Received: by 2002:a05:6359:c8b:b0:c7:702f:21d4 with SMTP id go11csp799235rwb;
        Tue, 4 Oct 2022 10:44:47 -0700 (PDT)
X-Google-Smtp-Source: AMsMyM5dnXLvdqrT688vUsD1Nvx+0kcYUZbpJwejJTP9FDZCHnsFHneVEXS3hAg8QFwNt8fqBGDq
X-Received: by 2002:a17:90b:38ce:b0:205:ea87:6177 with SMTP id nn14-20020a17090b38ce00b00205ea876177mr810529pjb.41.1664905486875;
        Tue, 04 Oct 2022 10:44:46 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1664905486; cv=none;
        d=google.com; s=arc-20160816;
        b=nQ5PmpTd9eJsGgfM8Wh3lvGUChMMwUpyhoPvYTYc2yrXhJfL+5PIAmtB92cXbJLUjr
         k+WmVIUGVCw8+1Dcl3M06BI3KL4Ft0haWs2rSLUsMzA9j9Ve5YWYw2QJ0W/vzy6i9JSY
         aOyrDFW8DWdT3aZ7vvBJmAe+CnTuyE7dMvlj3Js2H79n73UmHGU8f1Jo6B+0jdJMTrG1
         LBJjHgJ+Jckmag4qNJJA0oLxImNek88Q1IRIJ+SisA/GC82Q9a7vKS2YOrLPkJZVib4m
         xiWGrVwTD4quz2SobXDFpDxVg6uEXkQN9oBG+IXUX8unH23uIY5pQX3VWzZp5vkgFf8W
         pFDw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:subject:cc:to:from:date:references:in-reply-to
         :message-id:mime-version:user-agent:feedback-id:dkim-signature;
        bh=SHyJZXYPN1QI62fyrGI9Gbn+rnXSTErV7Nor5YLLsHE=;
        b=N06FLCEzZbklEuNVSwMXJ7NaOhi0YqgdVlmGHVyNna0Q+hGJhNadiwD0U9l/RByZvR
         QUFuu7A5fgEVHwt5oxOSKotdTDUyDF3QV7qTU88YjlfiCxe7q4wWhQVBiDXeqa7kfNYr
         +3sO4E9XlJ0wo+p5PFOYixCMuECc6+fSmdsiWLi1jc1edIwEBeu9RD53wTkNutGqd/eE
         M/1J0xi6kZNcyl526fAe9ShNnf1nz4CAvwiQbCeVn4r+pWwPMHAdes1KjyXTru28F91a
         hKA7/c4mArYgx8qrliMaFvRktbZkmyOsJ/eYHu+ptmQR8JumLyZMsdUpTC5OpRAl2aie
         Gd0A==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@kernel.org header.s=k20201202 header.b=PUIU4GUy;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20])
        by mx.google.com with ESMTP id a5-20020a624d05000000b0055fa7d3035esi9980619pfb.142.2022.10.04.10.44.35;
        Tue, 04 Oct 2022 10:44:46 -0700 (PDT)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@kernel.org header.s=k20201202 header.b=PUIU4GUy;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S230029AbiJDRhr (ORCPT <rfc822;anenbupt@gmail.com> + 99 others);
        Tue, 4 Oct 2022 13:37:47 -0400
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:34866 "EHLO
        lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S229744AbiJDRh2 (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Tue, 4 Oct 2022 13:37:28 -0400
Received: from ams.source.kernel.org (ams.source.kernel.org [IPv6:2604:1380:4601:e00::1])
        by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 179806AA22;
        Tue,  4 Oct 2022 10:36:05 -0700 (PDT)
Received: from smtp.kernel.org (relay.kernel.org [52.25.139.140])
        (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
        (No client certificate requested)
        by ams.source.kernel.org (Postfix) with ESMTPS id B04DCB808CF;
        Tue,  4 Oct 2022 17:36:03 +0000 (UTC)
