From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <owner-linux-mm@kvack.org>
X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on
	aws-us-west-2-korg-lkml-1.web.codeaurora.org
Received: from kanga.kvack.org (kanga.kvack.org [205.233.56.17])
	by smtp.lore.kernel.org (Postfix) with ESMTP id 8BFDAC02183
	for <linux-mm@archiver.kernel.org>; Thu, 16 Jan 2025 16:45:10 +0000 (UTC)
Received: by kanga.kvack.org (Postfix)
	id BB9636B0082; Thu, 16 Jan 2025 11:45:09 -0500 (EST)
Received: by kanga.kvack.org (Postfix, from userid 40)
	id B425A6B0083; Thu, 16 Jan 2025 11:45:09 -0500 (EST)
X-Delivered-To: int-list-linux-mm@kvack.org
Received: by kanga.kvack.org (Postfix, from userid 63042)
	id 96E2C6B0085; Thu, 16 Jan 2025 11:45:09 -0500 (EST)
X-Delivered-To: linux-mm@kvack.org
Received: from relay.hostedemail.com (smtprelay0016.hostedemail.com [216.40.44.16])
	by kanga.kvack.org (Postfix) with ESMTP id 7A97B6B0082
	for <linux-mm@kvack.org>; Thu, 16 Jan 2025 11:45:09 -0500 (EST)
Received: from smtpin01.hostedemail.com (a10.router.float.18 [10.200.18.1])
	by unirelay01.hostedemail.com (Postfix) with ESMTP id 44A7B1C7F56
	for <linux-mm@kvack.org>; Thu, 16 Jan 2025 16:45:09 +0000 (UTC)
X-FDA: 83013889938.01.1085E94
Received: from mail.alien8.de (mail.alien8.de [65.109.113.108])
	by imf14.hostedemail.com (Postfix) with ESMTP id DBAA9100012
	for <linux-mm@kvack.org>; Thu, 16 Jan 2025 16:45:06 +0000 (UTC)
Authentication-Results: imf14.hostedemail.com;
	dkim=pass header.d=alien8.de header.s=alien8 header.b="Ii/k/+mE";
	spf=pass (imf14.hostedemail.com: domain of bp@alien8.de designates 65.109.113.108 as permitted sender) smtp.mailfrom=bp@alien8.de;
	dmarc=pass (policy=none) header.from=alien8.de
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=hostedemail.com;
	s=arc-20220608; t=1737045907;
	h=from:from:sender:reply-to:subject:subject:date:date:
	 message-id:message-id:to:to:cc:cc:mime-version:mime-version:
	 content-type:content-type:content-transfer-encoding:
	 in-reply-to:in-reply-to:references:references:dkim-signature;
	bh=WgoKIzz0OYQgA951gA+dXClPJUSxVjM8SRERMxXCGDE=;
	b=fbGxS6M1MRigbekYYM2Zp1CzDZawuGu0qryiDACn/4jp5Cwh51K/AjOEgKDcgCY/wl5uQT
	kEEfH53vJHdxRananXWpLst2WKKU1Uf4ZOitaTIeq67Z5+kTPH13DJJwTLfq8sQgfrAaRo
	dQaiI3YBxXYUGJhHQZHS8/0Zf0yty3Q=
ARC-Seal: i=1; s=arc-20220608; d=hostedemail.com; t=1737045907; a=rsa-sha256;
	cv=none;
	b=IuxyacA/iudG82o+eMBFXmed8hBlyq1o+8ETrmq3S1tvq962mp+tZG8z4oNcGsfwbnd7pm
	X77v+XSaxG6ZA3SP4B/KSplkzKDRZ/QIEa+G6FbaBKfwnHGYsadzb+GrMf6jn1f+ZPfmDB
	2JZQbbKFz6KXJq4gfG9lb/XWxy5K5WA=
ARC-Authentication-Results: i=1;
	imf14.hostedemail.com;
	dkim=pass header.d=alien8.de header.s=alien8 header.b="Ii/k/+mE";
	spf=pass (imf14.hostedemail.com: domain of bp@alien8.de designates 65.109.113.108 as permitted sender) smtp.mailfrom=bp@alien8.de;
	dmarc=pass (policy=none) header.from=alien8.de
Received: from localhost (localhost.localdomain [127.0.0.1])
	by mail.alien8.de (SuperMail on ZX Spectrum 128k) with ESMTP id AA4DA40E02BF;
	Thu, 16 Jan 2025 16:45:03 +0000 (UTC)
X-Virus-Scanned: Debian amavisd-new at mail.alien8.de
Received: from mail.alien8.de ([127.0.0.1])
	by localhost (mail.alien8.de [127.0.0.1]) (amavisd-new, port 10026)
	with ESMTP id 29IGyo-wm-LY; Thu, 16 Jan 2025 16:44:56 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=alien8.de; s=alien8;
	t=1737045896; bh=WgoKIzz0OYQgA951gA+dXClPJUSxVjM8SRERMxXCGDE=;
	h=Date:From:To:Cc:Subject:References:In-Reply-To:From;
	b=Ii/k/+mEQxhvi2cUq/OXag0RZzqM3+5gAKnmstJm1M3emqPqpm+FuBuTOkVG6z7Xf
	 jK+idKpC77Q5Bb60bZEBETOeIYeybsV/OSz+HtCJkvQFCOANvCv50k0v7NDa6SMX+M
