Re: [PATCH v5 16/16] x86/tdx: Add cmdline option to force use of ioremap_host_shared

From: Michael S. Tsirkin
Date: Mon Oct 11 2021 - 08:04:29 EST

Next message: kernel test robot: "[ti:ti-linux-5.10.y 6954/9578] ERROR: modpost: "phy_mipi_dphy_get_default_config" [drivers/media/platform/cadence/cdns-csi2rx.ko] undefined!"
Previous message: Halil Pasic: "[RFC PATCH 1/1] s390/cio: make ccw_device_dma_* more robust"
In reply to: Andi Kleen: "Re: [PATCH v5 16/16] x86/tdx: Add cmdline option to force use of ioremap_host_shared"
Next in thread: Andi Kleen: "Re: [PATCH v5 16/16] x86/tdx: Add cmdline option to force use of ioremap_host_shared"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Sun, Oct 10, 2021 at 07:39:55PM -0700, Andi Kleen wrote:
>
> > The connection is quite unfortunate IMHO.
> > Can't there be an option
> > that unbreaks drivers *without* opening up security holes by
> > making BIOS shared?
>
> That would require new low level APIs that distinguish both cases, and a
> tree sweep.
>
>
> -Andi

Presumably bios code is in arch/x86 and drivers/acpi, right?
Up to 200 calls the majority of which is likely private ...

I don't have better ideas but the current setup will just
result in people making their guests vulnerable whenever they
want to allow device pass-through.

--
MST

Next message: kernel test robot: "[ti:ti-linux-5.10.y 6954/9578] ERROR: modpost: "phy_mipi_dphy_get_default_config" [drivers/media/platform/cadence/cdns-csi2rx.ko] undefined!"
Previous message: Halil Pasic: "[RFC PATCH 1/1] s390/cio: make ccw_device_dma_* more robust"
In reply to: Andi Kleen: "Re: [PATCH v5 16/16] x86/tdx: Add cmdline option to force use of ioremap_host_shared"
Next in thread: Andi Kleen: "Re: [PATCH v5 16/16] x86/tdx: Add cmdline option to force use of ioremap_host_shared"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]