Received: by 2002:a25:868d:0:0:0:0:0 with SMTP id z13csp889349ybk;
        Wed, 13 May 2020 16:11:29 -0700 (PDT)
X-Google-Smtp-Source: ABdhPJxy5Iepr3Cgrx09oMuzz84fQQ7GFxWB9beZlVxeLs6ApTjU40wg/I/bWGXCtHxMrzybI3be
X-Received: by 2002:a17:906:f75b:: with SMTP id jp27mr1340191ejb.141.1589411489336;
        Wed, 13 May 2020 16:11:29 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1589411489; cv=none;
        d=google.com; s=arc-20160816;
        b=MynbosTUIqzTlJJJlJ/DrEz4/HBA6onouvIT0hyo2oFixY1sWss4lisG1ye/egQkGD
         F3Uwn11PDyEZgLocLMctZ522HzwA2+TFQPkpB/dhwkg3cvWEg1MSYYFecB8/N8ij5TUe
         wG41PpOwdIFSx9VPqpz/bV6XkBbeaYWBUtuTvbkHjmLDGBK/pL0HXMuaNVRk6XRO/E6E
         4MUNupIMPP4SoWI9VZh64JMaMoom/JA0JDr3qXKZoeJ+NUZ9g5P3gbgiY0ngHsg8wMzO
         yjb93dwdKM5jYgBhjgPfCMXwC9uGF9i+sBF5INHwdaxzJ26DUH5PoOJF6YiZALEz7smS
         8VVQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:content-transfer-encoding:mime-version
         :user-agent:organization:references:in-reply-to:date:cc:to:from
         :subject:message-id:ironport-sdr:ironport-sdr;
        bh=dnDGVuan81IDX9HxmieOf4aVlU+cJcUi9Lpq4dgd/oM=;
        b=aKzGW7MFxAgWNEYvB6DAsnJfwfYdNKPjOxlXRhScMUO45Gn0OWNNwT2O3aCgAaxUO6
         t7xd2tEUE6HC4aSjzAH9pMFdvJ57lMh5mwOm5KAPIdHGJMiBRQPneK2CdVXrksJXR2ns
         c+MJjmTaQN5AYJaAG23/TygFecEKToIclhbiK4g/f58Hb3gzBdZAEX0PXPKXtKpvswom
         HqUsWXF8UHus0FsAWLTzNTenb6b+9cJMXOs84zl3ZWTUFVIOAx5P8rD+pivh6akifJgG
         OVpMCUs0qkSlMTPY9HdNTrAObfS4m5dkFvhk67UJvvq8hs6WMZAkiuRhqMx+nKIOzVjy
         BW6g==
ARC-Authentication-Results: i=1; mx.google.com;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=intel.com
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18])
        by mx.google.com with ESMTP id hb15si486438ejb.451.2020.05.13.16.11.06;
        Wed, 13 May 2020 16:11:29 -0700 (PDT)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18;
Authentication-Results: mx.google.com;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=intel.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1732456AbgEMXJd (ORCPT <rfc822;chenc2371@gmail.com> + 99 others);
        Wed, 13 May 2020 19:09:33 -0400
Received: from mga18.intel.com ([134.134.136.126]:49358 "EHLO mga18.intel.com"
        rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP
        id S1732151AbgEMXJd (ORCPT <rfc822;linux-kernel@vger.kernel.org>);
        Wed, 13 May 2020 19:09:33 -0400
IronPort-SDR: ChnACrQ/nlAlRRpEz6OigGc4nO25Ll1gBxiDxOwFPd5igRnaWW62co8hNJ7FMnhyUWgnV1SY8c
 bKxppW4l9Esw==
X-Amp-Result: SKIPPED(no attachment in message)
X-Amp-File-Uploaded: False
Received: from fmsmga001.fm.intel.com ([10.253.24.23])
  by orsmga106.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 13 May 2020 16:09:32 -0700
IronPort-SDR: FpN+OY1K71+x9lmhQ/R4t4qwERrf/qTusZ1FBnThNG4M39goM1tFnsuO/WDX+bOXeczqIJ0DEx
 wqKjm7T9eLzQ==
X-ExtLoop1: 1
X-IronPort-AV: E=Sophos;i="5.73,389,1583222400"; 
   d="scan'208";a="372053949"
Received: from rthurerx-mobl.ger.corp.intel.com ([10.249.36.107])
  by fmsmga001.fm.intel.com with ESMTP; 13 May 2020 16:09:25 -0700
Message-ID: <ba92f60e41cee1be11b30e8383268b1e1ce896b1.camel@linux.intel.com>
Subject: Re: [PATCH v29 00/20] Intel SGX foundations
From:   Jarkko Sakkinen <jarkko.sakkinen@linux.intel.com>
To:     Jordan Hand <jorhand@linux.microsoft.com>,
        linux-kernel@vger.kernel.org, x86@kernel.org,
        linux-sgx@vger.kernel.org
Cc:     akpm@linux-foundation.org, dave.hansen@intel.com,
        sean.j.christopherson@intel.com, nhorman@redhat.com,
        npmccallum@redhat.com, haitao.huang@intel.com,
        andriy.shevchenko@linux.intel.com, tglx@linutronix.de,
        kai.svahn@intel.com, bp@alien8.de, josh@joshtriplett.org,
        luto@kernel.org, kai.huang@intel.com, rientjes@google.com,
        cedric.xing@intel.com, puiterwijk@redhat.com
Date:   Thu, 14 May 2020 02:09:19 +0300
In-Reply-To: <e50f4c00-12e6-19e6-ead3-f180074bceea@linux.microsoft.com>
References: <20200421215316.56503-1-jarkko.sakkinen@linux.intel.com>
         <e50f4c00-12e6-19e6-ead3-f180074bceea@linux.microsoft.com>
Organization: Intel Finland Oy - BIC 0357606-4 - Westendinkatu 7, 02160 Espoo
Content-Type: text/plain; charset="UTF-8"
User-Agent: Evolution 3.36.1-2 
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Sender: linux-kernel-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

