Re: [patch 5/9] x86/ioport: Reduce ioperm impact for sane usage further

From: Willy Tarreau
Date: Thu Nov 07 2019 - 07:58:22 EST

Next message: Philipp Zabel: "Re: [PATCH v5 0/3] reset: npcm: add NPCM reset driver support"
Previous message: Rafael J. Wysocki: "Re: [GIT PULL] devfreq next for v5.5"
In reply to: hpa: "Re: [patch 5/9] x86/ioport: Reduce ioperm impact for sane usage further"
Next in thread: Eric W. Biederman: "Re: [patch 5/9] x86/ioport: Reduce ioperm impact for sane usage further"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Thu, Nov 07, 2019 at 02:50:20AM -0800, hpa@xxxxxxxxx wrote:
> You get access to the ports you are assigned, just like pages you are
> assigned... the rest is kernel policy, or, for that matter, privileged
> userspace (get permissions to the necessary ports, then drop privilege... the
> usual stuff.)

I agree, my point is that there's already no policy checking at the
moment ports are assigned, hence a process having the permissions to
request just port 0x70-0x71 to read the hwclock will also have permission
to request access to the sensor chip a 0x2E and trigger a watchdog
reset or stop the CPU fan. Thus any policy enforcement is solely done
by the requesting process itself, assuming it doesn't simply use iopl()
already, which grants everything.

This is why I'm really wondering if the real use cases that need all
this stuff still exist at all in practice.

Willy

Next message: Philipp Zabel: "Re: [PATCH v5 0/3] reset: npcm: add NPCM reset driver support"
Previous message: Rafael J. Wysocki: "Re: [GIT PULL] devfreq next for v5.5"
In reply to: hpa: "Re: [patch 5/9] x86/ioport: Reduce ioperm impact for sane usage further"
Next in thread: Eric W. Biederman: "Re: [patch 5/9] x86/ioport: Reduce ioperm impact for sane usage further"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]