Received: by smtp.kernel.org (Postfix) with ESMTPSA id 4F49DC433D7;
        Tue,  4 Oct 2022 17:36:01 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kernel.org;
        s=k20201202; t=1664904962;
        bh=kayiSIodoZR3mJ1pBQAy28WrEVULtTONXZgr/Z9D3es=;
        h=In-Reply-To:References:Date:From:To:Cc:Subject:From;
        b=PUIU4GUyuHhT3A9BskdSWSh7FAcmtx2E8PXZrViNak6i8qa++6QJi1Ci0qtDR1rdz
         L5sZVo/A9qAg6VjphwERSIrk/LYnSins7Dxk8hc7gg1ZcnXZRbgOn9cL4/ePXvpyM0
         uG8R4Cr/dxrIicuBvK9dtRtRUBf7XcCuKFnjI1k+7zODgusivc2SVpQ3ACWWp3T5hQ
         QFZKroS87GdIyzrJqiaFs+9JNJm2FMspNauX29//NDF/s7yQjoFQIwtAUgcDwSex3+
         yt0SMr10IVG39obPfi+kuvGaFXURicLZK6Qn9Nm2nKH+F+1mmKAH/g4pZziS2/LbRO
         539Eil4yaf/0A==
Received: from compute2.internal (compute2.nyi.internal [10.202.2.46])
        by mailauth.nyi.internal (Postfix) with ESMTP id 2BF7427C0054;
        Tue,  4 Oct 2022 13:36:00 -0400 (EDT)
Received: from imap48 ([10.202.2.98])
  by compute2.internal (MEProxy); Tue, 04 Oct 2022 13:36:00 -0400
X-ME-Sender: <xms:_248Y2iaVMYp4ZcjaKqODMyZi7X1kpotOw2I3SfWsD3ojAeOllgoGg>
    <xme:_248Y3BKlUS_nqOnCwDOeetE9FMsVVxmheqUtMmPvqM-qsxov82mm7AWtC5OeNtVM
    ASNclJcwTELl6ZxrIg>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedvfedrfeeiuddguddugecutefuodetggdotefrod
    ftvfcurfhrohhfihhlvgemucfhrghsthforghilhdpqfgfvfdpuffrtefokffrpgfnqfgh
    necuuegrihhlohhuthemuceftddtnecusecvtfgvtghiphhivghnthhsucdlqddutddtmd
    enucfjughrpefofgggkfgjfhffhffvvefutgesthdtredtreertdenucfhrhhomhepfdet
    nhguhicunfhuthhomhhirhhskhhifdcuoehluhhtoheskhgvrhhnvghlrdhorhhgqeenuc
    ggtffrrghtthgvrhhnpedvhfeuvddthfdufffhkeekffetgffhledtleegffetheeugeej
    ffduhefgteeihfenucevlhhushhtvghrufhiiigvpedunecurfgrrhgrmhepmhgrihhlfh
    hrohhmpegrnhguhidomhgvshhmthhprghuthhhphgvrhhsohhnrghlihhthidqudduiedu
    keehieefvddqvdeifeduieeitdekqdhluhhtoheppehkvghrnhgvlhdrohhrgheslhhinh
    hugidrlhhuthhordhush
X-ME-Proxy: <xmx:_248Y-GpEQuYfOI2v8bXcVRPJgR66bz-MDYiK4We3lsmzWi5HZddEA>
    <xmx:_248Y_TmdJOhZiDydNh7dWGjl28rAPmFCSv55zePsHkfbLaAiXjh-g>
    <xmx:_248YzxSeY0bdlpVCrjO4ym2beljqBYsCWK31j3Zdl7hKbQFKfQsNw>
    <xmx:AG88Y5mMsDLWjH-k1QffzKh_ApQZYphNBQvYStUq4aT_t-hUwMz1zA>
Feedback-ID: ieff94742:Fastmail
Received: by mailuser.nyi.internal (Postfix, from userid 501)
        id 80CC631A0062; Tue,  4 Oct 2022 13:35:59 -0400 (EDT)
X-Mailer: MessagingEngine.com Webmail Interface
User-Agent: Cyrus-JMAP/3.7.0-alpha0-1015-gaf7d526680-fm-20220929.001-gaf7d5266
Mime-Version: 1.0
Message-Id: <20d483b6-da24-4ddc-b6d4-c0c23b8e5ea2@app.fastmail.com>
In-Reply-To: <20221003222133.20948-10-aliraza@bu.edu>
References: <20221003222133.20948-1-aliraza@bu.edu>
 <20221003222133.20948-10-aliraza@bu.edu>
Date:   Tue, 04 Oct 2022 10:35:38 -0700
From:   "Andy Lutomirski" <luto@kernel.org>
To:     "Ali Raza" <aliraza@bu.edu>,
