Re: [PATCH, RFC 44/62] x86/mm: Set KeyIDs in encrypted VMAs for MKTME

From: Peter Zijlstra
Date: Fri Jun 14 2019 - 07:49:08 EST

Next message: Pavel Begunkov (Silence): "[PATCH 0/2] Fix misuse of blk_rq_stats in blk-iolatency"
Previous message: Borislav Petkov: "Re: [RFC PATCH 2/3] x86/cpufeatures: Combine word 11 and 12 into new scattered features word 11"
Next in thread: Alison Schofield: "Re: [PATCH, RFC 44/62] x86/mm: Set KeyIDs in encrypted VMAs for MKTME"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, May 08, 2019 at 05:44:04PM +0300, Kirill A. Shutemov wrote:
> From: Alison Schofield <alison.schofield@xxxxxxxxx>
>
> MKTME architecture requires the KeyID to be placed in PTE bits 51:46.
> To create an encrypted VMA, place the KeyID in the upper bits of
> vm_page_prot that matches the position of those PTE bits.
>
> When the VMA is assigned a KeyID it is always considered a KeyID
> change. The VMA is either going from not encrypted to encrypted,
> or from encrypted with any KeyID to encrypted with any other KeyID.
> To make the change safely, remove the user pages held by the VMA
> and unlink the VMA's anonymous chain.

This does not look like a transformation that preserves content; is
mprotect() still a suitable name?

Next message: Pavel Begunkov (Silence): "[PATCH 0/2] Fix misuse of blk_rq_stats in blk-iolatency"
Previous message: Borislav Petkov: "Re: [RFC PATCH 2/3] x86/cpufeatures: Combine word 11 and 12 into new scattered features word 11"
Next in thread: Alison Schofield: "Re: [PATCH, RFC 44/62] x86/mm: Set KeyIDs in encrypted VMAs for MKTME"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]