On Wed, 2020-05-06 at 09:39 -0700, Jordan Hand wrote:
> On 4/21/20 2:52 PM, Jarkko Sakkinen wrote:
> > Intel(R) SGX is a set of CPU instructions that can be used by applications
> > to set aside private regions of code and data. The code outside the enclave
> > is disallowed to access the memory inside the enclave by the CPU access
> > control.
> > 
> > There is a new hardware unit in the processor called Memory Encryption
> > Engine (MEE) starting from the Skylake microacrhitecture. BIOS can define
> > one or many MEE regions that can hold enclave data by configuring them with
> > PRMRR registers.
> > 
> > The MEE automatically encrypts the data leaving the processor package to
> > the MEE regions. The data is encrypted using a random key whose life-time
> > is exactly one power cycle.
> > 
> > The current implementation requires that the firmware sets
> > IA32_SGXLEPUBKEYHASH* MSRs as writable so that ultimately the kernel can
> > decide what enclaves it wants run. The implementation does not create
> > any bottlenecks to support read-only MSRs later on.
> > 
> > You can tell if your CPU supports SGX by looking into /proc/cpuinfo:
> > 
> > 	cat /proc/cpuinfo  | grep sgx
> > 
> > v29:
> > * The selftest has been moved to selftests/sgx. Because SGX is an execution
> >    environment of its own, it really isn't a great fit with more "standard"
> >    x86 tests.
> > 
> >    The RSA key is now generated on fly and the whole signing process has
> >    been made as part of the enclave loader instead of signing the enclave
> >    during the compilation time.
> > 
> >    Finally, the enclave loader loads now the test enclave directly from its
> >    ELF file, which means that ELF file does not need to be coverted as raw
> >    binary during the build process.
> > * Version the mm_list instead of using on synchronize_mm() when adding new
> >    entries. We hold the write lock for the mm_struct, and dup_mm() can thus
> >    deadlock with the page reclaimer, which could hold the lock for the old
> >    mm_struct.
> > * Disallow mmap(PROT_NONE) from /dev/sgx. Any mapping (e.g. anonymous) can
> >    be used to reserve the address range. Now /dev/sgx supports only opaque
> >    mappings to the (initialized) enclave data.
> > * Make the vDSO callable directly from C by preserving RBX and taking leaf
> >    from RCX.
> > 
> 
> Tested with the Open Enclave SDK on top of Intel PSW. Specifically built 
> the Intel PSW with changes to support /dev/sgx mapping[1] new in v29.
> 
> Tested-by: Jordan Hand <jorhand@linux.microsoft.com>
> 
> [1] https://github.com/intel/linux-sgx/pull/530

Thank you!

/Jarkko