	 eW8d/Kr6ZqmS72pz22a2f/+VjuvWRZi/DggF/7WWes5sPk2G2kgdDpbQuINvEg40Bw
	 N23oo0oWrzyrbeWzAdiyVuD5Yw3mo37WXbbioRprWVaR2YxBJ0EXK+Gl4VR5xC9PZr
	 OEgpLDhSThdeD7i1O5+lXsNAoSSCiqPlPw+UuhcmOIMMGEIbCewfQxWy1tU8HF3OLo
	 971HvVXWqqaYqOUXF6C1rkTZJSjg6i1KL8jPchO1X57XYToTkMPLyPzCkyoYJKp2F/
	 Q31hRdIdEbLaR8cpz5o5mXbI7I5fBMqVNSBbod4oBwfFPYgChEyFgfhZOsoRk9Bs8B
	 Mq20gwUu5GXJt+hzn0MH9j0zSLA7eW0zjtMDtDIwaj3DW5gUm514gGFeEzI1eUM7E8
	 OlSpl1gBnv9+jHVUT6Im6NNIQMxUYvTlP22zuE4gO60oYZW58v76F1ovgaGaD+UBVR
	 WxxI3+3u6J2jlTd3rFkC2SVxOeTNpyK1mHsXzhJ+es/K1LUAYRL+ghsyJTRL2GcbTo
	 vQ/6kTLCL9KspKSVn+JOGlao=
Received: from zn.tnic (p200300ea971f934f329c23fffea6a903.dip0.t-ipconnect.de [IPv6:2003:ea:971f:934f:329c:23ff:fea6:a903])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange ECDHE (P-256) server-signature ECDSA (P-256) server-digest SHA256)
	(No client certificate requested)
	by mail.alien8.de (SuperMail on ZX Spectrum 128k) with ESMTPSA id AF48840E0286;
	Thu, 16 Jan 2025 16:43:11 +0000 (UTC)
Date: Thu, 16 Jan 2025 17:43:05 +0100
From: Borislav Petkov <bp@alien8.de>
To: Brendan Jackman <jackmanb@google.com>
Cc: Thomas Gleixner <tglx@linutronix.de>, Ingo Molnar <mingo@redhat.com>,
	Dave Hansen <dave.hansen@linux.intel.com>,
	"H. Peter Anvin" <hpa@zytor.com>, Andy Lutomirski <luto@kernel.org>,
	Peter Zijlstra <peterz@infradead.org>,
	Richard Henderson <richard.henderson@linaro.org>,
	Matt Turner <mattst88@gmail.com>, Vineet Gupta <vgupta@kernel.org>,
	Russell King <linux@armlinux.org.uk>,
	Catalin Marinas <catalin.marinas@arm.com>,
	Will Deacon <will@kernel.org>, Guo Ren <guoren@kernel.org>,
	Brian Cain <bcain@quicinc.com>, Huacai Chen <chenhuacai@kernel.org>,
	WANG Xuerui <kernel@xen0n.name>,
	Geert Uytterhoeven <geert@linux-m68k.org>,
	Michal Simek <monstr@monstr.eu>,
	Thomas Bogendoerfer <tsbogend@alpha.franken.de>,
	Dinh Nguyen <dinguyen@kernel.org>, Jonas Bonn <jonas@southpole.se>,
	Stefan Kristiansson <stefan.kristiansson@saunalahti.fi>,
	Stafford Horne <shorne@gmail.com>,
	"James E.J. Bottomley" <James.Bottomley@hansenpartnership.com>,
	Helge Deller <deller@gmx.de>, Michael Ellerman <mpe@ellerman.id.au>,
	Nicholas Piggin <npiggin@gmail.com>,
	Christophe Leroy <christophe.leroy@csgroup.eu>,
	Naveen N Rao <naveen@kernel.org>,
	Madhavan Srinivasan <maddy@linux.ibm.com>,
	Paul Walmsley <paul.walmsley@sifive.com>,
	Palmer Dabbelt <palmer@dabbelt.com>,
	Albert Ou <aou@eecs.berkeley.edu>,
	Heiko Carstens <hca@linux.ibm.com>,
	Vasily Gorbik <gor@linux.ibm.com>,
	Alexander Gordeev <agordeev@linux.ibm.com>,
	Christian Borntraeger <borntraeger@linux.ibm.com>,
	Sven Schnelle <svens@linux.ibm.com>,
	Yoshinori Sato <ysato@users.sourceforge.jp>,
	Rich Felker <dalias@libc.org>,
	John Paul Adrian Glaubitz <glaubitz@physik.fu-berlin.de>,
	"David S. Miller" <davem@davemloft.net>,
	Andreas Larsson <andreas@gaisler.com>,
	Richard Weinberger <richard@nod.at>,
	Anton Ivanov <anton.ivanov@cambridgegreys.com>,
	Johannes Berg <johannes@sipsolutions.net>,
	Chris Zankel <chris@zankel.net>, Max Filippov <jcmvbkbc@gmail.com>,
	Arnd Bergmann <arnd@arndb.de>,
	Andrew Morton <akpm@linux-foundation.org>,
	Juri Lelli <juri.lelli@redhat.com>,
	Vincent Guittot <vincent.guittot@linaro.org>,
	Dietmar Eggemann <dietmar.eggemann@arm.com>,
	Steven Rostedt <rostedt@goodmis.org>,
	Ben Segall <bsegall@google.com>, Mel Gorman <mgorman@suse.de>,
	Valentin Schneider <vschneid@redhat.com>,
	Uladzislau Rezki <urezki@gmail.com>,
	Christoph Hellwig <hch@infradead.org>,
	Masami Hiramatsu <mhiramat@kernel.org>,
	Mathieu Desnoyers <mathieu.desnoyers@efficios.com>,
