Received: by 10.223.185.116 with SMTP id b49csp1055245wrg;
        Fri, 16 Feb 2018 11:35:34 -0800 (PST)
X-Google-Smtp-Source: AH8x224jg5wlsNuKX6hcxkY01XVctQ6c9XMj1gJejmdqxmujHUijzVCKQukE/HVk1ax9A1FMNRG0
X-Received: by 2002:a17:902:7c84:: with SMTP id y4-v6mr6699428pll.305.1518809734369;
        Fri, 16 Feb 2018 11:35:34 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; t=1518809734; cv=none;
        d=google.com; s=arc-20160816;
        b=TKFOtfNFhiWNqTN0uBnV+8auJIxZh8sbONhmTu3qKBYQN2dAZLmtuDNjAWSXSqYhAK
         qAMLKOdOfUApFdC+eDOUx45SJFgkNHGbI5h7dmi0sv2CtCC2kBeS5tOXww1XP9+x4xQy
         oyOLs7TwLLemEu9PrJrqr3705LNmJtK1C2fzIz5+0LVMqU5Pc00opMq6vXXxrmHulNkq
         R54A8B7lAIuCB9gIeY5DJq5jkg81JzbiHmJCGP/Wog/T93Sn+J+nlt97ThOtOhS+Iy1R
         LzcpE7T6LkT/HKcWg1bans4aNFzfncefiPmrnOsxd/WHAEKlsOftSj0pXP0TGGVHM+8F
         aLaQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:cc:to:subject:message-id:date:from
         :references:in-reply-to:mime-version:dkim-signature
         :arc-authentication-results;
        bh=F/g7Eh9Sy8pqhrf4vVZN9fo1OE8QkQQFVLC3aSQOtaE=;
        b=lSCOKGxVYTYb1PmWsSTwKKYJEqASWYCfDJH3nUPxIQw94xZqj1yQ07moMdg0iqL511
         F6Ex6n/9oIsy/Mye00mVNwN7GJPQUQK/Kl40dB8Na47ojioIifoP4PqvWl0RRaZ5TDPG
         ZoN2B66cThoy/m3e7CDsqka0sJyOdVFcFJIHwOFs+dPvF/yv7ygg3GXf1lsqzugmzh8A
         kL11EG5+F4XaAW31tEGtM9INK2F1BbHDAQ5bffCFpVomeTHN2FxJAAxsdsC06D5nhaMc
         RaVPD9fgdnBbOZKuPEntMsYvIxUtWbnQS2UdUSAtz6dMD5qtGBQztzSUVXB0j8J1dyIR
         l9Dg==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@gmail.com header.s=20161025 header.b=mZ9zDKXp;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67])
        by mx.google.com with ESMTP id e3-v6si435079pld.292.2018.02.16.11.35.19;
        Fri, 16 Feb 2018 11:35:34 -0800 (PST)
Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@gmail.com header.s=20161025 header.b=mZ9zDKXp;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1031490AbeBPQZz (ORCPT <rfc822;deadfox.tw@gmail.com>
        + 99 others); Fri, 16 Feb 2018 11:25:55 -0500
Received: from mail-qk0-f196.google.com ([209.85.220.196]:44889 "EHLO
        mail-qk0-f196.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S1031270AbeBPQZy (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Fri, 16 Feb 2018 11:25:54 -0500
Received: by mail-qk0-f196.google.com with SMTP id l23so4416263qkk.11
        for <linux-kernel@vger.kernel.org>; Fri, 16 Feb 2018 08:25:54 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=20161025;
        h=mime-version:in-reply-to:references:from:date:message-id:subject:to
         :cc;
        bh=F/g7Eh9Sy8pqhrf4vVZN9fo1OE8QkQQFVLC3aSQOtaE=;
        b=mZ9zDKXpnj0Y4JcCWMjJTK22gEz0J6GAPVOV6ouuC5NQnIAgJHZUkDlO7HX+25xRSA
         QTN7TQYbx24U6DWIWvfcxP5zZvuKzTBG/RZQqA8uEkH34L2R+/FOJb1KVMs7NJez7Cu2
         a0tjVyQ8hUecE6P/bnFfTugUcnMuGukascfYiMLn4Fo9g7MB87wRlTJBYO19+DnfGs8i
         y6bm00PFAjXHDSipS8agaElDXGlqZklc405r4U7Tzs2x+cnTYajrkxeEuTaROiMsKKaJ
         Im8TynEXlBgY5ekszIM0gxVxM5jUQ0JWB6mXlR2YBLtzdSz5w7H5xTuVs98I1lyHBr5x
         iOiw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:mime-version:in-reply-to:references:from:date
