RE: [PATCH v7 10/15] platform/x86: dell-smbios: add filtering capability for requests

[Mario.Limonciello]

> -----Original Message-----
> From: Pali RohÃr [mailto:pali.rohar@xxxxxxxxx]
> Sent: Thursday, October 12, 2017 9:34 AM
> To: Limonciello, Mario <Mario_Limonciello@xxxxxxxx>
> Cc: gnomes@xxxxxxxxxxxxxxxxxxx; dvhart@xxxxxxxxxxxxx;
> andy.shevchenko@xxxxxxxxx; linux-kernel@xxxxxxxxxxxxxxx; platform-driver-
> x86@xxxxxxxxxxxxxxx; luto@xxxxxxxxxx; quasisec@xxxxxxxxxx;
> rjw@xxxxxxxxxxxxx; mjg59@xxxxxxxxxx; hch@xxxxxx; greg@xxxxxxxxx
> Subject: Re: [PATCH v7 10/15] platform/x86: dell-smbios: add filtering capability
> for requests
> 
> On Thursday 12 October 2017 13:23:08 Mario.Limonciello@xxxxxxxx wrote:
> > The existing dcdbas calling interface tooling (libsmbios) expects to be able
> > to access all calls and all tokens.  *The kernel doesn't filter any of it.*
> 
> It does not mean that API/ABI was designed correctly or incorrectly.
> Existing old API/ABI is there and we are not going to change it...
> 
> > I understand the ask to filter some calls and that's why patch 10/15 exists,
> > but please let me remind you this patch series is intended to /replace and
> > deprecate/ dcdbas userspace access.
> 
> Now when there is a proposal for a new API/ABI, it should be designed
> correctly without need to redesign it again in future and address all
> problems which are found during review.
> 

Well sure I also would hate to have to redesign this again in the future.
I believe that this is sufficient now.

I'm looking up commands that FW claims can be supported and filtering the
rest.  There's your whitelist.

I addressed the concern on the perceived dangerous calls (write once, debugging,
manufacturing use only etc) and those are now filtered.  There's your blacklist.

Other than the minor errors that kbuild test robot caught from v6 and the 
s/desc_buffer/buffer/ in an earlier patch, what's left?