Re: [kernel-hardening] Re: [RFC, PATCH] x86_64: KAISER - do not map kernel in user mode

From: Richard Weinberger
Date: Sun May 07 2017 - 18:07:15 EST

Next message: Andy Lutomirski: "[RFC 00/10] x86 TLB flush cleanups, moving toward PCID support"
Previous message: Andy Lutomirski: "[RFC 03/10] x86/mm: Make the batched unmap TLB flush API more generic"
In reply to: Daniel Gruss: "Re: [RFC, PATCH] x86_64: KAISER - do not map kernel in user mode"
Next in thread: Daniel Gruss: "Re: [kernel-hardening] Re: [RFC, PATCH] x86_64: KAISER - do not map kernel in user mode"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Daniel,

On Fri, May 5, 2017 at 9:40 AM, Daniel Gruss
<daniel.gruss@xxxxxxxxxxxxxx> wrote:
> I'm sure the overhead on older systems is larger than on recent systems.

Just did a quick test on my main KVM host, a 8 core Intel(R) Xeon(R)
CPU E3-1240 V2.
KVM guests are 4.10 w/o CONFIG_KAISER and kvmconfig without CONFIG_PARAVIRT.
Building a defconfig kernel within that guests is about 10% slower
when CONFIG_KAISER
is enabled.

Is this expected?
If it helps I can redo the same test also on bare metal.

--
Thanks,
//richard

Next message: Andy Lutomirski: "[RFC 00/10] x86 TLB flush cleanups, moving toward PCID support"
Previous message: Andy Lutomirski: "[RFC 03/10] x86/mm: Make the batched unmap TLB flush API more generic"
In reply to: Daniel Gruss: "Re: [RFC, PATCH] x86_64: KAISER - do not map kernel in user mode"
Next in thread: Daniel Gruss: "Re: [kernel-hardening] Re: [RFC, PATCH] x86_64: KAISER - do not map kernel in user mode"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]