Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
	id S1754014AbcCIVGZ (ORCPT <rfc822;w@1wt.eu>);
	Wed, 9 Mar 2016 16:06:25 -0500
Received: from mail-db5eur01on0041.outbound.protection.outlook.com ([104.47.2.41]:13152
	"EHLO EUR01-DB5-obe.outbound.protection.outlook.com"
	rhost-flags-OK-OK-OK-FAIL) by vger.kernel.org with ESMTP
	id S1752167AbcCIVGR (ORCPT <rfc822;linux-kernel@vger.kernel.org>);
	Wed, 9 Mar 2016 16:06:17 -0500
Authentication-Results: infradead.org; dkim=none (message not signed)
 header.d=none;infradead.org; dmarc=none action=none header.from=mellanox.com;
Subject: Re: [PATCH v10 09/12] arch/x86: enable task isolation functionality
To: Andy Lutomirski <luto@amacapital.net>, Kees Cook <keescook@chromium.org>
References: <1456949376-4910-1-git-send-email-cmetcalf@ezchip.com>
 <1456949376-4910-10-git-send-email-cmetcalf@ezchip.com>
 <CALCETrX6wJHC_yBGy7H6LamHTvGf8x+Fjqi6P2jxUBZ7GBp0AQ@mail.gmail.com>
 <56D895EA.1060301@mellanox.com>
 <CALCETrUrc_LJyLJLHefSDYagCrNqqzKuknr6uLgVXnPW8PmZKw@mail.gmail.com>
 <56DDE9C9.5060900@mellanox.com>
 <CALCETrUrP+gZsDLChMi5ZbT-TkD4gXvMZQt+iun2EYHipcuxHQ@mail.gmail.com>
 <56DF38BA.9030007@mellanox.com>
 <CALCETrVfKRZKV0ZQQn_ca0T7Ts5a6h2+4GEyoEFh31JOyg4XQw@mail.gmail.com>
CC: Thomas Gleixner <tglx@linutronix.de>, Christoph Lameter <cl@linux.com>,
        Andrew Morton <akpm@linux-foundation.org>,
        Viresh Kumar <viresh.kumar@linaro.org>, Ingo Molnar <mingo@kernel.org>,
        Steven Rostedt <rostedt@goodmis.org>, Tejun Heo <tj@kernel.org>,
        Gilad Ben Yossef <giladb@ezchip.com>,
        Will Deacon <will.deacon@arm.com>, Rik van Riel <riel@redhat.com>,
        Frederic Weisbecker <fweisbec@gmail.com>,
        "Paul E. McKenney" <paulmck@linux.vnet.ibm.com>,
        "linux-kernel@vger.kernel.org" <linux-kernel@vger.kernel.org>,
        X86 ML <x86@kernel.org>, "H. Peter Anvin" <hpa@zytor.com>,
        Catalin Marinas <catalin.marinas@arm.com>,
        Peter Zijlstra <peterz@infradead.org>
From: Chris Metcalf <cmetcalf@mellanox.com>
Message-ID: <56E09031.8050007@mellanox.com>
Date: Wed, 9 Mar 2016 16:05:53 -0500
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:38.0) Gecko/20100101
 Thunderbird/38.6.0
MIME-Version: 1.0
In-Reply-To: <CALCETrVfKRZKV0ZQQn_ca0T7Ts5a6h2+4GEyoEFh31JOyg4XQw@mail.gmail.com>
Content-Type: text/plain; charset="utf-8"; format=flowed
Content-Transfer-Encoding: 7bit
X-Originating-IP: [173.76.23.146]
X-ClientProxiedBy: DM2PR0801CA0010.namprd08.prod.outlook.com (25.162.18.20) To
 HE1PR05MB1689.eurprd05.prod.outlook.com (25.169.119.155)
X-MS-Office365-Filtering-Correlation-Id: 45f72eb1-9430-4af5-1719-08d3485ea618
