Re: [PATCH, RFC 47/62] mm: Restrict MKTME memory encryption to anonymous VMAs

From: Peter Zijlstra
Date: Fri Jun 14 2019 - 08:00:20 EST


On Wed, May 08, 2019 at 05:44:07PM +0300, Kirill A. Shutemov wrote:
> From: Alison Schofield <alison.schofield@xxxxxxxxx>
>
> Memory encryption is only supported for mappings that are ANONYMOUS.
> Test the VMA's in an encrypt_mprotect() request to make sure they all
> meet that requirement before encrypting any.
>
> The encrypt_mprotect syscall will return -EINVAL and will not encrypt
> any VMA's if this check fails.
>
> Signed-off-by: Alison Schofield <alison.schofield@xxxxxxxxx>
> Signed-off-by: Kirill A. Shutemov <kirill.shutemov@xxxxxxxxxxxxxxx>

This should be folded back into the initial implemention, methinks.