Re: [PATCH] x86, msr: Allow read access to /dev/cpu/X/msr

From: Henrique de Moraes Holschuh
Date: Sun Jun 28 2015 - 11:11:01 EST

Next message: Henrique de Moraes Holschuh: "Re: [PATCH] x86, msr: Allow read access to /dev/cpu/X/msr"
Previous message: Nicolae Rosia: "Re: [PATCH v7] dma: Add Xilinx AXI Direct Memory Access Engine driver support"
In reply to: Prarit Bhargava: "Re: [PATCH] x86, msr: Allow read access to /dev/cpu/X/msr"
Next in thread: Ingo Molnar: "Re: [PATCH] x86, msr: Allow read access to /dev/cpu/X/msr"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Sun, 28 Jun 2015, Prarit Bhargava wrote:
> Is it easier to blacklist MSRs we don't want generally exposed, or only expose
> the ones that we think are safe? That's sort of a devil's advocate sort of
> question ;) and I'm wondering what the shorter list is.

The only way to make MSR access safe is to allow it only by whitelisting.
The x86 platform restricts all MSR access to ring 0 for a damn good reason.

Also, such a whitelist would most likely need to be vendor and model-aware,
and to differentiate "allow reads" from "allow writes"...

--
"One disk to rule them all, One disk to find them. One disk to bring
them all and in the darkness grind them. In the Land of Redmond
where the shadows lie." -- The Silicon Valley Tarot
Henrique Holschuh
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Henrique de Moraes Holschuh: "Re: [PATCH] x86, msr: Allow read access to /dev/cpu/X/msr"
Previous message: Nicolae Rosia: "Re: [PATCH v7] dma: Add Xilinx AXI Direct Memory Access Engine driver support"
In reply to: Prarit Bhargava: "Re: [PATCH] x86, msr: Allow read access to /dev/cpu/X/msr"
Next in thread: Ingo Molnar: "Re: [PATCH] x86, msr: Allow read access to /dev/cpu/X/msr"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]