Re: [PATCH 1/2] fs/efivarfs: restrict inode permissions

From: Luck, Tony
Date: Tue Feb 20 2018 - 18:30:21 EST

Next message: Yang Shi: "Re: [PATCH] fs: proc: use down_read_killable in proc_pid_cmdline_read()"
Previous message: Paul E. McKenney: "[PATCH RFC tools/lkmm 02/12] MAINTAINERS: Add the Memory Consistency Model subsystem"
In reply to: Linus Torvalds: "Re: [PATCH 1/2] fs/efivarfs: restrict inode permissions"
Next in thread: Matthew Garrett: "Re: [PATCH 1/2] fs/efivarfs: restrict inode permissions"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, Feb 20, 2018 at 02:01:51PM -0800, Linus Torvalds wrote:
> And just on general principlies, I don't want to see weasel-wordy
> commit messages like
>
> "Reading certain EFI variables trigger SMIs"
>
> I understand *writing* them causing SMI's due to some flash protection
> scheme. What's the reading thing? And why aren't we calling that
> garbage out?

Too much weasel there. Should say:

EFI[1] stinks. Reading any file in /sys/firmware/efi/efivars/ generates
4 (yes FOUR!) SMIs.

# rdmsr 0x34
14e2
# cat /sys/firmware/efi/efivars/ConIn-8be4df61-93ca-11d2-aa0d-00e098032b8c > /dev/null
# rdmsr 0x34
14e6

-Tony

[1] I didn't dig through the Linux code to check whether we manage to
get those four SMIs from a single EFI call, or whether we make multiple
EFI calls to open/read/close one file. It is possible that we stink a
bit too if we are doing more EFI calls than required.

Next message: Yang Shi: "Re: [PATCH] fs: proc: use down_read_killable in proc_pid_cmdline_read()"
Previous message: Paul E. McKenney: "[PATCH RFC tools/lkmm 02/12] MAINTAINERS: Add the Memory Consistency Model subsystem"
In reply to: Linus Torvalds: "Re: [PATCH 1/2] fs/efivarfs: restrict inode permissions"
Next in thread: Matthew Garrett: "Re: [PATCH 1/2] fs/efivarfs: restrict inode permissions"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]