AbWf+pHWNcZFR5iY8w/Vu0JxS/qIVzjOdlJeHwtznmqzdHsu fNTN72C19zy+3iA7jKy83uO19CDLjlqaILR2/7B5NWZirOwge96FTp48nkIMsdiH7VAQ VnCs4Y7dHbrcoJ71MF7zo7wNeNRY89oqaZdpg6LEEAuV5socjXGUXVJGPu4XCME3P0gO koBz9cfjvtDj6STvkvjw2BVRVS/OBMJHURwa0U9yvgB8gnCz3qUaPye99R6e4OECHdge 5IkWHwmif3fkMfxnLPiTHlYXKfArGohOBjSdo3nN+pb6vc/hvsyzIuQs6TAGlhw9QSja A5Bw== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:in-reply-to:content-disposition:mime-version :references:message-id:subject:cc:to:from:date:dkim-signature; bh=bpxyDpnvly9eIlMQTFPJ1aBcN9lOvzkoVYTJFUDJnqo=; b=uhfw//n5Q9wP7vpWmWg+MgUrXkuY1k23tUCsY0nbjlfgMXExtuRMtjWcU7hJdBxHD6 EzIYD1Hvf82KJ0WIlh8hJxW6InPIUjR+fx8jv/uoL3nmnHxOheQBjfpF5iCKwGq7LbUa FsB9jLx/q0AdQ/VAsdUnIp3yv85eg6c/ePXhOTFt0XQpmV0ix1HSE2YpDv7qQncvv9WA /9P2iZ+o0VJnuM1ocG2MpaezKRqtVTMytt+AQ15B1qKoJNY+kCWYHUVCxRILHXiyOcxU LK+6q9l5rlxVsGaHxyWgfNDPGZDj9Cp+hm/705qP0ZmGnDAh/gcY5jJhtNmUSPHoF//l jLKQ== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@infradead.org header.s=casper.20170209 header.b=iLoMBWKj; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18]) by mx.google.com with ESMTP id g6si3802114ilk.97.2021.08.04.15.29.56; Wed, 04 Aug 2021 15:30:08 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18; Authentication-Results: mx.google.com; dkim=pass header.i=@infradead.org header.s=casper.20170209 header.b=iLoMBWKj; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S238343AbhHDVIH (ORCPT + 99 others); Wed, 4 Aug 2021 17:08:07 -0400 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:33612 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S231602AbhHDVIH (ORCPT ); Wed, 4 Aug 2021 17:08:07 -0400 Received: from casper.infradead.org (casper.infradead.org [IPv6:2001:8b0:10b:1236::1]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id E4A18C0613D5; Wed, 4 Aug 2021 14:07:53 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=infradead.org; s=casper.20170209; h=In-Reply-To:Content-Type:MIME-Version: References:Message-ID:Subject:Cc:To:From:Date:Sender:Reply-To: Content-Transfer-Encoding:Content-ID:Content-Description; bh=bpxyDpnvly9eIlMQTFPJ1aBcN9lOvzkoVYTJFUDJnqo=; b=iLoMBWKjIEusVQoTWW/PDbf4E6 UpBvg0/6a7I3wA1o0hOk+3nIixZMjbuU7AvdPcOKwOHcxBJJxKPbw+sVrBvYmdHKAJC1+7ivKtRCW kw51BIbzdxEgabH2EqeEkojnf/p8N6qRwm3jfLoqiPMn8bw2ImSKR1bKk7RxwBR0/1nD2ktoveeXy uw3t0cctv1UXtLL2gLzkOW3aGA4l1asOPtBeBC/leUQBRFaTPM5o48yWRjN2ja0OMNj7WPlSdJNQM QChffB6AwMrUaPh+iaThHIffvV/O4P3Wk29gLPuGRqg/qsmyay8NgDlcmM5YfEFD+KLW87Vjcrsla 9NH6/B2g==; Received: from willy by casper.infradead.org with local (Exim 4.94.2 #2 (Red Hat Linux)) id 1mBO6W-006IQp-Ga; Wed, 04 Aug 2021 21:07:16 +0000 Date: Wed, 4 Aug 2021 22:07:08 +0100 From: Matthew Wilcox To: Dan Williams Cc: Greg Kroah-Hartman , Kuppuswamy Sathyanarayanan , "Rafael J . Wysocki" , Jonathan Corbet , Andi Kleen , Kuppuswamy Sathyanarayanan , Linux Kernel Mailing List , Linux Doc Mailing List Subject: Re: [PATCH v1] driver: base: Add driver filter support Message-ID: References: <20210804174322.2898409-1-sathyanarayanan.kuppuswamy@linux.intel.com> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Wed, Aug 04, 2021 at 01:11:27PM -0700, Dan Williams wrote: > On Wed, Aug 4, 2021 at 12:29 PM Greg Kroah-Hartman > wrote: > > Why not just make distros that want to support this type of platform, > > also provide these tiny kernel images? Why are you pushing this work on > > the kernel community instead? > > In fact, these questions are where I started when first encountering > this proposal. Andi has addressed the single kernel image constraint, > but I want to pick up on this "pushing work to the kernel community" > contention. The small list of vetted drivers that a TDX guest needs > will be built-in and maintained in the kernel by the protected guest > developer community, so no "pushing work" there. However, given that > any driver disable mechanism needs to touch the driver core I > advocated to go ahead and make this a general purpose capability to > pick up where this [1] conversation left off. I.e. a general facility > for the corner cases that modprobe and kernel config policy can not > reach. Corner cases like VMM attacking the VM, or broken hardware with > a built-in driver that can't be unbound after the fact. I don't understand how this defends against a hypervisor attacking a guest. If the hardware exists, the hypervisor can access it, regardless of whether the driver is default-disabled by configuration.