On 9/15/21 1:31 PM, Reinette Chatre wrote:
> Add a test to ensure that (1) PTE permissions can be changed as long as
> they do not exceed EPCM permissions, and (2) even if EPCM permissions
> allow a page to be written to, if the PTE permissions do not then a #PF
> should be generated when attempting to write to a (from PTE perspective)
> read-only page.
It took me a minute to figure out what this was trying to say. Maybe
breaking it down into these three steps would help:
Add a test that:
(1) Creates an SGX enclave page with writable EPCM permission
(2) Changes the PTE permission on the page to read-only. This should
be permitted because the permission does not exceed the EPCM
permission.
(3) Attempts a write to the page and generate a page fault (#PF)
because of the read-only PTE.