X-Microsoft-Exchange-Diagnostics: 1;HE1PR05MB1689;2:6Wd1Kq8D0UVfEQ95dS9mie3mVMQYoZuN26kmfQWCYi8X2kjXfNblWaDZ7SfxnT/NYLv2Z+R92GIMl7YnLBIZHeZl6gwppv4EhUcgMEOFvMn5ARAM2P4OPJ876z9QJqgG3yngVd4uLKS0Qc1lzhttR49Xbrrk7LbCwU6nrZrcoe92eDTM/e0Ix2LP9Gsqkq+M;3:Yzz9bue9ir6ir2ZfAYQvMbKsuIrOJVBix2pJkwf9dn0KozlNnioygJtRiczjSBL7zx2buk3Er/K4+fP9Jj+8rZl0sdw0du9SLNM3muyFrbL392pI+7FH2HyMKsqLKF+E;25:2nXNZuWEhrZSRy1nHheIUT9/K1ySa9yPULChSp+Q0mz9ncbtxhvE2R0ILFIwSzb4HknmSIMCPh/3n4gwkTR9HmQTTNyTLvMdcqNeTZCaB8NInuiw0MauBjr7HaYVOONXNxs91S3f6npP4IgQ1eg6asg7ikrm3VIffLHxhl56n7ua4cG3S0w+CEC1mgv8+k72+f3sffanf3F1HIFTkMFWJlQV849Qo89iRMwYtQzkjr+aVb4ne0H6CpvoZ1JFip4mfbXusxlFLq+7l0+Uo4UVTaVTh7t3EaDnFYTGpGLVLXKWjNkxVdwHL/BlqfirhMu5VYN5iFhGwUO/yfdP+cJepQ==
X-Microsoft-Antispam: UriScan:;BCL:0;PCL:0;RULEID:;SRVR:HE1PR05MB1689;
X-Microsoft-Exchange-Diagnostics: 1;HE1PR05MB1689;20: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;4:MPE6dNXAD/SdQh7exNbRucoDJbtbogChJUgV+f+iaBhHHbGZLtss6tyjFVEBUigSo5P0TCRhn9bfd3+hqjmP0iNfTEGhZRN+Yn81YPCyTG8dir/gz86r4uQCS24GQOSxSV+LCdbUKoxedMj3+aQ8szfycooEjTixyvDMHfe5Mf57p8ppxmZ/Ehenub2SDNv4G0+LBTfd4yMKqUszWrpDqn9EqQIdNGRp+6xJnktIeRUMa6F/iTYjlgbK6zfEx22bMTewALjf9pLQnhIwdhIwzZQoZ6CoHTX5z+Yw3u4mZlnbzFISKiHSDRivM0IlAZYx/NHp5xd3lCl3GoyX82d2G2rRrAMj0vlCJjFE8ekPzbL36X7JuAJWFdjVZdlF0hqa
X-Microsoft-Antispam-PRVS: <HE1PR05MB168903EE0E3B730441CD0833B2B30@HE1PR05MB1689.eurprd05.prod.outlook.com>
X-Exchange-Antispam-Report-Test: UriScan:;
X-Exchange-Antispam-Report-CFA-Test: BCL:0;PCL:0;RULEID:(601004)(2401047)(5005006)(8121501046)(3002001)(10201501046);SRVR:HE1PR05MB1689;BCL:0;PCL:0;RULEID:;SRVR:HE1PR05MB1689;
X-Forefront-PRVS: 0876988AF0
X-Forefront-Antispam-Report: SFV:NSPM;SFS:(10009020)(4630300001)(6009001)(6049001)(24454002)(377454003)(479174004)(4326007)(6116002)(59896002)(3846002)(1096002)(2906002)(230700001)(2950100001)(93886004)(42186005)(15975445007)(92566002)(5004730100002)(64126003)(189998001)(33656002)(77096005)(586003)(36756003)(19580395003)(80316001)(65806001)(76176999)(87266999)(50986999)(54356999)(65816999)(23676002)(5001770100001)(65956001)(50466002)(66066001)(117156001)(81166005)(47776003)(86362001)(83506001)(5008740100001)(18886065003);DIR:OUT;SFP:1101;SCL:1;SRVR:HE1PR05MB1689;H:[192.168.1.158];FPR:;SPF:None;MLV:sfv;LANG:en;
X-Microsoft-Exchange-Diagnostics: =?utf-8?B?MTtIRTFQUjA1TUIxNjg5OzIzOkJ1SStsc2FzK0JWV3N2aVhXd3QxSytueHBo?=
 =?utf-8?B?LzgyL3ArNjhoa0YyQ2FsMVJyR2J5RWNOUXJweW9CT214eWROMEsySHJSdGtt?=
 =?utf-8?B?WENCZHJkTzNBcmZxelU0bHNXS1k4UkJZR25yaUppeXBJUm1Pb2dMalFiOVlh?=
 =?utf-8?B?b2N5U3RBUFczUXVJTkoweDRkSGNKWkNiT08xWjRkRWFDVGhrZVYxeEtkL2ZI?=
 =?utf-8?B?MzNyU1FlMXc2dXdwN0VUdUJJcG9pRjlsbGN0RWgxZnBwNTVGUkJUZk5Cc1FF?=
 =?utf-8?B?RkphQnJLRWQyZnVxbzcvTTlGZk1VWXJHOUtWbWlRb0hsWWY2R3NnZk8vYTFs?=
 =?utf-8?B?bjBMSk1nWXh6ZUx5am5OdThsMFE2anhiSDNvTlZSWjczZjd1NGluYjRlU25R?=
 =?utf-8?B?ZVBQY3MyNGRySVFYZU1mWlFqVUhLQ1UrdEJTL0ZBcVJtVWxlbmpadnEyZGxp?=
 =?utf-8?B?SjRhZllSOUZqRGhKOEgyNURoWnNWSm4zTGk3SXF0U3RyTk8vQ1NBRHBwQWx4?=
 =?utf-8?B?Z1NVYzM1dyt3ZkEwNFY4TGMyMGxlTFk3WVpWRStPY1FjeHdOS09rNDdrakp3?=
