Re: [PATCH 06/18] x86, barrier: stop speculation for failed access_ok

From: Thomas Gleixner
Date: Sat Jan 06 2018 - 16:21:19 EST

Next message: Woodhouse, David: "Re: [PATCH v5 02/12] x86/retpoline: Add initial retpoline support"
Previous message: Thomas Gleixner: "Re: [patch 0/4] timer/nohz: Fix timer/nohz woes"
In reply to: Alexei Starovoitov: "Re: [PATCH 06/18] x86, barrier: stop speculation for failed access_ok"
Next in thread: Alan Cox: "Re: [PATCH 06/18] x86, barrier: stop speculation for failed access_ok"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Sat, 6 Jan 2018, Alexei Starovoitov wrote:
> So how about we do array_access() macro similar to above by default
> with extra CONFIG_ to convert it to lfence ?
> Why default to AND approach instead of lfence ?
> Because the kernel should still be usable. If security
> sacrifices performance so much such security will be turned off.
> Ex: kpti suppose to add 5-30%. If it means 10% on production workload
> and the datacenter capacity cannot grow 10% overnight, kpti will be off.

That's the decision and responsibility of the person who disables it.

Thanks,

tglx

Next message: Woodhouse, David: "Re: [PATCH v5 02/12] x86/retpoline: Add initial retpoline support"
Previous message: Thomas Gleixner: "Re: [patch 0/4] timer/nohz: Fix timer/nohz woes"
In reply to: Alexei Starovoitov: "Re: [PATCH 06/18] x86, barrier: stop speculation for failed access_ok"
Next in thread: Alan Cox: "Re: [PATCH 06/18] x86, barrier: stop speculation for failed access_ok"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]