Received: by 2002:ac0:a582:0:0:0:0:0 with SMTP id m2-v6csp2445564imm;
        Thu, 18 Oct 2018 14:58:58 -0700 (PDT)
X-Google-Smtp-Source: ACcGV61IoPEWetbOmiuRP3QfRoT4lXJiuNy+6lWlSXgIZ4FNREz23YzJzOd26TFeK85s3NW3kchx
X-Received: by 2002:a63:40c2:: with SMTP id n185-v6mr30453792pga.116.1539899938392;
        Thu, 18 Oct 2018 14:58:58 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1539899938; cv=none;
        d=google.com; s=arc-20160816;
        b=uHLEx1wXse/1M0Ou21e54u1byti32F4NTF+iU0hgDFVqPlniSC40XllbFPy4rodUPP
         k4nkKg9z3ZWzqJIqZNt1c7A441daAxtpQNEFszkLiSDSXC39LVNfMRNBkszrVxC/a2rS
         f9Eu1ZNhdajlwueSRFZQ1fRIS1QTyXJkkttRoX8IYZueqzW5lwZAXEnIHwMoYiT+//jn
         BDJKZ7rBAfOdAD6n1Y2Aoc/rNYIdypvjRxCmQzv/YiYbLdJLMOjhkWTHwSeNKLpkzX7N
         JfjTd5d4QsaRxJr78x00qGCgzzEXq0fcmO5f8xbkD+2afd4S4oT7iFr+HWZYLcNTEdxH
         Llxw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:to:references:message-id
         :content-transfer-encoding:cc:date:in-reply-to:from:subject
         :mime-version:dkim-signature;
        bh=SsYQRzp9Y9EowT8w7pXhhEuLE3rv1uvmE5mK6UjAHX4=;
        b=rEkWqmwsiBEXc4bT1XHy+YpmxmNVsBLPrgOSSgb6a+mNrO8Dsc2NlJ1CrlpcaVV6iy
         1XPR29o3x5EG9+fBCnGeApI3eJqRA2xOhO0WYwb8mzqPRu0PSfa4zauYbs8S6sgJ0Zb7
         TGST/vGKyZhztoJlZsyZdanbEzDbgraMUGnAzJ5617jcWefEBlAMKspny5o+XBD24qI1
         GiSgUbwjAJxQQ9Rap4E9mZ8ySETXyBon2aY/oms4/isRdPQZGBDJonr6Td/XeQ19Wwy/
         mxNThm37mYsE4xD/ssqC8nUDsny7HLv3WPjKqqBdZzexFCR0MFoi1KLSgpel81XlQAat
         FEJg==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@amacapital-net.20150623.gappssmtp.com header.s=20150623 header.b=LFEgt4kW;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67])
        by mx.google.com with ESMTP id n84-v6si22011982pfg.127.2018.10.18.14.58.42;
        Thu, 18 Oct 2018 14:58:58 -0700 (PDT)
Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@amacapital-net.20150623.gappssmtp.com header.s=20150623 header.b=LFEgt4kW;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1726702AbeJSGBU (ORCPT <rfc822;kkoh.linux@gmail.com>
        + 99 others); Fri, 19 Oct 2018 02:01:20 -0400
Received: from mail-pg1-f195.google.com ([209.85.215.195]:35284 "EHLO
        mail-pg1-f195.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S1725751AbeJSGBT (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Fri, 19 Oct 2018 02:01:19 -0400
Received: by mail-pg1-f195.google.com with SMTP id 32-v6so3632913pgu.2
        for <linux-kernel@vger.kernel.org>; Thu, 18 Oct 2018 14:58:19 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=amacapital-net.20150623.gappssmtp.com; s=20150623;
        h=mime-version:subject:from:in-reply-to:date:cc
         :content-transfer-encoding:message-id:references:to;
        bh=SsYQRzp9Y9EowT8w7pXhhEuLE3rv1uvmE5mK6UjAHX4=;
        b=LFEgt4kWmUU8PY5PsG9zKbLqmOuqBHag/W6JD4WhjNvwLCVRbSWNV9vrEun7ECJmuH
         Z1cP7+cmjCSXoWYadbRcaCQJX5sUOoqoXKsbqYSpdSiDMVqTJzakVNBa9jOXfuaBpB8H
         3kKIjFn1k8cZ83r94YsUkvz95mnXamfQ2qZRwbu97c6loX6OkoTd+zL6ctoT1BF9q91Z
         ZLJoW/SHI7G7brvUq+ZTvUzvcxjHul+pDe7TuZOjVZEJJLgeO8rO9eILZ7o4onILigbF
         CKerPs1ZMvUU8txQzP/1T55FtOoZH+9/PWZR5kYvFRrBHhSXyZwFoVWXlldb++m24tDw
         wHRw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:mime-version:subject:from:in-reply-to:date:cc
         :content-transfer-encoding:message-id:references:to;
