| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Thu, 14 Jul 2016 13:42:06 +0100 From: Mark Rutland <mark.rutland@....com> To: Arnd Bergmann <arnd@...db.de> Cc: AKASHI Takahiro <takahiro.akashi@...aro.org>, Dave Young <dyoung@...hat.com>, bhe@...hat.com, kexec@...ts.infradead.org, linux-kernel@...r.kernel.org, Vivek Goyal <vgoyal@...hat.com>, "Eric W. Biederman" <ebiederm@...ssion.com>, bauerman@...ux.vnet.ibm.com, linuxppc-dev@...ts.ozlabs.org, linux-arm-kernel@...ts.infradead.org Subject: Re: [RFC 0/3] extend kexec_file_load system call On Wed, Jul 13, 2016 at 09:57:28PM +0200, Arnd Bergmann wrote: > On Wednesday, July 13, 2016 6:58:32 PM CEST Mark Rutland wrote: > > > > > we may want to remove unnecessary devices and even add a dedicated > > > storage device for storing a core dump image. > > > > I suspect that bringing up a minimal number of devices is better > > controlled by a cmdline option. In general, figuring out what is > > necessary and what is not is going to be board specific, so hacking the > > FW tables (DTB or ACPI) is not a very portable/reliable approach. > > > > Do we actually add devices in practice? More so than the above that > > requires special knowledge of the platform (including things that were > > not described in the boot DTB). > > > > In the ACPI case modifying a DTB alone is not sufficient to change the > > information regarding devices, as those won't be described in the DTB. > > It's not possible to convert ACPI to DTB in general. > > A more likely scenario would be replacing ACPI tables with a DTB that > describes the platform in order to use devices that the ACPI tables > don't contain. To do so, you need special knowledge of the platform, which users are unlikely to have in practice for ACPI-based platforms. So, I think that boils down to the same problem, and the same comments apply. > > > - Say, booting BE kernel on ACPI LE kernel > > > In this case, there is no useful dtb in the kernel. > > > If the platform only has ACPI, then you cannot boot a BE kernel to begin > > with. As above one cannot convert ACPI to DTB, so one would need > > extensive platform knowledge for this to work. > > I think what he meant was to pass a DTB to the kexec kernel in order > to run BE, while the original kernel can only run LE due to ACPI. I understood that. My point was that to build that DTB, you need to have knowledge of the platform that you are unlikely to have. The platform firmware may expect to interact with AML, which you can't place in DT or run in a BE context. If you need to run BE kernels on a platform, you would likely get a platform that could boot a BE kernel from the outset (i.e. one that provides a DTB), or run that code ina VM under an LE host. Thanks, Mark.
Powered by blists - more mailing lists