Re: [PATCH v38 10/24] mm: Add vm_ops->mprotect()

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: "Dr. Greg" <greg@xxxxxxxxxxxx>
Subject: Re: [PATCH v38 10/24] mm: Add vm_ops->mprotect()
From: Sean Christopherson <sean.j.christopherson@xxxxxxxxx>
Date: Mon, 19 Oct 2020 14:31:05 -0700
Cc: Dave Hansen <dave.hansen@xxxxxxxxx>, Jarkko Sakkinen <jarkko.sakkinen@xxxxxxxxxxxxxxx>, Haitao Huang <haitao.huang@xxxxxxxxxxxxxxx>, Andy Lutomirski <luto@xxxxxxxxxx>, X86 ML <x86@xxxxxxxxxx>, linux-sgx@xxxxxxxxxxxxxxx, LKML <linux-kernel@xxxxxxxxxxxxxxx>, Linux-MM <linux-mm@xxxxxxxxx>, Andrew Morton <akpm@xxxxxxxxxxxxxxxxxxxx>, Matthew Wilcox <willy@xxxxxxxxxxxxx>, Jethro Beekman <jethro@xxxxxxxxxxxx>, Darren Kenny <darren.kenny@xxxxxxxxxx>, Andy Shevchenko <andriy.shevchenko@xxxxxxxxxxxxxxx>, asapek@xxxxxxxxxx, Borislav Petkov <bp@xxxxxxxxx>, "Xing, Cedric" <cedric.xing@xxxxxxxxx>, chenalexchen@xxxxxxxxxx, Conrad Parker <conradparker@xxxxxxxxxx>, cyhanish@xxxxxxxxxx, "Huang, Haitao" <haitao.huang@xxxxxxxxx>, Josh Triplett <josh@xxxxxxxxxxxxxxxx>, "Huang, Kai" <kai.huang@xxxxxxxxx>, "Svahn, Kai" <kai.svahn@xxxxxxxxx>, Keith Moyer <kmoy@xxxxxxxxxx>, Christian Ludloff <ludloff@xxxxxxxxxx>, Neil Horman <nhorman@xxxxxxxxxx>, Nathaniel McCallum <npmccallum@xxxxxxxxxx>, Patrick Uiterwijk <puiterwijk@xxxxxxxxxx>, David Rientjes <rientjes@xxxxxxxxxx>, Thomas Gleixner <tglx@xxxxxxxxxxxxx>, yaozhangx@xxxxxxxxxx
In-reply-to: <20201018084920.GA19255@wind.enjellic.com>
References: <e25bfeaa-afb4-3928-eb80-50d90815eabb@intel.com> <20200924230501.GA20095@linux.intel.com> <b737fcab-bfde-90e1-1101-82d646a6f5b7@intel.com> <20200925000052.GA20333@linux.intel.com> <32fc9df4-d4aa-6768-aa06-0035427b7535@intel.com> <20200925194304.GE31528@linux.intel.com> <230ce6da-7820-976f-f036-a261841d626f@intel.com> <20200928005347.GB6704@linux.intel.com> <6eca8490-d27d-25b8-da7c-df4f9a802e87@intel.com> <20201018084920.GA19255@wind.enjellic.com>
User-agent: Mutt/1.5.24 (2015-08-30)

On Sun, Oct 18, 2020 at 03:49:20AM -0500, Dr. Greg wrote:
> Is this even a relevant control if we cede the notion of dynamically
> loadable enclave code, which is the objective of SGX2 hardware, which
> will in all likelihood be the only relevant hardware implementation in
> the future?

Yes, it's still relevant.  Giving the thumbs up to dynamically loadable code is
not a purely binary decision, e.g. a user/admin can allow RW->RX transitions
but still disallow full RWX permissions.

Follow-Ups:
- Re: [PATCH v38 10/24] mm: Add vm_ops->mprotect()
  - From: Dr. Greg

References:
- Re: [PATCH v38 10/24] mm: Add vm_ops->mprotect()
  - From: Dave Hansen
- Re: [PATCH v38 10/24] mm: Add vm_ops->mprotect()
  - From: Sean Christopherson
- Re: [PATCH v38 10/24] mm: Add vm_ops->mprotect()
  - From: Dave Hansen
- Re: [PATCH v38 10/24] mm: Add vm_ops->mprotect()
  - From: Sean Christopherson
- Re: [PATCH v38 10/24] mm: Add vm_ops->mprotect()
  - From: Dave Hansen
- Re: [PATCH v38 10/24] mm: Add vm_ops->mprotect()
  - From: Sean Christopherson
- Re: [PATCH v38 10/24] mm: Add vm_ops->mprotect()
  - From: Dave Hansen
- Re: [PATCH v38 10/24] mm: Add vm_ops->mprotect()
  - From: Jarkko Sakkinen
- Re: [PATCH v38 10/24] mm: Add vm_ops->mprotect()
  - From: Dave Hansen
- Re: [PATCH v38 10/24] mm: Add vm_ops->mprotect()
  - From: Dr. Greg

Prev by Date: Re: [PATCH RFC V3 6/9] x86/entry: Pass irqentry_state_t by reference
Next by Date: Re: [RFC PATCH] mm: memcg/slab: Stop reparented obj_cgroups from charging root
Previous by thread: Re: [PATCH v38 10/24] mm: Add vm_ops->mprotect()
Next by thread: Re: [PATCH v38 10/24] mm: Add vm_ops->mprotect()
Index(es):
- Date
- Thread

[Index of Archives] [Linux ARM Kernel] [Linux ARM] [Linux Omap] [Fedora ARM] [IETF Annouce] [Bugtraq] [Linux OMAP] [Linux MIPS] [eCos] [Asterisk Internet PBX] [Linux API]