Received: by 2002:a25:2c96:0:0:0:0:0 with SMTP id s144csp1381936ybs; Mon, 25 May 2020 14:45:06 -0700 (PDT) X-Google-Smtp-Source: ABdhPJxBZ3owpwJLa5i9C+mMEEgjofXnJIBcDLWWnF3pEYTZracpJeV00rgUQx+MEPvajqaNhCPp X-Received: by 2002:a05:6402:1d2a:: with SMTP id dh10mr16581502edb.276.1590443106600; Mon, 25 May 2020 14:45:06 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1590443106; cv=none; d=google.com; s=arc-20160816; b=kQNkRTUbkqATwAEs9G88LU3gFmlxgBt+Vkav5nMIKEliC6Ifa/jcUcT0e73VrohKzT c1whEYRgOiVY7YwpM0XEpZIi7pBTQIYTs5st9HtidmtHOD6avp7eKLmCxDsEigf2CtwN 5uDpiqAyvAa2YZ/GMcdmWgaLSEe6484nXnkrZ+lz16CU4nGLYAxKnE7T8XMFcThUWe5v ZCx6bqqsWqNInW+JbZQm1xjfYHokKB+1d8kBpQ++rqWgdYhJchCnJ3p3bcWu5NCS+ryG CR1GgR0WmnMeZ7iwurq3dPQeki5HfSIkZxrM7Xnxn+i81pqufUvhbZMpa6OvFr6V4+MB TxBg== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:in-reply-to:content-transfer-encoding :content-disposition:mime-version:references:message-id:subject:cc :to:from:date:dkim-signature; bh=KtQ2SC4NpHGImf+Tkc9R2teElcvTerbBEl4X1UzaM28=; b=wm9xhH+lDvrU+TqjErCCuEwyGh/VuKcVAwhBF0MQB8C0Lskut0bOLCjERVN2DEVZ/m iIQFoLzVOFIcKfsauJvutHeM66lu0t/Tkz5795fQrf5shCfBQH9+cizMSic/YNVuFsTJ 3F5s9CwV/1edRDP7ZRjiPkiJmbWAlMXx5GubQvsNnRXdadlF661FJTI+KAYIdSFityWW oxvg1KfgTv0LnbXZq9gyl+izfnv3ug1g9KFSV2X00fNt9ENY9pcmuhHVU+TKYYWWyOXU nkpGKLMst03rrhTxo9szSsyGXOpqRsKbl8W9JL5ZE911jDzpx1bVZVSVu40m6VQGAeVe OtCg== ARC-Authentication-Results: i=1; mx.google.com; dkim=fail header.i=@infradead.org header.s=bombadil.20170209 header.b=lqW+siR8; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18]) by mx.google.com with ESMTP id i16si327486ejh.449.2020.05.25.14.44.43; Mon, 25 May 2020 14:45:06 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18; Authentication-Results: mx.google.com; dkim=fail header.i=@infradead.org header.s=bombadil.20170209 header.b=lqW+siR8; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S2389724AbgEYSIk (ORCPT + 99 others); Mon, 25 May 2020 14:08:40 -0400 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:52444 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S2388621AbgEYSIj (ORCPT ); Mon, 25 May 2020 14:08:39 -0400 Received: from bombadil.infradead.org (bombadil.infradead.org [IPv6:2607:7c80:54:e::133]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id BCC08C061A0E for ; Mon, 25 May 2020 11:08:39 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=infradead.org; s=bombadil.20170209; h=In-Reply-To:Content-Transfer-Encoding :Content-Type:MIME-Version:References:Message-ID:Subject:Cc:To:From:Date: Sender:Reply-To:Content-ID:Content-Description; bh=KtQ2SC4NpHGImf+Tkc9R2teElcvTerbBEl4X1UzaM28=; b=lqW+siR8qtiAMM7Ddod74VaBie aKsujkrzo3JVXxk/qIICnnccnJVJQt884GIWER0zPUzXJx2nqGRAaNsxMYV8Sq6Q/SEEGo0XkPDGZ /EJvlWvTNo1OW7TwjorFNCsMZnnwVc0WmjxVSUXHy8V1ZyVlr8uQ7YU4BrKmAF9keKI60F6cjpSNg an2IerjCCfGD+L39XIeikvdlcQdIiZOWtxTy40xrRZxC6jNg7FnMWiSLlWJA/aDKrheGokOqDoKtm SkSbxJdQZexIBIGyFAH6W4D0YCbhbsX5YwUmOyZ60cOtstxHtc8GrwuxBawUvvZepEO7UwJX52gKD MuSgxKyQ==; Received: from j217100.upc-j.chello.nl ([24.132.217.100] helo=noisy.programming.kicks-ass.net) by bombadil.infradead.org with esmtpsa (Exim 4.92.3 #3 (Red Hat Linux)) id 1jdHWe-0004PD-Vv; Mon, 25 May 2020 18:08:37 +0000 Received: from hirez.programming.kicks-ass.net (hirez.programming.kicks-ass.net [192.168.1.225]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by noisy.programming.kicks-ass.net (Postfix) with ESMTPS id 6D698300478; Mon, 25 May 2020 20:08:34 +0200 (CEST) Received: by hirez.programming.kicks-ass.net (Postfix, from userid 1000) id 5847720BD4F43; Mon, 25 May 2020 20:08:34 +0200 (CEST) Date: Mon, 25 May 2020 20:08:34 +0200 From: Peter Zijlstra To: Andy Lutomirski Cc: Rasmus Villemoes , Andy Lutomirski , Thomas Gleixner , LKML , X86 ML Subject: Re: [RFC][PATCH 0/4] x86/entry: disallow #DB more Message-ID: <20200525180834.GF317569@hirez.programming.kicks-ass.net> References: <20200525110101.GG325303@hirez.programming.kicks-ass.net> <2E6DBDE0-FEEA-467F-A380-4ED736B6C912@amacapital.net> MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Disposition: inline Content-Transfer-Encoding: 8bit In-Reply-To: <2E6DBDE0-FEEA-467F-A380-4ED736B6C912@amacapital.net> Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Mon, May 25, 2020 at 10:19:08AM -0700, Andy Lutomirski wrote: > How about adding it to cpu_tlbstate? A lot of NMIs are going to read > that anyway to check CR3. That might work I suppose; we're really pushing the name of it though. Also, that's PTI specific IIRC, and we're getting to the point where a significant number of CPUs no longer need that, right? > And blaming KVM is a bit misplaced. This isn’t KVM’s fault — it’s > Intel’s. VT-x has two modes: DR access exits and DR access doesn’t > exit. There’s no shadow mode. It's virt, I can't be arsed to care, whoever misdesigned it. We already have debugreg pvops, they can do shadow there.