Received: by 2002:a25:868d:0:0:0:0:0 with SMTP id z13csp1158172ybk;
        Sat, 16 May 2020 02:52:47 -0700 (PDT)
X-Google-Smtp-Source: ABdhPJxYwE/PCc+qKwHbrWzqnzGmms5ssq6/L2hhHQ7w2HfHjHHfyAk6vNVPSFMtR8rfE6/bDmqq
X-Received: by 2002:a05:6402:1681:: with SMTP id a1mr6468966edv.116.1589622767690;
        Sat, 16 May 2020 02:52:47 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1589622767; cv=none;
        d=google.com; s=arc-20160816;
        b=Htcyb102MgWKKj/kKg556cB+XybT8fkY+EKu3Fb07RWdodn3d830Xy6Uh2/Z0icPLT
         njVtpOQwWn/ozORFfeB1piAd24v+NaH7mRTawrypmWPQIKPgznvs1rnnK+I2C3vlB4Qa
         k1hbu3T3y/KS9o1hmdQcc4JqWq13xu2tNJjJfRv6SACAIkJeyou1biYzwI8qAInDO/sz
         5fEk27WhZsxL7q1XDhMYA9kDF31bvVyhN6Irs/0YQ/3OsLmDTTeTH/fOumsFmXQk4tz2
         pI7u6yWHLBP7dWGW9f86PqTV47uthEJ9ALMEEzZv7Gu79v0LDtr56gA5uy536YhDDuXY
         tL6Q==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:content-transfer-encoding:mime-version
         :user-agent:organization:references:in-reply-to:date:cc:to:from
         :subject:message-id:ironport-sdr:ironport-sdr;
        bh=qeC4W12ib1A19m1zhwOwPQzUr+Kxnl4uOBqc0wSDcEg=;
        b=bu+WqA+PjvPazMoXux45hPb6OZy1Hf0uoNw5Sdui0Zjds8Q/uue6D5mejGTva9SB9w
         /aqIyQ+3WjEs8YkQuQEAdHQ53X24WHBrgz5sN1ty9KKrybBTcSU3EBPs2naJAcE3ZN/N
         j8UF33H9YJ9BLPXRGp94gcrtV4Prw38WKTk7hx1d6ysgi7Lnbg5SXzK/IMQ+oD2NUbuz
         kP7KlyFTm7y3cayJTfsZNY8qzNkhbkuLwJBK9/dydcY/1cWRHxE1J09xRXZyFTXZhg6O
         UTgpez1v5ofKaeZmbXjCngLCL4rqoLw6GKE6NKbt29Vmcbn9B8tnS7Pyfv8vhbRHVsn8
         ptMQ==
ARC-Authentication-Results: i=1; mx.google.com;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=intel.com
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18])
        by mx.google.com with ESMTP id i7si2677808edb.520.2020.05.16.02.52.21;
        Sat, 16 May 2020 02:52:47 -0700 (PDT)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18;
Authentication-Results: mx.google.com;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=intel.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1726399AbgEPJu2 (ORCPT <rfc822;chauncqc@gmail.com> + 99 others);
        Sat, 16 May 2020 05:50:28 -0400
Received: from mga18.intel.com ([134.134.136.126]:40822 "EHLO mga18.intel.com"
        rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP
        id S1726202AbgEPJu2 (ORCPT <rfc822;linux-kernel@vger.kernel.org>);
        Sat, 16 May 2020 05:50:28 -0400
IronPort-SDR: PjK0q3DxK+GGLWu8B8VgIkCXE0rR1I5j4nZQZGm6A06TQbZtZECZAW5GM/tHlqT2XM6Tjv9jvX
 2n9XH763V8Xw==
X-Amp-Result: SKIPPED(no attachment in message)
X-Amp-File-Uploaded: False
Received: from fmsmga007.fm.intel.com ([10.253.24.52])
  by orsmga106.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 16 May 2020 02:50:28 -0700
IronPort-SDR: nFTCwLlqppcjqjYKmCkoUbTQMVYzvh3UjWauQmjHwpbpZsO1LcKcZb4JuxiXZLpsGVoJeFSqnw
 QE6TDmnDKmMA==
X-ExtLoop1: 1
X-IronPort-AV: E=Sophos;i="5.73,398,1583222400"; 
   d="scan'208";a="252604869"
Received: from dbobocel-mobl1.ger.corp.intel.com ([10.252.55.115])
  by fmsmga007.fm.intel.com with ESMTP; 16 May 2020 02:50:23 -0700
Message-ID: <c566b89cc3ef6c164160cc56a820abac3fd70839.camel@linux.intel.com>
Subject: Re: [PATCH v12 00/18] Enable FSGSBASE instructions
From:   Jarkko Sakkinen <jarkko.sakkinen@linux.intel.com>
To:     Sasha Levin <sashal@kernel.org>
Cc:     linux-kernel@vger.kernel.org, tglx@linutronix.de, bp@alien8.de,
        luto@kernel.org, hpa@zytor.com, dave.hansen@intel.com,
        tony.luck@intel.com, ak@linux.intel.com, ravi.v.shankar@intel.com,
        chang.seok.bae@intel.com
Date:   Sat, 16 May 2020 12:50:23 +0300
In-Reply-To: <20200515164013.GF29995@sasha-vm>
References: <20200511045311.4785-1-sashal@kernel.org>
         <0186c22a8a6be1516df0703c421faaa581041774.camel@linux.intel.com>
         <20200515164013.GF29995@sasha-vm>
Organization: Intel Finland Oy - BIC 0357606-4 - Westendinkatu 7, 02160 Espoo
Content-Type: text/plain; charset="UTF-8"
User-Agent: Evolution 3.36.1-2 
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Sender: linux-kernel-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

On Fri, 2020-05-15 at 12:40 -0400, Sasha Levin wrote:
> > Can you put me to the CC-loop for this patches. Some SGX-enabled
> 
> Sure!
> 
> > frameworks such as Graphene use out-of-tree changes to achieve this.
> > That's where the interest to possibly test this comes from.
> 
> Indeed, we've seen a few hacks that basically just enable FSGSBASE:
> 
>  - https://github.com/oscarlab/graphene-sgx-driver
>  - https://github.com/occlum/enable_rdfsbase
> 
> And would very much like to get rid of them...

Yes, for SGX this is functional feature because enclave entry points,
thread control structures (aka TCS's), reset FSBASE and GSBASE registers
to fixed (albeit user defined) values. And syscall's can be done only
outside of enclave.

This is a required feature for fancier runtimes (such as Graphene).

I'll try the next version by patching Graphene to use this instead of the
out-of-tree drive. That should give at least fairly realistic
workload (an arbitrary dynamically linked executable running inside an
enclave) for this patch set.

/Jarkko