| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Mon, 05 Aug 2013 08:50:17 -0700 From: Andrew Fish <afish@...le.com> To: edk2-devel@...ts.sourceforge.net Cc: Laszlo Ersek <lersek@...hat.com>, linux-efi@...r.kernel.org, Gleb Natapov <gleb@...hat.com>, lkml <linux-kernel@...r.kernel.org>, David Woodhouse <dwmw2@...radead.org> Subject: Re: [edk2] Corrupted EFI region On Aug 5, 2013, at 7:40 AM, Borislav Petkov <bp@...en8.de> wrote: > On Mon, Aug 05, 2013 at 04:27:44PM +0200, Laszlo Ersek wrote: >> I wouldn't call the design of SetVirtualAddressMap() braindead. > > Ok, I've always wondered and you could probably shed some light on the > matter: why is SetVirtualAddressMap() a call-once only? Why can't I > simply call it again and update the mappings? > >> I'd rather call kexec unique and somewhat unexpected :) > > In all fairness, it was there before UEFI, AFAICT. > AFAICT EFI pre-dates kexec merge into mainline by a number of years as SetVirtualaddressMap() was part of EFI 1.0 (previous millennium) The EFI to UEFI conversion was placing EFI 1.10 into an industry standard, UEFI 2.0. UEFI is an industry standard so some one just needs to make a proposal to update the spec. The edk2 open source project is not part of the standards body so complaining on this mailing list is not going to get anything changed. The conversion of C code to run from address A to address B is a non trivial operation, and a single conversion is bad enough. The infrastructure code required to do the conversion from physical to virtual addressing currently only runs from physical mode, so a call to change virtual address mappings from virtual mode is more complex than the current scheme. In general you don't want complexity in the locked NOR FLASH of the platform that can only be updated by the platform vendor. Even if the platform firmware is easy to update you want to have complexity in the OS as it is easier to change and easier to get right. Thanks, Andrew Fish >>> I wouldn't wonder if we f*cked it up again like the last time. I'll give >>> it a long hard look. >> >> Ah sorry, by "and you guys suspect" I didn't mean to imply anything >> between the lines, I was simply trying to ascertain your working idea :) > > As long as we get to the bottom of this, we're all fine. And I'd > pretty much expect everyone who is dealing with EFI to have grown a > sufficiently thick skin before starting to do so, so don't worry. > > :-) > > -- > Regards/Gruss, > Boris. > > Sent from a fat crate under my desk. Formatting is fine. > -- > > ------------------------------------------------------------------------------ > Get your SQL database under version control now! > Version control is standard for application code, but databases havent > caught up. So what steps can you take to put your SQL databases under > version control? Why should you start doing it? Read more to find out. > http://pubads.g.doubleclick.net/gampad/clk?id=49501711&iu=/4140/ostg.clktrk > _______________________________________________ > edk2-devel mailing list > edk2-devel@...ts.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/edk2-devel -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists