Received: by 2002:a05:6a10:f3d0:0:0:0:0 with SMTP id a16csp1665937pxv;
        Sat, 10 Jul 2021 11:07:26 -0700 (PDT)
X-Google-Smtp-Source: ABdhPJzq9YWHm1VtNZR9rTYAkQU4T4afsNai63jejzyk5EFlS4qsT5PNmRynOKBXVJrkQF7lVq5a
X-Received: by 2002:a05:6402:16:: with SMTP id d22mr55234580edu.101.1625940446712;
        Sat, 10 Jul 2021 11:07:26 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1625940446; cv=none;
        d=google.com; s=arc-20160816;
        b=Bo9OqKc1d9tkcnX6bVOlMGBMzUt61Oghi6PfMwEo4Ro8+xAAK947PUT/HhJJt2dr9A
         wM9axLZ5PQaIRd1NdUraiKjKNPBb5Ax6fimIsA653DtRyK0ztEf2xWZI7BLfDrfXnTjX
         r4Y/+yJBkdv0JKS2nP9pojuDU5qSmMxWj0GZbmqj95pB1UVcJGNar9pHpxfoN55qI6mW
         vdP/5snbcw/VMgFPbmO1E3ZWZLeAapzvDClRZOXYjazjBirQNHXxaMdB59BOJN/R0BBR
         yDnmgFPo1BuBcaNivMiKePkn/U0Eg8HtI8VuOe53bm7NzieIQfRsIQg0zCCsV0qQq9Ci
         Nuog==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:content-transfer-encoding:content-language
         :mime-version:date:message-id:subject:in-reply-to:organization:from
         :cc:to;
        bh=7FNxqfKybWDvMtnXrdZTDcU1ManQF67zAy+bqZiGeOI=;
        b=aR6GS82LESo0PGZXl+GvUnzl3eB6xmj9EWdPpW9mr/ORLCPhOBhwC/ikSPZALTvXht
         MrKbd4a/pO3p8tJWCl5dIyOwhTcpYFlYG84q8q+hToWowYjyIFf6E21L9StdliCttXX6
         U6qHKJ0zffhPnUkXWe2KYKx/59Z2evJuPzPszNNzaH8vKK2kUWyYL6k5qOUGuhXSmoiv
         AKhj7WxdqCDmLlhMJzjuMRdCJzRJ8R2z6JVlrQpFYiIbnnxLmQ6HA8wdd9NUcvzs3YUF
         2tcbLFzAI3n2t+BSp6HuKQ68JCul1rQszFffLLlS4M6jBJ4xCKy7NPNiQ/Euk3GVLmru
         g6SQ==
ARC-Authentication-Results: i=1; mx.google.com;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18])
        by mx.google.com with ESMTP id r9si2815757edq.454.2021.07.10.11.07.02;
        Sat, 10 Jul 2021 11:07:26 -0700 (PDT)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18;
Authentication-Results: mx.google.com;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S229716AbhGJSId (ORCPT <rfc822;maloy021189ju@gmail.com>
        + 99 others); Sat, 10 Jul 2021 14:08:33 -0400
Received: from mx1.riseup.net ([198.252.153.129]:50774 "EHLO mx1.riseup.net"
        rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP
        id S229652AbhGJSId (ORCPT <rfc822;linux-kernel@vger.kernel.org>);
        Sat, 10 Jul 2021 14:08:33 -0400
Received: from fews1.riseup.net (fews1-pn.riseup.net [10.0.1.83])
        (using TLSv1 with cipher ECDHE-RSA-AES256-SHA (256/256 bits))
        (Client CN "*.riseup.net", Issuer "Sectigo RSA Domain Validation Secure Server CA" (not verified))
        by mx1.riseup.net (Postfix) with ESMTPS id 4GMdHb3vwnzDrhZ;
        Sat, 10 Jul 2021 11:05:47 -0700 (PDT)
X-Riseup-User-ID: 027C2E7FA9882A576F4230443E21B48C75A0196E4E75127C55D378DB13D2B2AC
Received: from [127.0.0.1] (localhost [127.0.0.1])
         by fews1.riseup.net (Postfix) with ESMTPSA id 4GMdHZ5B8hz5vYk;
        Sat, 10 Jul 2021 11:05:46 -0700 (PDT)
To:     aarcange@redhat.com
Cc:     YiFei Zhu <zhuyifei1999@gmail.com>,
        Linux Containers <containers@lists.linux-foundation.org>,
        YiFei Zhu <yifeifz2@illinois.edu>, bpf <bpf@vger.kernel.org>,
        kernel list <linux-kernel@vger.kernel.org>
From:   Jim Newsome <jnewsome@torproject.org>
Organization: The Tor Project, Inc
In-Reply-To: <20201104215702.GG24993@redhat.com>
Subject: Re: RFC: default to spec_store_bypass_disable=prctl
 spectre_v2_user=prctl
Message-ID: <55e3ba77-a305-8abb-1506-5a8aabe24bf3@torproject.org>
Date:   Sat, 10 Jul 2021 13:05:46 -0500
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8; format=flowed
Content-Language: en-US
Content-Transfer-Encoding: 8bit
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

Is anything happening with this proposal? Is there anything I could do 
to help it along?

My personal motivation is that I'm involved in developing and using the 
[Shadow] simulator, which we use to run hours and days long simulations. 
We're currently looking into running some simulations in gitlab CI 
Docker runner to take advantage of shared hardware, but Docker currently 
doesn't expose a way to opt out of these mitigations without turning off 
seccomp altogether [Docker FR].

I've measured these mitigations to cause simulations to take 50% longer 
[Overhead], so I'm pretty motivated to find a way to disable them :).

[Shadow]: https://shadow.github.io/
[Docker FR]: https://github.com/moby/moby/issues/42619
[Overhead]: 
https://github.com/shadow/shadow/issues/1489#issuecomment-871445482

P.S. Attempting to respond to a thread without actually being subscribed 
to the list; sorry if this ends up not threading correctly. The CC 
header was truncated so also some original recipients have been dropped. 
Original thread: https://lkml.org/lkml/2020/11/4/1135