Re: [PATCH v6 00/11] Intel SGX Driver

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: Cedric Blancher <cedric.blancher@xxxxxxxxx>
Subject: Re: [PATCH v6 00/11] Intel SGX Driver
From: Jarkko Sakkinen <jarkko.sakkinen@xxxxxxxxxxxxxxx>
Date: Tue, 9 Jan 2018 16:27:30 +0200
Cc: platform-driver-x86@xxxxxxxxxxxxxxx, x86@xxxxxxxxxx, Linux Kernel Mailing List <linux-kernel@xxxxxxxxxxxxxxx>, Borislav Petkov <bp@xxxxxxx>, "David S. Miller" <davem@xxxxxxxxxxxxx>, Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>, Grzegorz Andrejczuk <grzegorz.andrejczuk@xxxxxxxxx>, Haim Cohen <haim.cohen@xxxxxxxxx>, Ingo Molnar <mingo@xxxxxxxxxx>, Janakarajan Natarajan <Janakarajan.Natarajan@xxxxxxx>, Jim Mattson <jmattson@xxxxxxxxxx>, Kan Liang <Kan.liang@xxxxxxxxx>, "Kirill A. Shutemov" <kirill.shutemov@xxxxxxxxxxxxxxx>, Kyle Huey <me@xxxxxxxxxxxx>, Len Brown <len.brown@xxxxxxxxx>, "open list:DOCUMENTATION" <linux-doc@xxxxxxxxxxxxxxx>, "open list:FILESYSTEMS (VFS and infrastructure)" <linux-fsdevel@xxxxxxxxxxxxxxx>, Mauro Carvalho Chehab <mchehab@xxxxxxxxxx>, Paolo Bonzini <pbonzini@xxxxxxxxxx>, Piotr Luc <piotr.luc@xxxxxxxxx>, Radim Krčmář <rkrcmar@xxxxxxxxxx>, Randy Dunlap <rdunlap@xxxxxxxxxxxxx>, Sean Christopherson <sean.j.christopherson@xxxxxxxxx>, Thomas Gleixner <tglx@xxxxxxxxxxxxx>, Tom Lendacky <thomas.lendacky@xxxxxxx>, Vikas Shivappa <vikas.shivappa@xxxxxxxxxxxxxxx>
In-reply-to: <CALXu0Uf6qOg4-4aEfepD9hxXsbUtayndNC-nWc_Ymc5psCdEwQ@mail.gmail.com>
Organization: Intel Finland Oy - BIC 0357606-4 - Westendinkatu 7, 02160 Espoo
User-agent: NeoMutt/20170609 (1.8.3)

On Thu, Jan 04, 2018 at 03:17:24PM +0100, Cedric Blancher wrote:
> So how does this protect against the MELTDOWN attack (CVE-2017-5754)
> and the MELTATOMBOMBA4 worm which uses this exploit?
> 
> Ced

Everything going out of L1 gets encrypted. This is done to defend
against peripheral like adversaries and should work also against
meltdown.

/Jarkko

Follow-Ups:
- Re: [PATCH v6 00/11] Intel SGX Driver
  - From: Pavel Machek

References:
- [PATCH v6 00/11] Intel SGX Driver
  - From: Jarkko Sakkinen
- Re: [PATCH v6 00/11] Intel SGX Driver
  - From: Cedric Blancher

Prev by Date: Re: [PATCH v6 00/11] Intel SGX Driver
Next by Date: Re: [PATCH V4 13/45] block: blk-merge: try to make front segments in full size
Previous by thread: Re: [PATCH v6 00/11] Intel SGX Driver
Next by thread: Re: [PATCH v6 00/11] Intel SGX Driver
Index(es):
- Date
- Thread

[Index of Archives] [Linux Ext4 Filesystem] [Union Filesystem] [Filesystem Testing] [Ceph Users] [Ecryptfs] [AutoFS] [Kernel Newbies] [Share Photos] [Security] [Netfilter] [Bugtraq] [Yosemite News] [MIPS Linux] [ARM Linux] [Linux Security] [Linux Cachefs] [Reiser Filesystem] [Linux RAID] [Samba] [Device Mapper] [CEPH Development]