         :message-id:subject:to:cc;
        bh=F/g7Eh9Sy8pqhrf4vVZN9fo1OE8QkQQFVLC3aSQOtaE=;
        b=pGr5dirHhQHQsbfVaZ6UhTE/07zcYn7Ems6ZIhLFEAjtc4EKlOIPxVCIEMjscO8HEf
         toN3HdvKfLXPG0Vu/K52YZjl0lUsY1N6wSDhMjWYageIS1NLAOQjLXtAPzL1FEiabzMh
         Miuy6AA8lqdMXobEQtYOjcyVtCFiU6v+ZYJtR6q1fUdnLfobb9snJSLL2n7pcfyf0UiR
         HuoS63m9EdIxqFHcIF6xfsPanTDC9oMEMa0zxF1t8xKiZOSKcio73oK54ZdhwPjJkFMy
         XIu+/5zNcDNdfnbklEiumMIJt9+lIC5vpZoG+8U6G9STSTRW87MyvzRJrU7EX08L/icX
         4Asg==
X-Gm-Message-State: APf1xPAMu9tm622KNlc1XG1hMcdezVrVMj0WgDazaE+KA0Zk/1DCZeit
        x7l+H9StNyxc0jqSyYUY4+MFwcwM2D/NhICL6LU=
X-Received: by 10.55.217.28 with SMTP id u28mr10457878qki.148.1518798353540;
 Fri, 16 Feb 2018 08:25:53 -0800 (PST)
MIME-Version: 1.0
Received: by 10.200.56.101 with HTTP; Fri, 16 Feb 2018 08:25:33 -0800 (PST)
In-Reply-To: <CALCETrUY4uZeG2fz=OQWGuyCOcBBNbep6TaJz82CZSP89=g3-A@mail.gmail.com>
References: <20180215163602.61162-1-namit@vmware.com> <20180215163602.61162-5-namit@vmware.com>
 <CALCETrUY4uZeG2fz=OQWGuyCOcBBNbep6TaJz82CZSP89=g3-A@mail.gmail.com>
From:   Dmitry Safonov <0x7f454c46@gmail.com>
Date:   Fri, 16 Feb 2018 16:25:33 +0000
Message-ID: <CAJwJo6Z-1yMszSJnx1=+z0igjHSrfz=dLKxmsxrFhcCyYgYpHg@mail.gmail.com>
Subject: Re: [PATCH RFC v2 4/6] x86: Disable PTI on compatibility mode
To:     Andy Lutomirski <luto@kernel.org>
Cc:     Nadav Amit <namit@vmware.com>, Ingo Molnar <mingo@redhat.com>,
        Thomas Gleixner <tglx@linutronix.de>,
        Peter Zijlstra <peterz@infradead.org>,
        Dave Hansen <dave.hansen@linux.intel.com>,
        Willy Tarreau <w@1wt.eu>, Nadav Amit <nadav.amit@gmail.com>,
        X86 ML <x86@kernel.org>, LKML <linux-kernel@vger.kernel.org>
Content-Type: text/plain; charset="UTF-8"
Sender: linux-kernel-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

2018-02-15 20:02 GMT+00:00 Andy Lutomirski <luto@kernel.org>:
> On Thu, Feb 15, 2018 at 4:36 PM, Nadav Amit <namit@vmware.com> wrote:
>> Based on the understanding that there should be no way for userspace to
>> address the kernel-space from compatibility mode, disable it while
>> running in compatibility mode as long as the 64-bit code segment of the
>> user is not used.
>>
>> Reenabling PTI is performed by restoring NX-bits to the userspace
>> mappings, flushing the TLBs, and notifying all the CPUs that use the
>> affected mm to disable PTI. Each core responds by removing the present
>> bit for the 64-bit code-segment, and marking that PTI is disabled on
>> that core.
>>
>
> I dislike this patch because it's conflating two things.  The patch
> claims to merely disable PTI for compat tasks, whatever those are.
> But it's also introducing a much stronger concept of what a compat
> task is.  The kernel currently mostly doesn't care whether a task is
> "compat" or not, and I think that most remaining code paths that do
> care are buggy and should be removed.

Yes, please, don't do a stronger concept..
Speaking from CRIU side, it C/R ia32 tasks with x86_64 binaries.

-- 
             Dmitry