lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <87y2ntotah.fsf@nanos.tec.linutronix.de>
Date:   Thu, 09 Jul 2020 12:51:34 +0200
From:   Thomas Gleixner <tglx@...utronix.de>
To:     Abhishek Bhardwaj <abhishekbh@...gle.com>,
        LKML <linux-kernel@...r.kernel.org>
Cc:     Abhishek Bhardwaj <abhishekbh@...gle.com>,
        Anthony Steinhauser <asteinhauser@...gle.com>,
        Borislav Petkov <bp@...en8.de>,
        "H. Peter Anvin" <hpa@...or.com>, Ingo Molnar <mingo@...hat.com>,
        Jim Mattson <jmattson@...gle.com>,
        Joerg Roedel <joro@...tes.org>,
        Josh Poimboeuf <jpoimboe@...hat.com>,
        Mark Gross <mgross@...ux.intel.com>,
        Paolo Bonzini <pbonzini@...hat.com>,
        Pawan Gupta <pawan.kumar.gupta@...ux.intel.com>,
        Peter Zijlstra <peterz@...radead.org>,
        Sean Christopherson <sean.j.christopherson@...el.com>,
        Tony Luck <tony.luck@...el.com>,
        Vitaly Kuznetsov <vkuznets@...hat.com>,
        Waiman Long <longman@...hat.com>,
        Wanpeng Li <wanpengli@...cent.com>, kvm@...r.kernel.org,
        x86@...nel.org
Subject: Re: [PATCH v5] x86/speculation/l1tf: Add KConfig for setting the L1D cache flush mode

Abhishek Bhardwaj <abhishekbh@...gle.com> writes:
> This change adds a new kernel configuration that sets the l1d cache
> flush setting at compile time rather than at run time.
>
> The reasons for this change are as follows -
>
>  - Kernel command line arguments are getting unwieldy. These parameters
>  are not a scalable way to set the kernel config. They're intended as a
>  super limited way for the bootloader to pass info to the kernel and
>  also as a way for end users who are not compiling the kernel themselves
>  to tweak the kernel behavior.
>
>  - Also, if a user wants this setting from the start. It's a definite
>  smell that it deserves to be a compile time thing rather than adding
>  extra code plus whatever miniscule time at runtime to pass an
>  extra argument.
>
>  - Finally, it doesn't preclude the runtime / kernel command line way.
>  Users are free to use those as well.

TBH, I don't see why this is a good idea.

 1) I'm not following your argumentation that the command line option is
    a poor Kconfig replacement. The L1TF mode is a boot time (module
    load time) decision and the command line parameter is there to
    override the carefully chosen and sensible default behaviour.

 2) You can add the desired mode to the compiled in (partial) kernel
    command line today.

 3) Boot loaders are well capable of handling large kernel command lines
    and the extra time spend for reading the parameter does not matter
    at all.

 4) It's just a tiny part of the whole speculation maze. If we go there
    for L1TF then we open the flood gates for a gazillion other config
    options.

 5) It's completely useless for distro kernels.

 6) The implementation is horrible. We have proper choice selectors
    which allow to add parseable information instead of random numbers
    and a help text.

Sorry, you need to find better arguments than 'unwieldy and smell' to
make this palatable.

Thanks,

        tglx

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