Received: by 2002:a25:868d:0:0:0:0:0 with SMTP id z13csp2585139ybk;
        Mon, 18 May 2020 02:53:42 -0700 (PDT)
X-Google-Smtp-Source: ABdhPJzQygtkq1kWdbS4fdrCoVa1whTENNJDZDYthuZnsAXPfOzOPgu93QasxZ6YCHGwygJ3mkfg
X-Received: by 2002:a50:c057:: with SMTP id u23mr4964725edd.293.1589795622520;
        Mon, 18 May 2020 02:53:42 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1589795622; cv=none;
        d=google.com; s=arc-20160816;
        b=v1oBXhfC/7M7pD0sfUayODwCiWxZkeyFLS6OAPc8fxndbzSzrv9inuyJmkZBtINeIp
         Tdm1X8+5O/A7xIGSM4PKETX2o2o4641lqcsbu9F2NYXEQBeYbyKJezZ4KIHM+TBd4Hkd
         p4mGvQPlpol4W9kyvgfUqSBJFdK+7ZOYpjr2xnarlV9UrJGtEkXRZCQFki7X5mMPWNfy
         O5h4NgIRPKHsRzSe8iaRAOku7rNKmGdWmEuEKqaGWt94uPQJ3YkL5JoBL98B6hH6BiFc
         fJuVL6qG43caY9OBKbD2jw8lIuy4S3xiir0nZncyQdfbdWF3vphvxuHZtlZVMIfx0sf1
         3exg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:mime-version:message-id:date:references
         :in-reply-to:subject:cc:to:from;
        bh=C0ROxgJiT+tJRx6ed+jmXdXxQgvdcooS0KWvFu0WbfE=;
        b=veTGO9IqXiAxZ/ocaGkfi0wzFAlXoFBAhwKMHzydx9Du56ta0PJe+kcMAn9LFLrue1
         xHrRGsBxHzsWuj9f8udMJFObFIdvbln4DZoFjjJIpzxGH+7M0vlF6GFhSFYlOKRMMqIB
         RXA7wjS0o4GuH/z8uHk6BQvbXedoXcwRdBGLZnzEpRrlbPjFP0oIBLc/g7RauFiWC0XL
         +TJ+qTOmVgmEgYW+9KpPSzwp5JMPNsjGanXFaE5AogDX8h/zggwjG6ibLCiW8/p0uaOW
         4a5LnGQ11LktEQToZehVV9wz9+sJ3gjQcR+NlSEyjioT414+vwfpMuCTy40u3Hr9AedQ
         aUXw==
ARC-Authentication-Results: i=1; mx.google.com;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18])
        by mx.google.com with ESMTP id n22si6053918ejd.119.2020.05.18.02.53.19;
        Mon, 18 May 2020 02:53:42 -0700 (PDT)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18;
Authentication-Results: mx.google.com;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1726543AbgERJvP (ORCPT <rfc822;shibaboy@gmail.com> + 99 others);
        Mon, 18 May 2020 05:51:15 -0400
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:42372 "EHLO
        lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S1726040AbgERJvP (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Mon, 18 May 2020 05:51:15 -0400
Received: from Galois.linutronix.de (Galois.linutronix.de [IPv6:2a0a:51c0:0:12e:550::1])
        by lindbergh.monkeyblade.net (Postfix) with ESMTPS id EDA4AC061A0C
        for <linux-kernel@vger.kernel.org>; Mon, 18 May 2020 02:51:14 -0700 (PDT)
Received: from p5de0bf0b.dip0.t-ipconnect.de ([93.224.191.11] helo=nanos.tec.linutronix.de)
        by Galois.linutronix.de with esmtpsa (TLS1.2:DHE_RSA_AES_256_CBC_SHA256:256)
        (Exim 4.80)
        (envelope-from <tglx@linutronix.de>)
        id 1jacQO-0006d5-NZ; Mon, 18 May 2020 11:51:08 +0200
Received: by nanos.tec.linutronix.de (Postfix, from userid 1000)
        id 03561100606; Mon, 18 May 2020 11:51:07 +0200 (CEST)
From:   Thomas Gleixner <tglx@linutronix.de>
To:     Sasha Levin <sashal@kernel.org>,
        Jarkko Sakkinen <jarkko.sakkinen@linux.intel.com>
Cc:     linux-kernel@vger.kernel.org, bp@alien8.de, luto@kernel.org,
        hpa@zytor.com, dave.hansen@intel.com, tony.luck@intel.com,
        ak@linux.intel.com, ravi.v.shankar@intel.com,
        chang.seok.bae@intel.com
Subject: Re: [PATCH v12 00/18] Enable FSGSBASE instructions
In-Reply-To: <20200515164013.GF29995@sasha-vm>
References: <20200511045311.4785-1-sashal@kernel.org> <0186c22a8a6be1516df0703c421faaa581041774.camel@linux.intel.com> <20200515164013.GF29995@sasha-vm>
Date:   Mon, 18 May 2020 11:51:07 +0200
Message-ID: <87o8qly3jo.fsf@nanos.tec.linutronix.de>
MIME-Version: 1.0
Content-Type: text/plain
X-Linutronix-Spam-Score: -1.0
X-Linutronix-Spam-Level: -
X-Linutronix-Spam-Status: No , -1.0 points, 5.0 required,  ALL_TRUSTED=-1,SHORTCIRCUIT=-0.0001
Sender: linux-kernel-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

Sasha Levin <sashal@kernel.org> writes:
> On Fri, May 15, 2020 at 12:24:14PM +0300, Jarkko Sakkinen wrote:
>>
>>Can you put me to the CC-loop for this patches. Some SGX-enabled
>>frameworks such as Graphene use out-of-tree changes to achieve this.
>>That's where the interest to possibly test this comes from.
>
> Indeed, we've seen a few hacks that basically just enable FSGSBASE:
>
>  - https://github.com/oscarlab/graphene-sgx-driver
>  - https://github.com/occlum/enable_rdfsbase

I'm really amazed by all these security experts enabling a full root
hole. It clearly puts the SGX hypocrisy into perspective.

Thanks,

        tglx