Re: [PATCH v2 7/7] powerpc/pseries: Implement secvars for dynamic secure boot

[PATCH v2 0/7] pseries dynamic secure boot interface using secvar · Russell Currey <hidden> · 2022-12-30
[PATCH v2 1/7] powerpc/pseries: Log hcall return codes for PLPKS debug · Russell Currey <hidden> · 2022-12-30
Re: [PATCH v2 1/7] powerpc/pseries: Log hcall return codes for PLPKS debug · Andrew Donnellan <hidden> · 2023-01-04
[PATCH v2 3/7] powerpc/secvar: Use sysfs_emit() instead of sprintf() · Russell Currey <hidden> · 2022-12-30
Re: [PATCH v2 3/7] powerpc/secvar: Use sysfs_emit() instead of sprintf() · Andrew Donnellan <hidden> · 2023-01-04
[PATCH v2 2/7] powerpc/secvar: WARN_ON_ONCE() if multiple secvar ops are set · Russell Currey <hidden> · 2022-12-30
Re: [PATCH v2 2/7] powerpc/secvar: WARN_ON_ONCE() if multiple secvar ops are set · Andrew Donnellan <hidden> · 2023-01-04
[PATCH v2 5/7] powerpc/secvar: Handle max object size in the consumer · Russell Currey <hidden> · 2022-12-30
Re: [PATCH v2 5/7] powerpc/secvar: Handle max object size in the consumer · Andrew Donnellan <hidden> · 2023-01-04
[PATCH v2 4/7] powerpc/secvar: Handle format string in the consumer · Russell Currey <hidden> · 2022-12-30
Re: [PATCH v2 4/7] powerpc/secvar: Handle format string in the consumer · Andrew Donnellan <hidden> · 2023-01-04
[PATCH v2 6/7] powerpc/secvar: Extend sysfs to include config vars · Russell Currey <hidden> · 2022-12-30
Re: [PATCH v2 6/7] powerpc/secvar: Extend sysfs to include config vars · Andrew Donnellan <hidden> · 2023-01-05
Re: [PATCH v2 6/7] powerpc/secvar: Extend sysfs to include config vars · Russell Currey <hidden> · 2023-01-06
Re: [PATCH v2 6/7] powerpc/secvar: Extend sysfs to include config vars · Michael Ellerman <mpe@ellerman.id.au> · 2023-01-06
Re: [PATCH v2 6/7] powerpc/secvar: Extend sysfs to include config vars · Russell Currey <hidden> · 2023-01-06
[PATCH v2 7/7] powerpc/pseries: Implement secvars for dynamic secure boot · Russell Currey <hidden> · 2022-12-30
Re: [PATCH v2 7/7] powerpc/pseries: Implement secvars for dynamic secure boot · Andrew Donnellan <hidden> · 2023-01-05
Re: [PATCH v2 7/7] powerpc/pseries: Implement secvars for dynamic secure boot · Russell Currey <hidden> · 2023-01-06
Re: [PATCH v2 7/7] powerpc/pseries: Implement secvars for dynamic secure boot · Andrew Donnellan <hidden> · 2023-01-09
Re: [PATCH v2 7/7] powerpc/pseries: Implement secvars for dynamic secure boot · Michael Ellerman <mpe@ellerman.id.au> · 2023-01-06
Re: [PATCH v2 7/7] powerpc/pseries: Implement secvars for dynamic secure boot · Andrew Donnellan <hidden> · 2023-01-09
Re: [PATCH v2 7/7] powerpc/pseries: Implement secvars for dynamic secure boot · Russell Currey <hidden> · 2023-01-09
Re: [PATCH v2 7/7] powerpc/pseries: Implement secvars for dynamic secure boot · Andrew Donnellan <hidden> · 2023-01-09
Re: [PATCH v2 7/7] powerpc/pseries: Implement secvars for dynamic secure boot · Russell Currey <hidden> · 2023-01-10
Re: [PATCH v2 7/7] powerpc/pseries: Implement secvars for dynamic secure boot · Andrew Donnellan <hidden> · 2023-01-10
Re: [PATCH v2 7/7] powerpc/pseries: Implement secvars for dynamic secure boot · Andrew Donnellan <hidden> · 2023-01-11

From: Andrew Donnellan <hidden>
Date: 2023-01-10 03:59:57
Also in: lkml

On Fri, 2023-01-06 at 21:49 +1100, Michael Ellerman wrote:

quoted

+static int plpks_get_variable(const char *key, uint64_t key_len,
+                             u8 *data, uint64_t *data_size)
+{
+       struct plpks_var var = {0};
+       u16 ucs2_namelen;
+       u8 *ucs2_name;
+       int rc = 0;
+
+       ucs2_namelen = get_ucs2name(key, &ucs2_name);
+       if (!ucs2_namelen)
+               return -ENOMEM;
+
+       var.name = ucs2_name;
+       var.namelen = ucs2_namelen;
+       var.os = PLPKS_VAR_LINUX;
+       rc = plpks_read_os_var(&var);
+
+       if (rc)
+               goto err;
+
+       *data_size = var.datalen + sizeof(var.policy);
+
+       // We can be called with data = NULL to just get the object
size.
+       if (data) {
+               memcpy(data, &var.policy, sizeof(var.policy));
+               memcpy(data + sizeof(var.policy), var.data,
var.datalen);
+       }

There's a lot of allocation and copying going on. The secvar-sysfs.c
data_read() has kzalloc'ed data, but only after already doing the
hcall
to get the size. Then plpks_read_os_var() does an allocation for the
hcall and then another allocation of the exact data size. Then
data_read()
does another copy into the sysfs supplied buffer.

So to read a single variable we do the hcall twice, and allocate/copy
the content of the variable 4 times?

 - Hypervisor into "output" in plpks_read_var().
 - "output" into "var->data" in plpks_read_var().
 - "var.data" into "data" in plpks_get_variable().
 - "data" into "buf" in data_read().

As long as maxobjsize is < PAGE_SIZE I think we could do the hcall
directly into "buf". Maybe we want to avoid writing into "buf"
directly
in case the hcall fails or something, but the other 3 copies seem
unnecessary.

In the general case, I don't like passing buffer pointers straight from
parameters into hcalls, since the address has to be in the linear map,
and that's a detail I'd rather hide from callers. But otherwise, yes I
think we can probably shift to having the caller allocate the buffers.

-- 
Andrew Donnellan    OzLabs, ADL Canberra
ajd@linux.ibm.com   IBM Australia Limited

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help