From: Greg KH <gregkh@linuxfoundation.org>
To: Ard Biesheuvel <ardb@kernel.org>
Cc: "Jason A. Donenfeld" <Jason@zx2c4.com>, stable@vger.kernel.org
Subject: Re: [PATCH stable] efi: random: combine bootloader provided RNG seed with RNG protocol output
Date: Wed, 11 Jan 2023 10:01:44 +0100 [thread overview]
Message-ID: <Y756+Pji1SAIsSw2@kroah.com> (raw)
In-Reply-To: <CAMj1kXFXxuWuM7gfMxRnF9tKvJSFO=dFMbkn97jPC2gafC7jvA@mail.gmail.com>
On Wed, Jan 11, 2023 at 09:44:34AM +0100, Ard Biesheuvel wrote:
> On Tue, 10 Jan 2023 at 20:45, Jason A. Donenfeld <Jason@zx2c4.com> wrote:
> >
> > On Tue, Jan 10, 2023 at 6:09 PM Greg KH <gregkh@linuxfoundation.org> wrote:
> > >
> > > On Tue, Jan 10, 2023 at 05:57:21PM +0100, Jason A. Donenfeld wrote:
> > > > Thanks! IIRC, this applies to all current stable kernels (now that
> > > > you've sunsetted 4.9).
> > >
> > > It does not apply cleanly to 5.4.y or 4.19.y or 4.14.y so can you
> > > provide working backports for them?
> >
> > I did 5.4.y, which turned out to be hairy than I wanted. You and Ard
> > can decide if you want it or not. I'll leave 4.19 and 4.14 for another
> > day.
>
> I appreciate you spending the effort, but I'm not convinced this is
> worth the risk. You are backporting new functionality (invoking the
> firmware's RNG protocol at boot on x86), and we might end up
> regressing on systems where the firmware's implementation is
> problematic, even if the patch by itself is correct. This applies to
> mixed mode especially, as the conversion between Win64 and i386
> calling conventions has kicked up some very surprising issues in the
> past.
Yeah, I'll leave this alone on those old kernel trees. They are
primarily only used in Android (i.e. arm64) systems and shouldn't be
messing with efi. Those x86 systems still stuck using these old kernels
are fragile enough, and should have moved to newer kernels anyway...
thanks,
greg k-h
next prev parent reply other threads:[~2023-01-11 9:02 UTC|newest]
Thread overview: 16+ messages / expand[flat|nested] mbox.gz Atom feed top
2023-01-10 16:04 [PATCH stable] efi: random: combine bootloader provided RNG seed with RNG protocol output Jason A. Donenfeld
2023-01-10 16:56 ` Greg KH
2023-01-10 16:57 ` Jason A. Donenfeld
2023-01-10 17:09 ` Greg KH
2023-01-10 17:10 ` Jason A. Donenfeld
2023-01-10 17:20 ` Ard Biesheuvel
2023-01-10 17:32 ` Jason A. Donenfeld
2023-01-10 17:37 ` Ard Biesheuvel
2023-01-10 19:44 ` Jason A. Donenfeld
2023-01-10 19:45 ` [PATCH stable 5.4.y] " Jason A. Donenfeld
2023-01-12 12:29 ` Greg KH
2023-01-12 12:31 ` Ard Biesheuvel
2023-01-12 13:02 ` Greg KH
2023-01-11 8:44 ` [PATCH stable] " Ard Biesheuvel
2023-01-11 9:01 ` Greg KH [this message]
2023-01-11 12:25 ` Jason A. Donenfeld
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=Y756+Pji1SAIsSw2@kroah.com \
--to=gregkh@linuxfoundation.org \
--cc=Jason@zx2c4.com \
--cc=ardb@kernel.org \
--cc=stable@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox