Received: by 2002:a6b:fb09:0:0:0:0:0 with SMTP id h9csp4246029iog;
        Tue, 21 Jun 2022 15:30:47 -0700 (PDT)
X-Google-Smtp-Source: AGRyM1sZudRzorr7LYCpbF95gTrypa2hiIXhBCCeXA3L4vKOevK9wiIurMFf3hx9wXF8BNc9aK2v
X-Received: by 2002:a63:2a4f:0:b0:40d:997:557f with SMTP id q76-20020a632a4f000000b0040d0997557fmr210886pgq.42.1655850647475;
        Tue, 21 Jun 2022 15:30:47 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1655850647; cv=none;
        d=google.com; s=arc-20160816;
        b=gDoj6ftAL80X0WHSs+DJmzMVpHtZrmeDs7t2RfubB/kRhDawsa+0S8kBFkCN2RdZia
         WgxoF9ec0eQAcQE4lkOUMakYGRbsKOlu9T54wGrF+/ezllailH7eROOegFCLkzG3GjsM
         E+wCdC+c3ptCzOQu0PMtxfP5ty8yx9E7da/9Nx1i89okLcS0YxnyaoCf/JnkuWkupRsK
         AI1MhchKNhLhRWeyTAF8+vmN0AU4JMW0CN0BEYVwgeGbQl7XdW88rpbhiTRz14lOT0gc
         yQEAgLpu+EtJCS0kY/5PmZQ74HqViL6m8uhdy8QYntll2OujLuf+uh/Xs+RubCutMIyA
         h59w==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:in-reply-to:content-disposition:mime-version
         :references:message-id:subject:cc:to:from:date:dkim-signature;
        bh=hFqBmB+kt0rtaIPaQ9KZ5LuoFwIj2x82PzqkrWEtyKU=;
        b=kHki5m+EDzxK4rdJIthSUcYvVcSYuQXMYAo/+dE8A1QjPoHEgOPjeIVXIIAbHl4SfF
         uftec4sRH5Y0F314fIV2CznDHq8JPjjK73P8Up8/69UTtvtFeTGXqt+/NCBsUQuP2IWt
         +NIt5iKr/5MmcerAkY/fA7lfERdnNDDj8bfrlY3B3WyDFbL1NwoY/JPnovBf39sDHhDH
         mwHvpO1LoffnIu+OdjjThv+cKVi4h/Y71QylrqdMivvDCbeKd2VGtpFoN0A/38KwYugr
         ZXp2JEG9X9CSzaxULn6wO4BiMU2ynH1JHKmMAP4/LUlYtcIF4uX56PrPTNWikBLIzjN9
         a8YA==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@chromium.org header.s=google header.b=TNa3pSTn;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=chromium.org
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20])
        by mx.google.com with ESMTP id s32-20020a632160000000b003fc6004626fsi21296662pgm.633.2022.06.21.15.30.35;
        Tue, 21 Jun 2022 15:30:47 -0700 (PDT)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@chromium.org header.s=google header.b=TNa3pSTn;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=chromium.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1355997AbiFUVOh (ORCPT <rfc822;airlied@gmail.com> + 99 others);
        Tue, 21 Jun 2022 17:14:37 -0400
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:58776 "EHLO
        lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S1355931AbiFUVN0 (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Tue, 21 Jun 2022 17:13:26 -0400
Received: from mail-pf1-x432.google.com (mail-pf1-x432.google.com [IPv6:2607:f8b0:4864:20::432])
        by lindbergh.monkeyblade.net (Postfix) with ESMTPS id EA4B433353
        for <linux-kernel@vger.kernel.org>; Tue, 21 Jun 2022 14:00:14 -0700 (PDT)
Received: by mail-pf1-x432.google.com with SMTP id 128so7185985pfv.12
        for <linux-kernel@vger.kernel.org>; Tue, 21 Jun 2022 14:00:14 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=chromium.org; s=google;
        h=date:from:to:cc:subject:message-id:references:mime-version
         :content-disposition:in-reply-to;
        bh=hFqBmB+kt0rtaIPaQ9KZ5LuoFwIj2x82PzqkrWEtyKU=;
        b=TNa3pSTndKVSyB2tGrJa9c+jY2RecssGJr47JZaCbPMcVuC5JrbHKKt4/sTBfy52GX
         ZoLBBfUJo0HpLu6z4QDbh3mMi+ILoX65eJSlThihVfGNx2lz7CcWiy6CJwW5sKxAk5V0
         kHbpvT1+WcXU6+Jgx5jvCPwMXIALyfuHX8Nc8=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20210112;
        h=x-gm-message-state:date:from:to:cc:subject:message-id:references
