Received: by 10.213.65.68 with SMTP id h4csp582360imn; Fri, 23 Mar 2018 10:53:40 -0700 (PDT) X-Google-Smtp-Source: AG47ELtaLyMQE2FjRsmy/E5AF/gELmpS+J9/ha51OVUaL4TX9163klAMlwm3ulvtBmksqlIJWTeI X-Received: by 10.98.46.197 with SMTP id u188mr25056965pfu.32.1521827620692; Fri, 23 Mar 2018 10:53:40 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1521827620; cv=none; d=google.com; s=arc-20160816; b=Mmc6KRqGSRTsr1WlvcD8DQr43IiVRiS5LtwAQXIEOoZWq6TK66fpV3zT07azR6+7uP XgYBlYBYUeZrEdPGWE68WUZ6IAMFBRu3SiFtYMYsCFosHX+9xpMRxjvIB4+zEHnKTLL5 NiTzb0lQIZNeyLfDdwCub+05Wb1e/PvrY6dtF1q5A51LpdBrgw5P5xLgz16sKx1V5IMy 279sP6BWd1t27zTBKtISRLnzvQFnYl0Kv8WLmKREpZ0QTyzLhq5hVaTDUBpb2AzGM1JW 8T3G1mbicy0w087j9GhuA0aqZCeHDIU37L+J5KrDD8XMk69UUns5Iopqz2oFrivpnsuf wm8w== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:message-id:date:from:cc:to:subject :arc-authentication-results; bh=sSj4uqZfJO112tTjFfGswWruC6vVG3txfmaDyQTSsrA=; b=D+vYVi6QxPVKbN8HC3vqwKt6zwRyJ/1UPLbdbU3PqjZyvgVZLtORx4t/Xrg47PlaJ4 ZSCfr3v+uSOXNu7sAx6mXaD/aiLoZVN+TXVZJLQu3Elffi8B9qkzXQKUOTMqNIrdZZzA yDBCePCpnU5skeblE39nKtFxLh4o9YiQcuBuPHrwcRbcNWFigTrhjbisImG2DSzD19Zl c/w1u6Bt8EBH9e6BslDHZbLWjBMvBdZetKYuFPYerNSQOIe3GEaMDucnDpzabmG7voeV rSLbLQIONKZ8YwgdNluDv152L4B17gJdZJCiNznhvn9SpYyP6LjrYdTcRVXjTFDzkihJ YUTQ== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id j61-v6si7646484plb.317.2018.03.23.10.53.25; Fri, 23 Mar 2018 10:53:40 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1752180AbeCWRqu (ORCPT + 99 others); Fri, 23 Mar 2018 13:46:50 -0400 Received: from mga07.intel.com ([134.134.136.100]:25876 "EHLO mga07.intel.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1751790AbeCWRqt (ORCPT ); Fri, 23 Mar 2018 13:46:49 -0400 X-Amp-Result: SKIPPED(no attachment in message) X-Amp-File-Uploaded: False Received: from orsmga001.jf.intel.com ([10.7.209.18]) by orsmga105.jf.intel.com with ESMTP/TLS/DHE-RSA-AES256-GCM-SHA384; 23 Mar 2018 10:46:48 -0700 X-ExtLoop1: 1 X-IronPort-AV: E=Sophos;i="5.48,351,1517904000"; d="scan'208";a="41609357" Received: from viggo.jf.intel.com (HELO localhost.localdomain) ([10.54.39.119]) by orsmga001.jf.intel.com with ESMTP; 23 Mar 2018 10:46:48 -0700 Subject: [PATCH 00/11] Use global pages with PTI To: linux-kernel@vger.kernel.org Cc: linux-mm@kvack.org, Dave Hansen , aarcange@redhat.com, luto@kernel.org, torvalds@linux-foundation.org, keescook@google.com, hughd@google.com, jgross@suse.com, x86@kernel.org, namit@vmware.com From: Dave Hansen Date: Fri, 23 Mar 2018 10:44:47 -0700 Message-Id: <20180323174447.55F35636@viggo.jf.intel.com> Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org The later verions of the KAISER pathces (pre-PTI) allowed the user/kernel shared areas to be GLOBAL. The thought was that this would reduce the TLB overhead of keeping two copies of these mappings. During the switch over to PTI, we seem to have lost our ability to have GLOBAL mappings. This adds them back. This adds one major change from the last version of the patch set (present in the last patch). It makes all kernel text global for non- PCID systems. This keeps kernel data protected always, but means that it will be easier to find kernel gadgets via meltdown on old systems without PCIDs. This heuristic is, I think, a reasonable one and it keeps us from having to create any new pti=foo options Cc: Andrea Arcangeli Cc: Andy Lutomirski Cc: Linus Torvalds Cc: Kees Cook Cc: Hugh Dickins Cc: Juergen Gross Cc: x86@kernel.org Cc: Nadav Amit