On Wed, 16 Nov 2022 17:03:23 +0000, Quentin Perret wrote: > pKVM's primary goal is to protect guest pages from a compromised host by > enforcing access control restrictions using stage-2 page-tables. Sadly, > this cannot prevent TrustZone from accessing non-secure memory, and a > compromised host could, for example, perform a 'confused deputy' attack > by asking TrustZone to use pages that have been donated to protected > guests. This would effectively allow the host to have TrustZone > exfiltrate guest secrets on its behalf, hence breaking the isolation > that pKVM intends to provide. > > [...] Applied first two cleanups to arm64 (for-next/ffa), thanks! [01/12] firmware: arm_ffa: Move constants to header file https://git.kernel.org/arm64/c/229d58e31678 [02/12] firmware: arm_ffa: Move comment before the field it is documenting https://git.kernel.org/arm64/c/c8e320b00a2a Cheers, -- Will https://fixes.arm64.dev https://next.arm64.dev https://will.arm64.dev _______________________________________________ kvmarm mailing list kvmarm@xxxxxxxxxxxxxxxxxxxxx https://lists.cs.columbia.edu/mailman/listinfo/kvmarm