Received: by 2002:a25:ab43:0:0:0:0:0 with SMTP id u61csp6862312ybi;
        Wed, 5 Jun 2019 07:32:54 -0700 (PDT)
X-Google-Smtp-Source: APXvYqwSZUOjD8d47Y8jaAwx3Qf/lNIBJw/qCW6FE5EnnPQR/5RAb3y2wVhsYu2oSPVwRR6jelwt
X-Received: by 2002:a17:902:8609:: with SMTP id f9mr41161550plo.252.1559745174018;
        Wed, 05 Jun 2019 07:32:54 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1559745174; cv=none;
        d=google.com; s=arc-20160816;
        b=QXJxk8rRVpp48eDoyvWAbhco0Q3c7G3IvSwaPUUKDule5HkS9/gpGmjJvahd493PnP
         Ka+H9+YoTKYevC7FOhmQ/jaDOKlCxBGm0iojbiFdls2RqFETXGC5siBKFSGtcpxAaJ7y
         EUNrr5f6PeC7xopGphTMKMj/FktknI+oHRm2otEfw9XE6tSw2n+YHcAdqpVfNVee69N+
         ZnCyVEcbUXumRa1dPPquPUECJn46libHfwKs99UcUvnXzFxSpmnSZfWjBFEeRE4vaaG4
         OBRoqKGzhJTcwf6D/qn02sHhldTQ4zICxHHDcjBzJZnthweh6OvBz5SnVh1Cy2+sAnaZ
         uniQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:user-agent:organization:in-reply-to
         :content-disposition:mime-version:references:message-id:subject:cc
         :to:from:date;
        bh=Bz+BFsuboRXo+TBm8BlnU2I4vNrwE+hazssbaiEOq/4=;
        b=Sxv+oXOBRWMkfeF3swjN0g4MC9e4AtL3IlWdgC0ooiFqwD/wDNVi2Xg+k+Rd5Xb+PP
         hBjnzCUjlYobtHvjZTdS3WLqeGlvfGz75+frhY4b7MRdvhy1M2oo5i73RtmSYBxVi7yY
         dDKCSoSB2qpLzCsQnO29vQcI2vCe0jnsTyfyUCt3NImgJhRJlOh269itE5a8Xq4vazA4
         lRY38XwGvrsp4BnjRuspFgEsDgCBu4sspv1UW5Ycj8MR0dCORfBlE5umddsGzSmlKF8j
         dcWhbxxI7paMu1EBvQm4wcey1KeZDrk7k0RrEEEaroF2FzwTfjwO9gi+RaO3yA6SDVD/
         hGBw==
ARC-Authentication-Results: i=1; mx.google.com;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=intel.com
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67])
        by mx.google.com with ESMTP id i36si26188619pgl.491.2019.06.05.07.32.35;
        Wed, 05 Jun 2019 07:32:54 -0700 (PDT)
Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67;
Authentication-Results: mx.google.com;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=intel.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1728421AbfFEO3R (ORCPT <rfc822;israelpgz17@gmail.com>
        + 99 others); Wed, 5 Jun 2019 10:29:17 -0400
Received: from mga14.intel.com ([192.55.52.115]:55534 "EHLO mga14.intel.com"
        rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP
        id S1727864AbfFEO3R (ORCPT <rfc822;linux-kernel@vger.kernel.org>);
        Wed, 5 Jun 2019 10:29:17 -0400
X-Amp-Result: UNKNOWN
X-Amp-Original-Verdict: FILE UNKNOWN
X-Amp-File-Uploaded: False
Received: from fmsmga004.fm.intel.com ([10.253.24.48])
  by fmsmga103.fm.intel.com with ESMTP/TLS/DHE-RSA-AES256-GCM-SHA384; 05 Jun 2019 07:29:16 -0700
X-ExtLoop1: 1
Received: from araresx-wtg1.ger.corp.intel.com (HELO localhost) ([10.252.46.102])
  by fmsmga004.fm.intel.com with ESMTP; 05 Jun 2019 07:29:09 -0700
Date:   Wed, 5 Jun 2019 17:29:08 +0300
From:   Jarkko Sakkinen <jarkko.sakkinen@linux.intel.com>
To:     Sean Christopherson <sean.j.christopherson@intel.com>
Cc:     Jethro Beekman <jethro@fortanix.com>,
        "linux-kernel@vger.kernel.org" <linux-kernel@vger.kernel.org>,
        "x86@kernel.org" <x86@kernel.org>,
        "linux-sgx@vger.kernel.org" <linux-sgx@vger.kernel.org>,
        "akpm@linux-foundation.org" <akpm@linux-foundation.org>,
        "dave.hansen@intel.com" <dave.hansen@intel.com>,
        "nhorman@redhat.com" <nhorman@redhat.com>,
        "npmccallum@redhat.com" <npmccallum@redhat.com>,
        "serge.ayoun@intel.com" <serge.ayoun@intel.com>,
        "shay.katz-zamir@intel.com" <shay.katz-zamir@intel.com>,
        "haitao.huang@intel.com" <haitao.huang@intel.com>,
        "andriy.shevchenko@linux.intel.com" 
        <andriy.shevchenko@linux.intel.com>,
        "tglx@linutronix.de" <tglx@linutronix.de>,
        "kai.svahn@intel.com" <kai.svahn@intel.com>,
        "bp@alien8.de" <bp@alien8.de>,
        "josh@joshtriplett.org" <josh@joshtriplett.org>,
        "luto@kernel.org" <luto@kernel.org>,
        "kai.huang@intel.com" <kai.huang@intel.com>,
        "rientjes@google.com" <rientjes@google.com>
Subject: Re: [PATCH v20 15/28] x86/sgx: Add the Linux SGX Enclave Driver
Message-ID: <20190605142908.GD11331@linux.intel.com>
References: <20190417103938.7762-1-jarkko.sakkinen@linux.intel.com>
 <20190417103938.7762-16-jarkko.sakkinen@linux.intel.com>
 <20190422215831.GL1236@linux.intel.com>
 <6dd981a7-0e38-1273-45c1-b2c0d8bf6fed@fortanix.com>
 <20190424002653.GB14422@linux.intel.com>
 <20190604201232.GA7775@linux.intel.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <20190604201232.GA7775@linux.intel.com>
Organization: Intel Finland Oy - BIC 0357606-4 - Westendinkatu 7, 02160 Espoo
User-Agent: Mutt/1.10.1 (2018-07-13)
Sender: linux-kernel-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

