| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Thu, 4 Apr 2024 19:36:00 -0400
From: Eric Biggers <ebiggers@...nel.org>
To: Dave Hansen <dave.hansen@...el.com>
Cc: linux-crypto@...r.kernel.org, x86@...nel.org,
linux-kernel@...r.kernel.org, Ard Biesheuvel <ardb@...nel.org>,
Andy Lutomirski <luto@...nel.org>,
"Chang S . Bae" <chang.seok.bae@...el.com>
Subject: Re: [PATCH v2 6/6] crypto: x86/aes-xts - wire up VAES + AVX10/512
implementation
On Thu, Apr 04, 2024 at 01:34:04PM -0700, Dave Hansen wrote:
> On 3/29/24 01:03, Eric Biggers wrote:
> > +static const struct x86_cpu_id zmm_exclusion_list[] = {
> > + { .vendor = X86_VENDOR_INTEL, .family = 6, .model = INTEL_FAM6_SKYLAKE_X },
> > + { .vendor = X86_VENDOR_INTEL, .family = 6, .model = INTEL_FAM6_ICELAKE_X },
> > + { .vendor = X86_VENDOR_INTEL, .family = 6, .model = INTEL_FAM6_ICELAKE_D },
> > + { .vendor = X86_VENDOR_INTEL, .family = 6, .model = INTEL_FAM6_ICELAKE },
> > + { .vendor = X86_VENDOR_INTEL, .family = 6, .model = INTEL_FAM6_ICELAKE_L },
> > + { .vendor = X86_VENDOR_INTEL, .family = 6, .model = INTEL_FAM6_ICELAKE_NNPI },
> > + { .vendor = X86_VENDOR_INTEL, .family = 6, .model = INTEL_FAM6_TIGERLAKE_L },
> > + { .vendor = X86_VENDOR_INTEL, .family = 6, .model = INTEL_FAM6_TIGERLAKE },
> > + /* Allow Rocket Lake and later, and Sapphire Rapids and later. */
> > + /* Also allow AMD CPUs (starting with Zen 4, the first with AVX-512). */
> > + {},
> > +};
>
> A hard-coded model/family exclusion list is not great.
>
> It'll break when running in guests on newer CPUs that fake any of these
> models. Some folks will also surely disagree with the kernel policy
> implemented here.
>
> Is there no way to implement this other than a hard-coded kernel policy?
Besides the hardcoded CPU exclusion list, the options are:
1. Never use zmm registers.
2. Ignore the issue and use zmm registers even on these CPU models. Systemwide
performance may suffer due to downclocking.
3. Do a runtime test to detect whether using zmm registers causes downclocking.
This seems impractical.
4. Keep the proposed policy as the default behavior, but allow it to be
overridden on the kernel command line. This would be a bit more flexible;
however, most people don't change defaults anyway.
When you write "Some folks will also surely disagree with the kernel policy
implemented here", are there any specific concerns that you anticipate? Note
that Intel has acknowledged the zmm downclocking issues on Ice Lake and
suggested that using ymm registers instead would be reasonable:
https://lore.kernel.org/linux-crypto/e8ce1146-3952-6977-1d0e-a22758e58914@intel.com/
If there is really a controversy, my vote is that for now we just go with option
(1), i.e. drop this patch from the series. We can reconsider the issue when a
CPU is released with better 512-bit support.
- Eric
Powered by blists - more mailing lists