	Mike Rapoport <rppt@kernel.org>,
	Arnaldo Carvalho de Melo <acme@kernel.org>,
	Namhyung Kim <namhyung@kernel.org>,
	Mark Rutland <mark.rutland@arm.com>,
	Alexander Shishkin <alexander.shishkin@linux.intel.com>,
	Jiri Olsa <jolsa@kernel.org>, Ian Rogers <irogers@google.com>,
	Adrian Hunter <adrian.hunter@intel.com>,
	Dennis Zhou <dennis@kernel.org>, Tejun Heo <tj@kernel.org>,
	Christoph Lameter <cl@linux.com>,
	Sean Christopherson <seanjc@google.com>,
	Paolo Bonzini <pbonzini@redhat.com>,
	Ard Biesheuvel <ardb@kernel.org>,
	Josh Poimboeuf <jpoimboe@kernel.org>,
	Pawan Gupta <pawan.kumar.gupta@linux.intel.com>, x86@kernel.org,
	linux-kernel@vger.kernel.org, linux-alpha@vger.kernel.org,
	linux-snps-arc@lists.infradead.org,
	linux-arm-kernel@lists.infradead.org, linux-csky@vger.kernel.org,
	linux-hexagon@vger.kernel.org, loongarch@lists.linux.dev,
	linux-m68k@lists.linux-m68k.org, linux-mips@vger.kernel.org,
	linux-openrisc@vger.kernel.org, linux-parisc@vger.kernel.org,
	linuxppc-dev@lists.ozlabs.org, linux-riscv@lists.infradead.org,
	linux-s390@vger.kernel.org, linux-sh@vger.kernel.org,
	sparclinux@vger.kernel.org, linux-um@lists.infradead.org,
	linux-arch@vger.kernel.org, linux-mm@kvack.org,
	linux-trace-kernel@vger.kernel.org,
	linux-perf-users@vger.kernel.org, kvm@vger.kernel.org,
	linux-efi@vger.kernel.org, Junaid Shahid <junaids@google.com>
Subject: Re: [PATCH RFC v2 02/29] x86: Create
 CONFIG_MITIGATION_ADDRESS_SPACE_ISOLATION
Message-ID: <20250116164305.GEZ4k3Gd2IoJpJzEIl@fat_crate.local>
References: <20250110-asi-rfc-v2-v2-0-8419288bc805@google.com>
 <20250110-asi-rfc-v2-v2-2-8419288bc805@google.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Disposition: inline
In-Reply-To: <20250110-asi-rfc-v2-v2-2-8419288bc805@google.com>
X-Stat-Signature: wwwkqmid7ae78tkowit4kyxbdfx6p5ps
X-Rspamd-Queue-Id: DBAA9100012
X-Rspam-User: 
X-Rspamd-Server: rspam06
X-HE-Tag: 1737045906-7297
X-HE-Meta: U2FsdGVkX19excgudN8RB4yFD9E8bd+ChFZEGEPhvHoogjcedpWHRAoOjmdi2n9zjJFjflalP0tkFCg3i4U6U2kBCw8yU0Xr34isjqgM6A8NiRns0odujWQuZ8zJIVnorlSFToGHA/NQsuDLQYslz8pAeSL8C9BAlbKViGsA9z1G4xL+S1jBxyRksWM/fVFGnGN7THezty6T78p8puf857hsAdaxxCq9Vvsciq+dU/l1uD64Z9h979sO6iv3K4mFh6G9ciUPXKEMXLFngnGt5PK3SJByskbOgslR7zslOlxBjm3Wn+1MDk1LZGAtlGYqH75tjgHJ5rZo3YumOXD3+Rys2+fz/r7JZxvyk4XscOlY4WkxAgVgILKdUjfueEEkqHU1e2/0RjArgzJsaG7xGOX9dYU/bf9QwRacxUeW16OxKR6aXTJ3WcMcEUk2IXgkFzSJXsWsNj4ZQeyNzXQlgGo/7SYXq8s3EooOL4Wt6/Cydh7ATk9fYNP6jcnxOn9jlo+GTX0PATrG06IJgEIfA8x0Y1ettmdonCpEa9eLRobvqA9YnvBGURG1rPfTR60TJ3blHOWw3Sj0ohQCw+JLvyLX+7HLafnJMphPaD9VimvzruKZNbYw/1D5V97tCNSfP03e4n7dq2oFo2ya2N5tRKf9TkrwxPVspMxf2esWJihtCxQ1dQQZwl/5pjFlsi+fLsyl/MyN5U2zxEEdjySIOQQfjxkrfIGg76Oqh0G5rg7HIU/h3EkyCAXh1cOE0xT35SKt85UkscalWcIkuvoJ39llGAeQY/5mDBnKCtpgBHz5TbBcOV0PuVh8GeOuRbTfaYz2TUw7ncUhrDRfjemnAA9YXwGD32Q3xH7z0qYPBpufK67HwFL+KtHEyStBywOSU8F+dd7N89ssTrxBlohA93iWikAaVZcxWNey/0XR+2BqjqzbANz5BOLpoXwmLYDIAmBP8n0tPZQwnuLfMOo
 C9rpDQeC
 MrlJq9Z9L21whtNwFCmxdgfSLR6OGQM2NJ3tAUwgayiO8Zw7Yaa26Tp985xA97JDdaQGBY6iIw7FENuJtD7SQioR6u1olxo4jSCgZ4z9C9FxvEgx1+7/miSEtzRufMr8eTDD+0kr2zBuFSQUi8XKH71+wlmvU7/AJafnAhQUWR5D+xUjoYK4SMegoJfO9+77g709OdibOqVADkl4wYkScBQn41fIDXaIklzyXyp+XoUkeVBVVRcAbhBJ0k6qJzZFDvdjTEetyl5BnWpY0c3bjM3HOYBw4Z9/goXa+SUsBajOmcfLCow7powHGmALPQtB9/KKvZZt6yGM2tSfeDf4Zm3464w==
X-Bogosity: Ham, tests=bogofilter, spamicity=0.000000, version=1.2.4
Sender: owner-linux-mm@kvack.org
Precedence: bulk
X-Loop: owner-majordomo@kvack.org
List-ID: <linux-mm.kvack.org>
List-Subscribe: <mailto:majordomo@kvack.org>
List-Unsubscribe: <mailto:majordomo@kvack.org>

