lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [day] [month] [year] [list] 
Message-ID: <48B70E4F.3080200@zytor.com>
Date:	Thu, 28 Aug 2008 13:45:03 -0700
From:	"H. Peter Anvin" <hpa@...or.com>
To:	Linus Torvalds <torvalds@...ux-foundation.org>
CC:	Yinghai Lu <yhlu.kernel@...il.com>, Ingo Molnar <mingo@...e.hu>,
	Thomas Gleixner <tglx@...utronix.de>,
	Andrew Morton <akpm@...ux-foundation.org>,
	Jesse Barnes <jbarnes@...tuousgeek.org>,
	linux-kernel@...r.kernel.org
Subject: Re: [PATCH] x86: split e820 reserved entries record to late

Linus Torvalds wrote:
> 
> On Thu, 28 Aug 2008, H. Peter Anvin wrote:
>>     The sucky case, of course, would be an uninitialized BAR pointing 
>> into unusable address space which happens to be reserved in e820.  This 
>> seems very difficult to disambiguate from the above case through any 
>> algorithm that I can think of.
> 
> Yeah, well, the good news is that it should be fairly rare. Any sane PCI 
> device will come out of reset with IO and MEM disabled, and even if some 
> crazy BIOS enables IO/MEM on it and activates the BAR's with some random 
> content, I'm not seeing how that would work well with Windows either if it 
> really was overlapping with some critical real other piece of hardware.
> 
> So I'd _assume_ that something like that would break Windows too, and thus 
> not actually make it into a real product.
> 

I believe you are right.

I think the key bit here is that if the IO or MEM bit is enabled, it's 
likely to be initialized.  The PCI specs say that BARs should come out 
of reset initialized to zero, but I know for a fact that at least 
several Broadcom chips don't -- however, the combination of BAR and 
enable bits should be enough of a sentry.

	-hpa
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@...r.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