Re: [patch V2 14/16] x86/iopl: Restrict iopl() permission scope

From: Andy Lutomirski
Date: Tue Nov 12 2019 - 13:35:54 EST

Next message: Peter Gonda: "Re: [PATCH v3 01/11] KVM: SVM: Add KVM_SEV SEND_START command"
Previous message: Katsuhiro Suzuki: "Re: [PATCH] arm64: dts: rockchip: add analog audio nodes on rk3399-rockpro64"
In reply to: Thomas Gleixner: "Re: [patch V2 14/16] x86/iopl: Restrict iopl() permission scope"
Next in thread: Thomas Gleixner: "[patch V2 15/16] x86/iopl: Remove legacy IOPL option"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, Nov 11, 2019 at 2:35 PM Thomas Gleixner <tglx@xxxxxxxxxxxxx> wrote:
>
> From: Thomas Gleixner <tglx@xxxxxxxxxxxxx>
>
> The access to the full I/O port range can be also provided by the TSS I/O
> bitmap, but that would require to copy 8k of data on scheduling in the
> task. As shown with the sched out optimization TSS.io_bitmap_base can be
> used to switch the incoming task to a preallocated I/O bitmap which has all
> bits zero, i.e. allows access to all I/O ports.
>
> Implementing this allows to provide an iopl() emulation mode which restricts
> the IOPL level 3 permissions to I/O port access but removes the STI/CLI
> permission which is coming with the hardware IOPL mechansim.
>
> Provide a config option to switch IOPL to emulation mode, make it the
> default and while at it also provide an option to disable IOPL completely.

Acked-by: Andy Lutomirski <luto@xxxxxxxxxx>

Next message: Peter Gonda: "Re: [PATCH v3 01/11] KVM: SVM: Add KVM_SEV SEND_START command"
Previous message: Katsuhiro Suzuki: "Re: [PATCH] arm64: dts: rockchip: add analog audio nodes on rk3399-rockpro64"
In reply to: Thomas Gleixner: "Re: [patch V2 14/16] x86/iopl: Restrict iopl() permission scope"
Next in thread: Thomas Gleixner: "[patch V2 15/16] x86/iopl: Remove legacy IOPL option"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]