Received: by 2002:a05:6a10:8c0a:0:0:0:0 with SMTP id go10csp1630515pxb;
        Thu, 4 Mar 2021 16:58:29 -0800 (PST)
X-Google-Smtp-Source: ABdhPJzqjIDUd6fft/9lvR4UMeWgKbCHPmI2PyqRBOII39Kce3xi7DH6iNLKJjikZlP6AroIQ3yx
X-Received: by 2002:a02:a506:: with SMTP id e6mr6992636jam.56.1614905909164;
        Thu, 04 Mar 2021 16:58:29 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; t=1614905909; cv=none;
        d=google.com; s=arc-20160816;
        b=NzLRL3dsBzpRFTfKuI7fcNznZ63jwQiyZHUODYoMzRLOHZDb4jUrmASHiXJngC/V+q
         3a/SR3APoUH//oqW/I3w4yBUpYYU0aj+MVoe12FIei7LX597HqXZhCqDBIs9KSoxrXT9
         qtK0NHHHciEnS5h9bkGVH25Nj8pLYVj2df9dBY4ADg2W8NbXJVN0jA46vEWQC7U19Eol
         e7qQBq/42BFe3CLnfrPMUxWsCEravg6Iau4/ZZNZCLruA0HHQ+o8ox6Rtt0Eqlnd4yKc
         +ecBYzKusGwDk+7IDb2FqEhRSf42ZtFFV1i11NCMPll6bNXULkTvEmc7V1rOdALadlXW
         zJAg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:mime-version:user-agent:message-id:in-reply-to
         :date:references:subject:cc:to:from:ironport-sdr:ironport-sdr;
        bh=+k0gDfGlLgg5ZmEsJlhIS8SA4cZ2Bx7RBO/DiIuX6pA=;
        b=SCZ2bGDC1yYMSGNB43nwvIOgg+ryCsFMp2p9H9rFhe6RnHKEZcLU7nHPlTajBDlWva
         iXO/P4Vd+/WhaY3ZYaYEDxqxWr1+xTf2HrBFFl7ZAcwaz6Eoca52n9ZJxEQYCKAoueLJ
         nun/s6zQV0GAElv3uuB7MdpOjt19eUaEwMUYmI0eJBhJQQUhlVRKj9nEwg+EbYHSLwZB
         0CEIe52dAxBc5b9J/kRdwYpStpI8iVB36b3gpCe1Ptqm8+B/mmFLstJ8ZOO+jnVEL9gR
         MoDqhog4FEuwne2icwgeuzdYZmSXWUjFtrn1SH5SWAc7lZZVDE7K9hojb+ej3Fxt4hd1
         x2Bg==
ARC-Authentication-Results: i=1; mx.google.com;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=intel.com
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18])
        by mx.google.com with ESMTP id e11si759607ilu.32.2021.03.04.16.58.15;
        Thu, 04 Mar 2021 16:58:29 -0800 (PST)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18;
Authentication-Results: mx.google.com;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=intel.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S235793AbhCDUTf (ORCPT <rfc822;luxor68@gmail.com> + 99 others);
        Thu, 4 Mar 2021 15:19:35 -0500
Received: from mga09.intel.com ([134.134.136.24]:51897 "EHLO mga09.intel.com"
        rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP
        id S235677AbhCDUTQ (ORCPT <rfc822;linux-kernel@vger.kernel.org>);
        Thu, 4 Mar 2021 15:19:16 -0500
IronPort-SDR: QFWDWj4J7UHn3UWbZZ2v8Jm4G9bdNMInGK2YnlA7GoSMBv1+y1s9yXuHont+q3QRoqp8YM5xhQ
 Kjmtq+Fw0dOQ==
X-IronPort-AV: E=McAfee;i="6000,8403,9913"; a="187608061"
X-IronPort-AV: E=Sophos;i="5.81,223,1610438400"; 
   d="scan'208";a="187608061"
Received: from orsmga004.jf.intel.com ([10.7.209.38])
  by orsmga102.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 04 Mar 2021 12:17:39 -0800
IronPort-SDR: mMh51xlzxR7B1k/L0dJG0k44Oel3shCrKFHrGY8UO6UceiV+ywkSrPQyl8Ect80vnNBXqrcq5A
 t6Su39TXPgcg==
X-ExtLoop1: 1
X-IronPort-AV: E=Sophos;i="5.81,223,1610438400"; 
   d="scan'208";a="518785122"
Received: from tassilo.jf.intel.com (HELO tassilo.localdomain) ([10.54.74.11])
  by orsmga004.jf.intel.com with ESMTP; 04 Mar 2021 12:17:39 -0800
Received: by tassilo.localdomain (Postfix, from userid 1000)
        id B20EF302859; Thu,  4 Mar 2021 12:17:39 -0800 (PST)
From:   Andi Kleen <ak@linux.intel.com>
To:     Sai Prakash Ranjan <saiprakash.ranjan@codeaurora.org>
Cc:     Mathieu Poirier <mathieu.poirier@linaro.org>,
        Suzuki K Poulose <suzuki.poulose@arm.com>,
        Mike Leach <mike.leach@linaro.org>,
        Peter Zijlstra <peterz@infradead.org>,
        Ingo Molnar <mingo@redhat.com>,
        Arnaldo Carvalho de Melo <acme@kernel.org>,
        Mark Rutland <mark.rutland@arm.com>,
        Alexander Shishkin <alexander.shishkin@linux.intel.com>,
        Leo Yan <leo.yan@linaro.org>, Jiri Olsa <jolsa@redhat.com>,
        Namhyung Kim <namhyung@kernel.org>, coresight@lists.linaro.org,
        Stephen Boyd <swboyd@chromium.org>,
        Denis Nikitin <denik@chromium.org>,
        Mattias Nissler <mnissler@chromium.org>,
        Al Grant <al.grant@arm.com>, linux-arm-msm@vger.kernel.org,
        linux-kernel@vger.kernel.org, linux-arm-kernel@lists.infradead.org,
        Douglas Anderson <dianders@chromium.org>
Subject: Re: [PATCHv2 0/4] perf/core: Add support to exclude kernel mode PMU tracing
References: <cover.1614624041.git.saiprakash.ranjan@codeaurora.org>
        <871rcuvgfq.fsf@linux.intel.com>
Date:   Thu, 04 Mar 2021 12:17:39 -0800
In-Reply-To: <871rcuvgfq.fsf@linux.intel.com> (Andi Kleen's message of "Thu,
        04 Mar 2021 11:59:05 -0800")
Message-ID: <87tupqu10c.fsf@linux.intel.com>
User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/26.3 (gnu/linux)
MIME-Version: 1.0
Content-Type: text/plain
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

Andi Kleen <ak@linux.intel.com> writes:
>
> Normally disk encryption is in specialized work queues. It's total
> overkill to restrict all of the kernel if you just want to restrict
> those work queues.
>
> I would suggest some more analysis where secrets are actually stored
> and handled first.

Also thinking about this more:

You really only want to limit data tracing here.

If tracing branches could reveal secrets the crypto code would be
already insecure due to timing side channels. If that's the
case it would already require fixing the crypto code.

-Andi