         :mime-version:content-disposition:in-reply-to;
        bh=hFqBmB+kt0rtaIPaQ9KZ5LuoFwIj2x82PzqkrWEtyKU=;
        b=akphiS87hLLFS9FAPjC6OzAAcDI51hhU6tZdymUEZDqMk96xXwqhtN4dNhEol7I8R1
         KDM9j+07uF4eUdsScylNHoZIVAHHR/msdmUW/HCrFxJh+EP2hMQOdTBVouv3rRdh1+rc
         AtBbdN1p03+3HqivfbyXnJBzTNSEhq8eitcKP+mUH77oxa5B18f0jI7f+7bfcOfmynn9
         XEMpyfYNVPLZkJZzTlHMPRICPUUaZT43pVJzbyoPcJGi3upxHgzgYcE2mcSboOdD/YmQ
         K3TMPI6IJi4ePnvpS2WhILeXodg6N9ysPoyvh9Pz+x0CCspbPrks6Qy0xl7hD+pBCc4h
         ZN0g==
X-Gm-Message-State: AJIora8bt1pganPeyk+yf4EtPR9iwyZM7CwFDNBaCDEW7eRWhNBd55J1
        2HAqZmlN2KWK7faOjzFpb+j9KQ==
X-Received: by 2002:a63:1e0e:0:b0:3f6:4dce:918b with SMTP id e14-20020a631e0e000000b003f64dce918bmr28558117pge.53.1655845214448;
        Tue, 21 Jun 2022 14:00:14 -0700 (PDT)
Received: from www.outflux.net (smtp.outflux.net. [198.145.64.163])
        by smtp.gmail.com with ESMTPSA id x139-20020a627c91000000b0050dc7628196sm6251408pfc.112.2022.06.21.14.00.13
        (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
        Tue, 21 Jun 2022 14:00:14 -0700 (PDT)
Date:   Tue, 21 Jun 2022 14:00:13 -0700
From:   Kees Cook <keescook@chromium.org>
To:     Ard Biesheuvel <ardb@kernel.org>
Cc:     linux-efi@vger.kernel.org, linux-kernel@vger.kernel.org,
        Matthew Garrett <mjg59@srcf.ucam.org>,
        Peter Jones <pjones@redhat.com>,
        Tony Luck <tony.luck@intel.com>,
        Thomas Gleixner <tglx@linutronix.de>,
        Ingo Molnar <mingo@redhat.com>, Borislav Petkov <bp@alien8.de>,
        Dave Hansen <dave.hansen@linux.intel.com>
Subject: Re: [PATCH v2 4/9] efi: pstore: Omit efivars caching EFI varstore
 access layer
Message-ID: <202206211357.C66CD742E5@keescook>
References: <20220621153623.3786960-1-ardb@kernel.org>
 <20220621153623.3786960-5-ardb@kernel.org>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <20220621153623.3786960-5-ardb@kernel.org>
X-Spam-Status: No, score=-2.7 required=5.0 tests=BAYES_00,DKIMWL_WL_HIGH,
        DKIM_SIGNED,DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,RCVD_IN_DNSWL_NONE,
        SPF_HELO_NONE,SPF_PASS,T_SCC_BODY_TEXT_LINE autolearn=ham
        autolearn_force=no version=3.4.6
X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on
        lindbergh.monkeyblade.net
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

On Tue, Jun 21, 2022 at 05:36:18PM +0200, Ard Biesheuvel wrote:
> Avoid the efivars layer and simply call the newly introduced EFI
> varstore helpers instead. This simplifies the code substantially, and
> also allows us to remove some hacks in the shared efivars layer that
> were added for efi-pstore specifically.
> 
> Since we don't store the name of the associated EFI variable into each
> pstore record when enumerating them, we have to guess the variable name
> it was constructed from at deletion time, since we no longer keep a
> shadow copy of the variable store. To make this a bit more exact, store
> the CRC-32 of the ASCII name into the pstore record's ECC region so we
> can use it later to make an educated guess regarding the name of the EFI
> variable.

I wonder if pstore_record should have a "private" field for backends to
use? That seems like it solve the need for overloading the ecc field,
and allow for arbitrarily more information to be stored (i.e. store full
efi var name instead of an easily-colliding crc32?)

-- 
Kees Cook