From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <ak@linux.intel.com>
Received: from mail.linutronix.de (146.0.238.70:993) by
  crypto-ml.lab.linutronix.de with IMAP4-SSL for <speck@linutronix.de>; 25 Feb
  2019 15:34:26 -0000
Received: from mga07.intel.com ([134.134.136.100])
	by Galois.linutronix.de with esmtps (TLS1.2:DHE_RSA_AES_256_CBC_SHA256:256)
	(Exim 4.80)
	(envelope-from <ak@linux.intel.com>)
	id 1gyIGu-00005e-VQ
	for speck@linutronix.de; Mon, 25 Feb 2019 16:34:25 +0100
Date: Mon, 25 Feb 2019 07:34:11 -0800
From: Andi Kleen <ak@linux.intel.com>
Subject: [MODERATED] Re: [PATCH v6 31/43] MDSv6
Message-ID: <20190225153411.GO16922@tassilo.jf.intel.com>
References: <cover.1551019522.git.ak@linux.intel.com>
 <8d04705a73208de4bb4a4062bf3d977b5ee5c5f4.1551019522.git.ak@linux.intel.com>
 <20190225151935.GA19947@kroah.com>
MIME-Version: 1.0
In-Reply-To: <20190225151935.GA19947@kroah.com>
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
To: speck@linutronix.de
List-ID: <speck.linutronix.de>

On Mon, Feb 25, 2019 at 04:19:35PM +0100, speck for Greg KH wrote:
> On Sun, Feb 24, 2019 at 07:07:37AM -0800, speck for Andi Kleen wrote:
> > From: Andi Kleen <ak@linux.intel.com>
> > Subject:  mds sweep: Clear cpu for usbmon intercepts
> > 
> > usbmon touches user data in interrupts that otherwise don't
> > touch user data. Automatically schedule a clear cpu if
> > usbmon is called from an interrupt.
> 
> I have written a long and very satisfying rant about this patch, that I
> than deleted, as it made me feel very better, but probably would not
> have helped anyone else out.
> 
> In turn, I need you to properly justify this patch as these two tiny
> sentences, and this small patch make no sense to me at all.  Please
> explain _WHY_ this is needed in this specific location.  Before
> responding, I would strongly recommend reading up on exactly what usbmon
> is and who is allowed to use it.  If after doing that, you still feel

Right it's root only.

But this is not about leaking data to the root monitoring user
(who can see the data anyways), but to unrelated processes
which are not root, but happen to be interrupted by the USB
interrupt.

> this patch is needed (and it might be, I still can not tell for sure),

Anything that touches user data in an interrupt needs to be marked
with the lazy approach.

I can write more on this instance.

However I will probably not be able to write a detailed
description for each of the interrupt handlers changed because
there are just too many.

-Andi