 =?utf-8?B?MkI3VFNDZnduMVg0eGNRSFRJbC9Tcm1qWk9DcUpUTXdIZlNXZ2V1NDVDNkNN?=
 =?utf-8?B?MnRWQ0dFUmhpZm5yVXdyOWp0VkNPOEk1RWYrSlRWRzVBNkpBaFBuNDdZRzR0?=
 =?utf-8?B?Y2FVSFR0UEp1NzRYa2RHTTJaMUVBaU5WQ09ad2taVjA0bGZmUTUzR2VTL0dX?=
 =?utf-8?B?NXJzNFFpMUNGcGt5dnkzYmJVYXBxK01SbFVheUN5N3Y4UFE4WmRIeGVjMG04?=
 =?utf-8?B?RGNKSGR3bXRIK3ZzanhuRCtRbUdWaWhsZ0ZiVmhyb01PTE9mRnNyV2c4R2Yv?=
 =?utf-8?B?RDVLNWdyN29mZFJpeDlwVFNlUDZ1MEFtd3QwT1BtdGhOSGRtbG9JU2wvMUsv?=
 =?utf-8?B?cm1maktON1h6QmxnRHpPS1IrN2swdlNxNlVwUGJEbzhQeGFpcy90ZDFockVi?=
 =?utf-8?B?NENoMVRNanVwdDcxVWNUa1pXQ2wzd3MyK1lWdkVHRlp5U2ZqSmFWU0N2azVW?=
 =?utf-8?B?UU92NW9Xam45VVdXYTU2K21OUGY1em5pd2hPU25aZWJTRWU1QWVhMTVFY3pB?=
 =?utf-8?B?SjM1Ty9YSCt2d3Q2M1JUa01LTkVCUEhmNHRNdVpGQUlURktpeG8wWnJmTE9J?=
 =?utf-8?B?M1J2eXl0ZkQ3WVhtTzUvUGVxOVA2QkRHZ1NINnZiRjc4SHBweE1GUXg2cVBF?=
 =?utf-8?B?OHRza2gyT1RFa3ZLNzJaQkdWM2dCTTM4eVVSY2Z1SGJXWjgvUG5kNnVBa3RK?=
 =?utf-8?B?bE5zcU5XeWNCT0NjTzJQdkdrakE4TlUrenFoWERqSHd2WDBETUxjZ0VkdVBN?=
 =?utf-8?B?REx5R21USlhCZzZUTDVOZFZ3czA2TFdjZTR0S1N4cmdzZ0tSRW5na3ZMV29k?=
 =?utf-8?B?Q254bHdQSHVHWEUvdzBDeTZSSmNxd0V3bkZTbjRwR1kxV1FPYzFkN2ozWUhQ?=
 =?utf-8?B?Wm5WTjZyM1g3NGVHd285VzlHM1FMYzBudmp2dkJZSjZubEl3bDc3U0d4N0JV?=
 =?utf-8?Q?jjBiLv5xFa7LqAcT2labatFVcIDgYSx4GWFnaX2b6Rto=3D?=
X-Microsoft-Exchange-Diagnostics: 1;HE1PR05MB1689;5:H3FM7An55B16me0RQTXrSmEJJHsQ1b9rDYjUJdHxxuBCCIYhs5KS1u59uRt5tSEEje+i4RVwX+6VjavPYyMBqOYAFdOIIkurP4WTlGnFYrm/dPJbHTO/yDNonBqzy4CfDvzB28uL+xp01NxoPMAgIQ==;24:+IVJhYl9QqafgtBWi6yfA/1LbTZTuG9L7xmfWTMiYGCwCmyF918E4QnQ2Va9Eop9a6jOeQ28NM7zbQ3Tzr0Y6SBgUAb8gr7WkegWnqfL928=
X-OriginatorOrg: Mellanox.com
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 09 Mar 2016 21:06:06.8998
 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-Transport-CrossTenantHeadersStamped: HE1PR05MB1689
Sender: linux-kernel-owner@vger.kernel.org
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org
Content-Length: 904
Lines: 19

On 3/9/2016 3:58 PM, Andy Lutomirski wrote:
>> My preference would be not to have to require all task-isolation users
>> >to also figure out all the complexities of creating BPF programs, so
>> >my intention is to have task isolation automatically generate a BPF
>> >program (just allowing prctl/exit/exit_group and failing everything
>> >else with SIGSYS).  To support having it work this way, I open up
>> >the seccomp stuff a little so that kernel clients can effectively
>> >push/pop a BPF program into seccomp:
> That sounds like a great use case for the new libtaskisolation that
> someone is surely writing:)

Happily, task isolation is so simple an API that all that is needed is a prctl().

... Unless somehow a requirement to inflict a huge blob of eBPF into the kernel
just to use task isolation safely is added, of course :-)

-- 
Chris Metcalf, Mellanox Technologies
http://www.mellanox.com