Received: by 2002:a05:6358:9144:b0:117:f937:c515 with SMTP id r4csp10117481rwr; Fri, 12 May 2023 04:11:35 -0700 (PDT) X-Google-Smtp-Source: ACHHUZ6RA7ChkN6DGk9g742xVvUHTFmZjoQTVvPDz/TNFzGR7jF6jfpVAQNfZ5xkvwgwwZk5l+90 X-Received: by 2002:a05:6a00:1821:b0:644:d77:a2c5 with SMTP id y33-20020a056a00182100b006440d77a2c5mr31595596pfa.29.1683889894790; Fri, 12 May 2023 04:11:34 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1683889894; cv=none; d=google.com; s=arc-20160816; b=xaEoivNtVAiudJito8UfgW+xd7JJGpl0cNhN13F1D2LAWFqXUxaRLxDXFVAQgAs1aI iepAr6K7wdax61Yj1UDT4X428YeavpPAP/qt+UCsaSvjklmY46Qg4864JOpLj6268FjU eG+Vwk3V8ZRUajHjOeAFZWHz98DPhq3G3pRZHO6C61ULn1lGS4Fsk2kUQwRX8eahaD6Q gJ2zefc4OnW0IV+WnYOGXuOPvRMPARtMJbt5VXXg2uDhB58dwxKFUgjRxNxWCpubbUHy 6rePXnElZo/uUwCE3UwRy1r0cSc6Kox8b8TNAf4BFJA1NaoHiIFiJKW7nWNgpdSuqCd7 Vhgw== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:user-agent:in-reply-to:content-disposition :mime-version:references:message-id:subject:cc:to:from:date; bh=gM8JuGCBB7umkDAkKXDzED9hqlrotHBUxlkv2pyoaiQ=; b=OAVb4KS/S2sIA1u71C5QgTXlLDODT04RCGU+8J8pG1nbdK1iXaQW7KF7lZOJokElUa MaGiDWsdV9vEr3BxgSv3HVrki7cVzLzPurWltFysKARNukml0LDnGRroL2HJfB9x7xoa B0xjunXqiRwsXZ6568K1FtMbSvc7P5e6iRQGCYrSbpXFhaOCDCXuxF+kdkH819NNKfpR p9vQUVD+E6DT43kaLbEFkfPthS4j/zzTKRaIlzZENi5lVCEltZMxf9aeLv/cHPegHdfY 22aD43pCRhSZnw9zhw9Bzc8FEk4fDZ5bVucOUaOnpVBX5pqsiwctSuqpBybZRCOYDxwi BS8Q== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: domain of linux-crypto-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-crypto-owner@vger.kernel.org Return-Path: Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20]) by mx.google.com with ESMTP id t126-20020a625f84000000b00643b54acbd0si10062951pfb.231.2023.05.12.04.11.21; Fri, 12 May 2023 04:11:34 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-crypto-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20; Authentication-Results: mx.google.com; spf=pass (google.com: domain of linux-crypto-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-crypto-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S240716AbjELLE1 (ORCPT + 99 others); Fri, 12 May 2023 07:04:27 -0400 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:60598 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S240164AbjELLE0 (ORCPT ); Fri, 12 May 2023 07:04:26 -0400 Received: from cavan.codon.org.uk (irc.codon.org.uk [IPv6:2a00:1098:84:22e::2]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id E20181720; Fri, 12 May 2023 04:04:21 -0700 (PDT) Received: by cavan.codon.org.uk (Postfix, from userid 1000) id 39D4242527; Fri, 12 May 2023 11:55:54 +0100 (BST) Date: Fri, 12 May 2023 11:55:54 +0100 From: Matthew Garrett To: Ross Philipson Cc: linux-kernel@vger.kernel.org, x86@kernel.org, linux-integrity@vger.kernel.org, linux-doc@vger.kernel.org, linux-crypto@vger.kernel.org, iommu@lists.linux-foundation.org, kexec@lists.infradead.org, linux-efi@vger.kernel.org, dpsmith@apertussolutions.com, tglx@linutronix.de, mingo@redhat.com, bp@alien8.de, hpa@zytor.com, ardb@kernel.org, James.Bottomley@hansenpartnership.com, luto@amacapital.net, nivedita@alum.mit.edu, kanth.ghatraju@oracle.com, trenchboot-devel@googlegroups.com Subject: Re: [PATCH v6 04/14] x86: Secure Launch Resource Table header file Message-ID: <20230512105554.GB14461@srcf.ucam.org> References: <20230504145023.835096-1-ross.philipson@oracle.com> <20230504145023.835096-5-ross.philipson@oracle.com> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20230504145023.835096-5-ross.philipson@oracle.com> User-Agent: Mutt/1.10.1 (2018-07-13) X-Spam-Status: No, score=-0.8 required=5.0 tests=BAYES_00, HEADER_FROM_DIFFERENT_DOMAINS,KHOP_HELO_FCRDNS,SPF_HELO_NEUTRAL, SPF_NEUTRAL,T_SCC_BODY_TEXT_LINE autolearn=no autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on lindbergh.monkeyblade.net Precedence: bulk List-ID: X-Mailing-List: linux-crypto@vger.kernel.org On Thu, May 04, 2023 at 02:50:13PM +0000, Ross Philipson wrote: > +#define SLR_TABLE_MAGIC 0x4452544d From convention I'd expect this to be 0x534c5254, but not really an issue. > +/* SLR defined bootloaders */ > +#define SLR_BOOTLOADER_INVALID 0 > +#define SLR_BOOTLOADER_GRUB 1 Oof. Having the kernel know about bootloaders has not worked out super well for us in the past. If someone writes a new bootloader, are they unable to Secure Launch any existing kernels? The pragmatic thing for them to do would be to just pretend they're grub, which kind of defeats the point of having this definition... > +} __packed; Random nit - why are they all packed? Are there circumstances where two pieces of code with different assumptions about alignment will be looking at a single instance of a table? It doesn't seem likely we're going to be doing DRTM in a 32-bit firmware environment while launching a 64-bit kernel?