| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Thu, 2 Jun 2016 02:10:37 +0000
From: <Mario_Limonciello@...l.com>
To: <gregkh@...uxfoundation.org>
CC: <hayeswang@...ltek.com>, <linux-kernel@...r.kernel.org>,
<netdev@...r.kernel.org>, <linux-usb@...r.kernel.org>,
<pali.rohar@...il.com>, <anthony.wong@...onical.com>
Subject: RE: [PATCH] r8152: Add support for setting MAC to system's Auxiliary
MAC address
> -----Original Message-----
> From: Greg KH [mailto:gregkh@...uxfoundation.org]
> Sent: Wednesday, June 1, 2016 6:06 PM
> To: Limonciello, Mario <Mario_Limonciello@...l.com>
> Cc: hayeswang@...ltek.com; LKML <linux-kernel@...r.kernel.org>; Netdev
> <netdev@...r.kernel.org>; Linux USB <linux-usb@...r.kernel.org>;
> pali.rohar@...il.com; anthony.wong@...onical.com
> Subject: Re: [PATCH] r8152: Add support for setting MAC to system's Auxiliary
> MAC address
>
> On Wed, Jun 01, 2016 at 04:50:44PM -0500, Mario Limonciello wrote:
> > Dell systems with Type-C ports have support for a persistent system
> > specific MAC address when used with Dell Type-C docks and dongles.
> > This means a dock plugged into two different systems will show
> > different (but persistent) MAC addresses. Dell Type-C docks and
> > dongles use the
> > r8152 driver.
> >
> > This information for the system's persistent MAC address is burned in
> > when the HW is built and avilable under _SB\AMAC in the DSDT at runtime.
> >
> > More information about the technology is available here:
> > http://www.dell.com/support/article/us/en/04/SLN301147
> >
> > Signed-off-by: Mario Limonciello <mario_limonciello@...l.com>
> > ---
> > drivers/net/usb/Kconfig | 1 +
> > drivers/net/usb/r8152.c | 37 +++++++++++++++++++++++++++++++++++++
> > 2 files changed, 38 insertions(+)
> >
> > diff --git a/drivers/net/usb/Kconfig b/drivers/net/usb/Kconfig index
> > cdde590..c320930 100644
> > --- a/drivers/net/usb/Kconfig
> > +++ b/drivers/net/usb/Kconfig
> > @@ -98,6 +98,7 @@ config USB_RTL8150
> > config USB_RTL8152
> > tristate "Realtek RTL8152/RTL8153 Based USB Ethernet Adapters"
> > select MII
> > + depends on ACPI
> > help
> > This option adds support for Realtek RTL8152 based USB 2.0
> > 10/100 Ethernet adapters and RTL8153 based USB 3.0 10/100/1000
> > diff --git a/drivers/net/usb/r8152.c b/drivers/net/usb/r8152.c index
> > 3f9f6ed..62af3b4 100644
> > --- a/drivers/net/usb/r8152.c
> > +++ b/drivers/net/usb/r8152.c
> > @@ -26,6 +26,7 @@
> > #include <linux/mdio.h>
> > #include <linux/usb/cdc.h>
> > #include <linux/suspend.h>
> > +#include <linux/acpi.h>
> >
> > /* Information for net-next */
> > #define NETNEXT_VERSION "08"
> > @@ -1030,6 +1031,39 @@ out1:
> > return ret;
> > }
> >
> > +static u8 amac_ascii_to_hex(int c)
> > +{
> > + if (c <= 0x39)
> > + return (u8)(c - 0x30);
> > + else if (c <= 0x46)
> > + return (u8)(c - 0x37);
> > + return (u8)(c - 0x57);
> > +}
>
> We really don't have such a function somewhere in the kernel already?
>
> And why 'int', isn't "c" really a u8?
>
> > +static void set_auxiliary_addr(struct sockaddr *sa) {
> > + acpi_status status;
> > + acpi_handle handle;
> > + struct acpi_buffer buffer = { ACPI_ALLOCATE_BUFFER, NULL };
> > + union acpi_object *obj;
> > + int i;
> > + char *ptr;
> > +
> > + acpi_get_handle(NULL, "\\_SB", &handle);
> > + status = acpi_evaluate_object(handle, "AMAC", NULL, &buffer);
>
> Is this field in the ACPI standard, or should this only be "trusted" on a limited
> number of machines (i.e. with Dell DMI strings?)
>
This isn't something part of ACPI - it's been added specifically for a selection of Dell machines.
I would rather not hardcode to the specific DMI model strings of those Dell machines as it's certainly going to be a feature that expands to more machines.
Since it is Dell specific though, if you would rather me just match to the sys vendor Dell Inc., that seems like a pretty good compromise to me.
> And finally, this seems odd overall given that a MAC address should be
> associated with the specific network device, not the overall system.
The whole reasoning behind this is to bring the behavior that E-Docks had to TBT docks. With E-docks they were really just extensions of the pins for the already onboard NIC of the system. When you docked in an E-dock you inherently would use the same MAC everywhere you went. If you had two cubes your network admin would see your same MAC in both.
With TBT docks and this patch not present docking in different places will give you the MAC of the dock rather than something persistent that your network admin could identify. Solving this was something that was explicitly asked for in case studies during conceptualization of these docks and is a feature present in the Realtek Windows driver.
> What if you have 2 types of devices plugged into the same machine, with this
> patch you suddenly have the same MAC address for both of them.
> That doesn't seem correct...
>
I suppose it is technically possible to have two USB NIC's that use r8152 and that would be a bad behavior indeed to hand the same MAC to both of them.
In addition to limiting to Dell DMI system vendor string how about I do two more things about this:
1) Add a module parameter to disable this behavior altogether in r8152 if it's not desired by the user or admin (but leave it on by default).
2) Track whether this is the first or second USB NIC plugged in. Only offer it on the first NIC detected by r8152. When the second NIC is plugged in don't match from ACPI.
There would be a question of what to do if the first NIC is removed and added back if it should get the persistent system MAC or not.
I'd say yes, just make sure that only one NIC can have it at a time.
Powered by blists - more mailing lists