| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Fri, 10 Apr 2009 12:39:34 +0200 From: Ingo Molnar <mingo@...e.hu> To: Pavel Machek <pavel@....cz> Cc: mingo@...hat.com, hpa@...or.com, linux-kernel@...r.kernel.org, tglx@...utronix.de, hpa@...ux.intel.com, rjw@...k.pl, linux-tip-commits@...r.kernel.org, Linus Torvalds <torvalds@...ux-foundation.org> Subject: Re: [tip:x86/setup] x86, setup: "glove box" BIOS calls -- infrastructure * Pavel Machek <pavel@....cz> wrote: > Hi! > > > x86, setup: "glove box" BIOS calls -- infrastructure > > > > Impact: new interfaces (not yet used) > > > > For all the platforms out there, there is an infinite number of buggy > > BIOSes. This adds infrastructure to treat BIOS interrupts more like > > toxic waste and "glove box" them -- we switch out the register set, > > perform the BIOS interrupt, and then restore the previous state. > > > > LKML-Reference: <49DE7F79.4030106@...or.com> > > Signed-off-by: H. Peter Anvin <hpa@...ux.intel.com> > > Cc: Pavel Machek <pavel@....cz> > > Sounds quite sane. Disadvantage is that we will no longer detect > those buggy BIOSen. I'd call that an advantage: sandboxing BIOS calls as much as we can and trusting all data from it as if it were a random packet from the Internet is the only sane way forward IMHO. If we really care we could put in checks for unexpected register state changes ... but is it worth the trouble? Ingo -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists