On Mon, Jun 01, 2020 at 06:25:42PM -0500, Bjorn Helgaas wrote: > [+cc Greg, linux-kernel for wider exposure] Thanks for the cc:, missed this... > > On Tue, May 26, 2020 at 09:30:08AM -0700, Rajat Jain wrote: > > On Thu, May 14, 2020 at 7:18 PM Rajat Jain <rajatja@xxxxxxxxxx> wrote: > > > On Thu, May 14, 2020 at 12:13 PM Raj, Ashok <ashok.raj@xxxxxxxxx> wrote: > > > > On Wed, May 13, 2020 at 02:26:18PM -0700, Rajat Jain wrote: > > > > > On Wed, May 13, 2020 at 8:19 AM Bjorn Helgaas <helgaas@xxxxxxxxxx> wrote: > > > > > > On Fri, May 01, 2020 at 04:07:10PM -0700, Rajat Jain wrote: > > > > > > > Hi, > > > > > > > > > > > > > > Currently, the PCI subsystem marks the PCI devices as "untrusted", if > > > > > > > the firmware asks it to: > > > > > > > > > > > > > > 617654aae50e ("PCI / ACPI: Identify untrusted PCI devices") > > > > > > > 9cb30a71acd4 ("PCI: OF: Support "external-facing" property") > > > > > > > > > > > > > > An "untrusted" device indicates a (likely external facing) device that > > > > > > > may be malicious, and can trigger DMA attacks on the system. It may > > > > > > > also try to exploit any vulnerabilities exposed by the driver, that > > > > > > > may allow it to read/write unintended addresses in the host (e.g. if > > > > > > > DMA buffers for the device, share memory pages with other driver data > > > > > > > structures or code etc). > > > > > > > > > > > > > > High Level proposal > > > > > > > =============== > > > > > > > Currently, the "untrusted" device property is used as a hint to enable > > > > > > > IOMMU restrictions (on Intel), disable ATS (on ARM) etc. We'd like to > > > > > > > go a step further, and allow the administrator to build a list of > > > > > > > whitelisted drivers for these "untrusted" devices. This whitelist of > > > > > > > drivers are the ones that he trusts enough to have little or no > > > > > > > vulnerabilities. (He may have built this list of whitelisted drivers > > > > > > > by a combination of code analysis of drivers, or by extensive testing > > > > > > > using PCIe fuzzing etc). We propose that the administrator be allowed > > > > > > > to specify this list of whitelisted drivers to the kernel, and the PCI > > > > > > > subsystem to impose this behavior: > > > > > > > > > > > > > > 1) The "untrusted" devices can bind to only "whitelisted drivers". > > > > > > > 2) The other devices (i.e. dev->untrusted=0) can bind to any driver. > > > > > > > > > > > > > > Of course this behavior is to be imposed only if such a whitelist is > > > > > > > provided by the administrator. > > > > I haven't heard much on this proposal after the initial inputs (to > > which I responded). Essentially, I agree that IO-MMU and ACS > > restrictions need to be put in plcase. But I think we need this > > additionally. Does this look acceptable to you? I wanted to start > > spinning out the patches, but wanted to see if there are any pending > > comments or concerns. > > I think it makes sense to code this up and see what it would look > like. The bare minimum seems like a driver "bind-to-external-devices" > bit that's visible in sysfs plus something in the driver probe path > that checks it. Neither is inherently PCI-specific, but maybe the > right place will become obvious when implementing it. > > I'm still not 100% sure the device "external/untrusted" bit is the > right thing to check. If you don't trust a driver enough to expose it > to an external device, is it reasonable to trust it for internal > devices? It seems like one could attack the driver of even an > internal device like a NIC by controlling the data fed to it. > > The existing use of "external/untrusted" for IOMMU protection is > different. There we're acknowledging that the *device* itself is > unknown and we need to protect ourselves from malicious DMA. > > Here we're concerned about a *driver* that's completely under our > control. If we don't trust the driver, we could (a) fix the problems > in the driver, (b) change the driver so it handles external/untrusted > devices differently, or (c) not ship the driver at all. > > I'm also not sure about the administrative details of this. Certain > versions of the driver may be trusted while others are untrusted. > That would all have to be managed in userspace, so it's not really our > problem, but it sounds like a hassle. Putting the information in the > driver itself would reduce that. What about taking what we have today for USB devices/drivers where we have different levels of "authorized"? There's no reason that could not just move to the driver core and be available for all devices/drivers as that model has proven to work really well over time. See the "authorized" sysfs file documentation in Documentation/ABI/testing/sysfs-bus-usb for some details. Lots of userspace tools have been built on top of that api to control how and when specific USB devices are "allowed" to be used by the kernel and userspace. thanks, greg k-h