On Fri, Jan 10, 2025 at 06:40:28PM +0000, Brendan Jackman wrote:
> diff --git a/arch/x86/Kconfig b/arch/x86/Kconfig
> index 7b9a7e8f39acc8e9aeb7d4213e87d71047865f5c..5a50582eb210e9d1309856a737d32b76fa1bfc85 100644
> --- a/arch/x86/Kconfig
> +++ b/arch/x86/Kconfig
> @@ -2519,6 +2519,20 @@ config MITIGATION_PAGE_TABLE_ISOLATION
>  
>  	  See Documentation/arch/x86/pti.rst for more details.
>  
> +config MITIGATION_ADDRESS_SPACE_ISOLATION
> +	bool "Allow code to run with a reduced kernel address space"
> +	default n
> +	depends on X86_64 && !PARAVIRT && !UML
> +	help
> +	  This feature provides the ability to run some kernel code

s/This feature provide/Provide/

> +	  with a reduced kernel address space. This can be used to
> +	  mitigate some speculative execution attacks.
> +
> +	  The !PARAVIRT dependency is only because of lack of testing; in theory
> +	  the code is written to work under paravirtualization. In practice
> +	  there are likely to be unhandled cases, in particular concerning TLB
> +	  flushes.

Right, this paragraph should be under the "---" line too until PARAVIRT gets
tested, ofc.

Thx.

-- 
Regards/Gruss,
    Boris.

https://people.kernel.org/tglx/notes-about-netiquette