        bh=SsYQRzp9Y9EowT8w7pXhhEuLE3rv1uvmE5mK6UjAHX4=;
        b=JaoFMsOM5vXlFFesDgEZYKKizcBq8VDlH2F0ZNIhbvC2+HeRQa9iNFS5txrWXI5VJE
         AiMSFwz8PgKeoN6dgJYaohxuVfiimFSX3Qw9RWC+fo55Ish5CTpYR6OEmJfnUZ6c9a4r
         usH9YRTwujgTyCaTMK/KqwUcsg5p4fE18gAY/nXZFTDkpxN7arQiAo6OTGjcdhxV/Nn1
         zN1SjYtb6rV0/NDTVNx9akyKIsQxwxHxct74srQq559rVmbFUEOkMtrakaxU7NZUF5w1
         gntRggNucZBzksZ4OBiTr4SEO7qOxtQYcCCYUyaM7sHY6LpXS16rX1i4tfkvAYRq5O+X
         xHlA==
X-Gm-Message-State: ABuFfoiuR3Bv2Fx/6eNWvelbljzbdQJ8wPP7gaEM6S3I2Wv0VPr6wdde
        NJuL+3H7PQY8dzAtT2OoAewh2w==
X-Received: by 2002:a63:5c1f:: with SMTP id q31-v6mr30199432pgb.452.1539899898835;
        Thu, 18 Oct 2018 14:58:18 -0700 (PDT)
Received: from ?IPv6:2600:1010:b055:c039:8d1c:3674:f40d:d2a1? ([2600:1010:b055:c039:8d1c:3674:f40d:d2a1])
        by smtp.gmail.com with ESMTPSA id s13-v6sm45568514pgs.76.2018.10.18.14.58.17
        (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128);
        Thu, 18 Oct 2018 14:58:17 -0700 (PDT)
Content-Type: text/plain;
        charset=utf-8
Mime-Version: 1.0 (1.0)
Subject: Re: [PATCH 05/11] x86/fpu: set PKRU state for kernel threads
From:   Andy Lutomirski <luto@amacapital.net>
X-Mailer: iPhone Mail (16A366)
In-Reply-To: <20181018212421.ndjtawc34cqdycyy@linutronix.de>
Date:   Thu, 18 Oct 2018 14:58:16 -0700
Cc:     Dave Hansen <dave.hansen@linux.intel.com>,
        Andrew Lutomirski <luto@kernel.org>,
        LKML <linux-kernel@vger.kernel.org>, X86 ML <x86@kernel.org>,
        Paolo Bonzini <pbonzini@redhat.com>,
        Radim Krcmar <rkrcmar@redhat.com>,
        kvm list <kvm@vger.kernel.org>,
        "Jason A. Donenfeld" <Jason@zx2c4.com>,
        Rik van Riel <riel@surriel.com>
Content-Transfer-Encoding: quoted-printable
Message-Id: <A6DB636D-0021-48A4-98C5-7F4B3DFC98D2@amacapital.net>
References: <20181004140547.13014-1-bigeasy@linutronix.de> <20181004140547.13014-6-bigeasy@linutronix.de> <39e0a55f-4920-cfde-9bef-09c51109d211@linux.intel.com> <CALCETrUdxsFA5g0M9uRFktfdi=mxK_g3kBfs-VxwDZ0xWqjFAQ@mail.gmail.com> <20181018162644.qqjkzoqn2fleyi2b@linutronix.de> <CC7B46F7-7A6E-4CAF-A1EB-91271CC7B092@amacapital.net> <20181018182538.vgotfpsdy7qxl2tg@linutronix.de> <CALCETrVjEOkNhdyAF10PaYi_rnFUWKRqPhLRCq3ZV=gxQFETxg@mail.gmail.com> <aedef390-2fb1-8c09-3a69-53d3fd0505da@linux.intel.com> <20181018212421.ndjtawc34cqdycyy@linutronix.de>
To:     Sebastian Andrzej Siewior <bigeasy@linutronix.de>
Sender: linux-kernel-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org



> On Oct 18, 2018, at 2:24 PM, Sebastian Andrzej Siewior <bigeasy@linutronix=
.de> wrote:
>=20
> On 2018-10-18 13:56:24 [-0700], Dave Hansen wrote:
>>> But this is not the only loophole: There is ptrace interface which is
>>> used by gdb (just checked) and also bypasses PKRU. So=E2=80=A6
>>=20
>> Bypassing protection keys is not a big deal IMNHO.  In places where a
>> sane one is not readily available, I'm totally fine with just
>> effectively disabling it (PKRU=3D0) for the length of time it isn't avail=
able.
>=20
> Okay, this makes things easier. Let document that for kernel threads we
> use PKRU=3D0. This should be happening in my try right now. I double check=

> tomorrow just in case=E2=80=A6
>=20
>=20

If you document that, please at least document that it=E2=80=99s a bug and n=
ot intended behavior.=