On Wed, 2022-10-12 at 14:54 +0300, jarkko@xxxxxxxxxx wrote: > > Sharing virtual EPC instance will very likely unexpectedly break enclaves in > > all > > VMs. Whether kernel should explicitly prevent is another topic. To me I > > don't > > see strong reason to enforce in the kernel. For instance, multiple VMs can > > map > > the same file as memory backend with MAP_SHARED, in which case they can all > > break. Userspace should use virtual EPC in the right way. > > Broadly speaking, for most of the time, and for any topic, kernel should > not prevent anything, unless it can break kernel's internal state. Good to know. Thanks you. -- Thanks, -Kai
