Re: disable tsc with seccomp

From: Andrea Arcangeli
Date: Sat Nov 05 2005 - 11:31:30 EST

Next message: Arnd Bergmann: "[PATCH 01/25] compat: Remove leftovers from register_ioctl32_conversion"
Previous message: Adrian Bunk: "[2.6 patch] drivers/md/kcopyd.c: remove kcopyd_cancel()"
In reply to: Andi Kleen: "Re: disable tsc with seccomp"
Next in thread: Andi Kleen: "Re: disable tsc with seccomp"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Sat, Nov 05, 2005 at 05:12:09PM +0100, Andi Kleen wrote:
> It is normally on on all x86-64 systems.

Can the performance counters be disabled for seccomp only right?

> I definitely don't want any code like this in the context switch. It is
> critical and I don't want to pollute fast paths with stuff like this
> that nobody needs.

287 registered CPUShare users will appreciate to compute more securely
thanks to this feature (about 10 up at any given time), and once I start
allowing transactions I hope much more users will need this (it's not
finished yet).

We have in the kernel lots of features that slowdown a bit and that
benefit only a part of the userbase. Even kmap only benefits people with
>1G of ram. Even the security_* api in the syscalls only benefit a part
of the userbase. There are infinite other examples. The point is that
none of this is measurable, _especially_ this one in the context switch,
context switches aren't as frequent as syscalls! It's only two
cachelines at every context switch, and they might be hot already since
we're mangling over the task struct of the prev/next regardless of my
patch. If something we could discuss how to pack the seccomp structure
in the task structure so that it's already hot. But calling my feature
"pollution" seems a bit exaggerated to me.

Plus Andrew would have never allowed it to go in, if this could have
impacted performance, you also should know this can't slowdown anything
and you're just talking about theory.

Of course if 1000 other people also adds their feature to the context
switch then it might become measurable, but this is the first time we
had to change the context switch to add more security on per-task basis,
so I don't see it happening any time soon. Plus if it happens we can
implement some technique to share the same cacheline for multiple
purposes so it remains a fixed cost (like an hook). If you tell me how
to use an hook today that avoids me to touch two cachelines in the
context switch fast path, let me know, I don't see it.
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Arnd Bergmann: "[PATCH 01/25] compat: Remove leftovers from register_ioctl32_conversion"
Previous message: Adrian Bunk: "[2.6 patch] drivers/md/kcopyd.c: remove kcopyd_cancel()"
In reply to: Andi Kleen: "Re: disable tsc with seccomp"
Next in thread: Andi Kleen: "Re: disable tsc with seccomp"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]