Re: [PATCH 2/4] x86/sgx: Put enclaves into anonymous files

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: Jarkko Sakkinen <jarkko.sakkinen@xxxxxxxxxxxxxxx>, Andy Lutomirski <luto@xxxxxxxxxxxxxx>
Subject: Re: [PATCH 2/4] x86/sgx: Put enclaves into anonymous files
From: Topi Miettinen <toiwoton@xxxxxxxxx>
Date: Tue, 7 Apr 2020 12:04:58 +0300
Cc: Jethro Beekman <jethro@xxxxxxxxxxxx>, Casey Schaufler <casey@xxxxxxxxxxxxxxxx>, Andy Lutomirski <luto@xxxxxxxxxx>, casey.schaufler@xxxxxxxxx, Sean Christopherson <sean.j.christopherson@xxxxxxxxx>, linux-sgx@xxxxxxxxxxxxxxx, "Svahn, Kai" <kai.svahn@xxxxxxxxx>, "Schlobohm, Bruce" <bruce.schlobohm@xxxxxxxxx>, Stephen Smalley <sds@xxxxxxxxxxxxx>, Haitao Huang <haitao.huang@xxxxxxxxxxxxxxx>, ben@xxxxxxxxxxxxxxx
In-reply-to: <20200406212434.GA34134@linux.intel.com>
References: <20200406185530.GE20105@linux.intel.com> <F4B63BCD-F554-4BE2-B3AE-4ADB6C2F4285@amacapital.net> <20200406212434.GA34134@linux.intel.com>
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:68.0) Gecko/20100101 Thunderbird/68.5.0

Please correct me if I'm wrong, but isn't it the goal of SGX to let a(suitably privileged) process designate some of its memory areas as partof SGX enclave? If so, why don't you simply add a system call to do so,such as


int sgx_mprotect(void *start, size_t length, int prot, u64 sgx_flags);

like existing pkey_mprotect()? Or add a flag PROT_SGX to mprotect() likeexisting PROT_SAO/PROT_SEM?


-Topi

Follow-Ups:
- Re: [PATCH 2/4] x86/sgx: Put enclaves into anonymous files
  - From: Jarkko Sakkinen

References:
- Re: [PATCH 2/4] x86/sgx: Put enclaves into anonymous files
  - From: Jarkko Sakkinen
- Re: [PATCH 2/4] x86/sgx: Put enclaves into anonymous files
  - From: Andy Lutomirski
- Re: [PATCH 2/4] x86/sgx: Put enclaves into anonymous files
  - From: Jarkko Sakkinen

Prev by Date: Re: [PATCH 2/4] x86/sgx: Put enclaves into anonymous files
Next by Date: [PATCH 0/1] Implement cryptographic initialization control.
Previous by thread: Re: [PATCH 2/4] x86/sgx: Put enclaves into anonymous files
Next by thread: Re: [PATCH 2/4] x86/sgx: Put enclaves into anonymous files
Index(es):
- Date
- Thread

[Index of Archives] [AMD Graphics] [Linux USB Devel] [Linux Audio Users] [Yosemite News] [Linux Kernel] [Linux SCSI]