Re: [RFC v2 00/27] Kernel Address Space Isolation

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Subject: Re: [RFC v2 00/27] Kernel Address Space Isolation
From: Dave Hansen <dave.hansen@xxxxxxxxx>
Date: Fri, 12 Jul 2019 06:58:48 -0700
Cc: Thomas Gleixner <tglx@xxxxxxxxxxxxx>, pbonzini@xxxxxxxxxx, rkrcmar@xxxxxxxxxx, mingo@xxxxxxxxxx, bp@xxxxxxxxx, hpa@xxxxxxxxx, dave.hansen@xxxxxxxxxxxxxxx, luto@xxxxxxxxxx, kvm@xxxxxxxxxxxxxxx, x86@xxxxxxxxxx, linux-mm@xxxxxxxxx, linux-kernel@xxxxxxxxxxxxxxx, konrad.wilk@xxxxxxxxxx, jan.setjeeilers@xxxxxxxxxx, liran.alon@xxxxxxxxxx, jwadams@xxxxxxxxxx, graf@xxxxxxxxx, rppt@xxxxxxxxxxxxxxxxxx, Paul Turner <pjt@xxxxxxxxxx>
In-reply-to: <a03db3a5-b033-a469-cc6c-c8c86fb25710@oracle.com>
Openpgp: preference=signencrypt
References: <1562855138-19507-1-git-send-email-alexandre.chartre@oracle.com> <5cab2a0e-1034-8748-fcbe-a17cf4fa2cd4@intel.com> <alpine.DEB.2.21.1907120911160.11639@nanos.tec.linutronix.de> <61d5851e-a8bf-e25c-e673-b71c8b83042c@oracle.com> <20190712125059.GP3419@hirez.programming.kicks-ass.net> <a03db3a5-b033-a469-cc6c-c8c86fb25710@oracle.com>
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101 Thunderbird/60.7.2

On 7/12/19 6:43 AM, Alexandre Chartre wrote:
> The current approach is assuming that anything in the user address space
> can be sensitive, and so the user address space shouldn't be mapped in ASI.

Is this universally true?

There's certainly *some* mitigation provided by SMAP that would allow
userspace to remain mapped and still protected.

References:
- [RFC v2 00/27] Kernel Address Space Isolation
  - From: Alexandre Chartre
- Re: [RFC v2 00/27] Kernel Address Space Isolation
  - From: Dave Hansen
- Re: [RFC v2 00/27] Kernel Address Space Isolation
  - From: Thomas Gleixner
- Re: [RFC v2 00/27] Kernel Address Space Isolation
  - From: Alexandre Chartre
- Re: [RFC v2 00/27] Kernel Address Space Isolation
  - From: Peter Zijlstra
- Re: [RFC v2 00/27] Kernel Address Space Isolation
  - From: Alexandre Chartre

Prev by Date: Re: [PATCH] [v2] x86: kvm: avoid -Wsometimes-uninitized warning
Next by Date: Re: [RFC v2 4/5] vfio-ccw: Don't call cp_free if we are processing a channel program
Previous by thread: Re: [RFC v2 00/27] Kernel Address Space Isolation
Next by thread: Re: [RFC v2 00/27] Kernel Address Space Isolation
Index(es):
- Date
- Thread

[Index of Archives] [KVM ARM] [KVM ia64] [KVM ppc] [Virtualization Tools] [Spice Development] [Libvirt] [Libvirt Users] [Linux USB Devel] [Linux Audio Users] [Yosemite Questions] [Linux Kernel] [Linux SCSI] [XFree86]