        "Linux Kernel Mailing List" <linux-kernel@vger.kernel.org>
Cc:     "Jonathan Corbet" <corbet@lwn.net>, masahiroy@kernel.org,
        michal.lkml@markovi.net,
        "Nick Desaulniers" <ndesaulniers@google.com>,
        "Thomas Gleixner" <tglx@linutronix.de>,
        "Ingo Molnar" <mingo@redhat.com>, "Borislav Petkov" <bp@alien8.de>,
        "Dave Hansen" <dave.hansen@linux.intel.com>,
        "H. Peter Anvin" <hpa@zytor.com>,
        "Eric W. Biederman" <ebiederm@xmission.com>,
        "Kees Cook" <keescook@chromium.org>,
        "Peter Zijlstra (Intel)" <peterz@infradead.org>,
        "Al Viro" <viro@zeniv.linux.org.uk>,
        "Arnd Bergmann" <arnd@arndb.de>, juri.lelli@redhat.com,
        vincent.guittot@linaro.org, dietmar.eggemann@arm.com,
        "Steven Rostedt" <rostedt@goodmis.org>,
        "Ben Segall" <bsegall@google.com>, mgorman@suse.de,
        bristot@redhat.com, vschneid@redhat.com,
        "Paolo Bonzini" <pbonzini@redhat.com>, jpoimboe@kernel.org,
        linux-doc@vger.kernel.org, linux-kbuild@vger.kernel.org,
        linux-mm@kvack.org, linux-fsdevel@vger.kernel.org,
        linux-arch@vger.kernel.org,
        "the arch/x86 maintainers" <x86@kernel.org>, rjones@redhat.com,
        munsoner@bu.edu, tommyu@bu.edu, drepper@redhat.com,
        lwoodman@redhat.com, mboydmcse@gmail.com, okrieg@bu.edu,
        rmancuso@bu.edu
Subject: Re: [RFC UKL 09/10] exec: Give userspace a method for starting UKL process
Content-Type: text/plain
X-Spam-Status: No, score=-7.1 required=5.0 tests=BAYES_00,DKIMWL_WL_HIGH,
        DKIM_SIGNED,DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,RCVD_IN_DNSWL_HI,
        SPF_HELO_NONE,SPF_PASS autolearn=ham autolearn_force=no version=3.4.6
X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on
        lindbergh.monkeyblade.net
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

On Mon, Oct 3, 2022, at 3:21 PM, Ali Raza wrote:
> From: Eric B Munson <munsoner@bu.edu>
>
> From: Eric B Munson <munsoner@bu.edu>
>
> The UKL process might depend on setup that is to be done by user space
> prior to its initialization.  We need a way to let userspace signal that it
> is ready for the UKL process to run. We will have setup a special name for
> this process in the kernel config and if this name is passed to exec that
> will start the UKL process. This way, if user space setup is required we
> can be sure that the process doesn't run until explicitly started.

This is just bizarre IMO.  Why is there one single UKL process?

How about having a way to start a UKL process and then, if desired, start *another* UKL process?  (And obviously there would be a security mode in which only a UKL process that is actually part of the kernel image can run or that only a UKL process with a hash that's part of the kernel image can run.)

--Andy