Re: [RFC 00/10] Process-local memory allocations for hiding KVM secrets

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: Alexander Graf <graf@xxxxxxxxxx>, Thomas Gleixner <tglx@xxxxxxxxxxxxx>, Andy Lutomirski <luto@xxxxxxxxxxxxxx>
Subject: Re: [RFC 00/10] Process-local memory allocations for hiding KVM secrets
From: Dave Hansen <dave.hansen@xxxxxxxxx>
Date: Mon, 17 Jun 2019 08:50:35 -0700
Cc: Marius Hillenbrand <mhillenb@xxxxxxxxx>, kvm@xxxxxxxxxxxxxxx, linux-kernel@xxxxxxxxxxxxxxx, kernel-hardening@xxxxxxxxxxxxxxxxxx, linux-mm@xxxxxxxxx, Alexander Graf <graf@xxxxxxxxx>, David Woodhouse <dwmw@xxxxxxxxxxxx>, the arch/x86 maintainers <x86@xxxxxxxxxx>, Andy Lutomirski <luto@xxxxxxxxxx>, Peter Zijlstra <peterz@xxxxxxxxxxxxx>
In-reply-to: <58788f05-04c3-e71c-12c3-0123be55012c@amazon.com>
Openpgp: preference=signencrypt
References: <20190612170834.14855-1-mhillenb@amazon.de> <eecc856f-7f3f-ed11-3457-ea832351e963@intel.com> <A542C98B-486C-4849-9DAC-2355F0F89A20@amacapital.net> <alpine.DEB.2.21.1906141618000.1722@nanos.tec.linutronix.de> <58788f05-04c3-e71c-12c3-0123be55012c@amazon.com>
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101 Thunderbird/60.7.0

On 6/17/19 12:38 AM, Alexander Graf wrote:
>> Yes I know, but as a benefit we could get rid of all the GSBASE
>> horrors in
>> the entry code as we could just put the percpu space into the local PGD.
> 
> Would that mean that with Meltdown affected CPUs we open speculation
> attacks against the mmlocal memory from KVM user space?

Not necessarily.  There would likely be a _set_ of local PGDs.  We could
still have pair of PTI PGDs just like we do know, they'd just be a local
PGD pair.

Follow-Ups:
- Re: [RFC 00/10] Process-local memory allocations for hiding KVM secrets
  - From: Andy Lutomirski

References:
- [RFC 00/10] Process-local memory allocations for hiding KVM secrets
  - From: Marius Hillenbrand
- Re: [RFC 00/10] Process-local memory allocations for hiding KVM secrets
  - From: Dave Hansen
- Re: [RFC 00/10] Process-local memory allocations for hiding KVM secrets
  - From: Andy Lutomirski
- Re: [RFC 00/10] Process-local memory allocations for hiding KVM secrets
  - From: Thomas Gleixner
- Re: [RFC 00/10] Process-local memory allocations for hiding KVM secrets
  - From: Alexander Graf

Prev by Date: Re: [PATCH 4/5] mm/hotplug: Avoid RCU stalls when removing large amounts of memory
Next by Date: Re: [RFC 00/10] Process-local memory allocations for hiding KVM secrets
Previous by thread: Re: [RFC 00/10] Process-local memory allocations for hiding KVM secrets
Next by thread: Re: [RFC 00/10] Process-local memory allocations for hiding KVM secrets
Index(es):
- Date
- Thread

[Index of Archives] [Linux ARM Kernel] [Linux ARM] [Linux Omap] [Fedora ARM] [IETF Annouce] [Bugtraq] [Linux OMAP] [Linux MIPS] [eCos] [Asterisk Internet PBX] [Linux API]