On Tue, Jun 04, 2019 at 01:12:32PM -0700, Sean Christopherson wrote:
> On Tue, Apr 23, 2019 at 05:26:53PM -0700, Sean Christopherson wrote:
> > On Tue, Apr 23, 2019 at 11:29:24PM +0000, Jethro Beekman wrote:
> > > On 2019-04-22 14:58, Sean Christopherson wrote:
> > > >Where do we stand on removing the ACPI and platform_driver dependencies?
> > > >Can we get rid of them sooner rather than later?
> > > 
> > > You know my position on this...
> > > https://www.spinics.net/lists/linux-sgx/msg00624.html . I don't really have
> > > any new arguments.
> > > 
> > > Considering the amount of planned changes for the driver post-merge, I think
> > > it's crucial that the driver part can be swapped out with alternative
> > > implementations.
> > 
> > This gets far outside of my area of expertise as I think this is more of
> > a policy question as opposed to a technical question, e.g. do we export
> > function simply to allow out-of-tree alternatives.
> > 
> > > >Now that the core SGX code is approaching stability, I'd like to start
> > > >sending RFCs for the EPC virtualization and KVM bits to hash out that side
> > > >of things.  The ACPI crud is the last chunk of code that would require
> > > >non-trivial changes to the core SGX code for the proposed virtualization
> > > >implementation.  I'd strongly prefer to get it out of the way before
> > > >sending the KVM RFCs.
> > > 
> > > What kind of changes? Wouldn't KVM just be another consumer of the same API
> > > used by the driver?
> > 
> > Nope, userspace "only" needs to be able to mmap() arbitrary chunks of EPC.
> > Except for EPC management, which is already in built into the kernel, the
> > EPC virtualization code has effectively zero overlap with the driver.  Of
> > course this is all technically speculative since none of this is upstream...
> 
> Jarkko, can you weigh in with your thoughts on the ACPI stuff?

If there is LKM, then it is required (for loading the LKM).

I think we should see how the access control gets implemented first and
see what constraints it introduces. It might help with to make the right
decision whether to allow LKM or not.

/Jarkko