Received: by 2002:a05:6a10:a0d1:0:0:0:0 with SMTP id j17csp3251720pxa;
        Sat, 8 Aug 2020 15:19:39 -0700 (PDT)
X-Google-Smtp-Source: ABdhPJyESzLDFl1rlwSnYBbJeXJEEzReHlZ1Ihx0+CHQkwxtNokMMSxbEuV4TW8bTlxlplyTNozM
X-Received: by 2002:a50:d80f:: with SMTP id o15mr14989174edj.156.1596925179392;
        Sat, 08 Aug 2020 15:19:39 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1596925179; cv=none;
        d=google.com; s=arc-20160816;
        b=aQXS8JE2aA8sxG6OrrxNL2osdTSNCJsOuWa5DS6JMe4W9LXQXzXrenYtP+Kfnqd795
         6hvkiUVcStBnjR5ACoTKs33rO0vUn85kwtYoOmo4nyDqK1zJjylkr4Viburr2JR48cVM
         r07xdwzeMO2RGwRpydJOjGd3dKB/qj6oDiOK9m1pJQHj7bxdcOSPTfp1BmkivOo4rx4E
         kQX04HnHfdik/IWsyzWNrcfVnupq73tPl+u5XwpSsu+PxAey4FMhKDadbdiY8xXc6Qs6
         Qcu1qNQ7Qbu0R4EDbkOnHg3k8AasrXPymXKvsrWv9RCk5sp/HaZoWNvRqVbyW+5WSJAQ
         CcZg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:user-agent:in-reply-to
         :content-transfer-encoding:content-disposition:mime-version
         :references:message-id:subject:cc:to:from:date;
        bh=LpV6BCgL2prXS1BikUPJv33JVLB4EbmPWL6fMVo49zs=;
        b=GBR0xYob4A4WUmnScLOMPTkendtR+/0FmVz7CVAdM+bLHOoYzZUS7UWSJNPp19BEc4
         2FsLlMse+CZCK8JQFcEHVHhYIPrXRB+24RTyua6V5LgYzKYNRwiSmi+kcCuyt2g5yJGU
         pvgrnoQtXO8TshT4t1QdvvfgUz3RC1ytVtCd+rDhHNhYV1QBskc51ILNXYjCyFDpJ4zT
         KIOGNkhu/ozcVgryoliMTwAA+UMJoiMJMRrWLuK1MZN7AtW0cVap5GdOOwj8WwPNjpDs
         G7HSyySgJXX9l9pNGajBqCeYZJLXMxeNF8fPGZP6cXu8QQi/FApfESrIjD5CXMhRK6yJ
         VOdQ==
ARC-Authentication-Results: i=1; mx.google.com;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18])
        by mx.google.com with ESMTP id ox9si7842611ejb.355.2020.08.08.15.19.16;
        Sat, 08 Aug 2020 15:19:39 -0700 (PDT)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18;
Authentication-Results: mx.google.com;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1726212AbgHHWSN convert rfc822-to-8bit (ORCPT
        <rfc822;linux.htchiang@gmail.com> + 99 others);
        Sat, 8 Aug 2020 18:18:13 -0400
Received: from jabberwock.ucw.cz ([46.255.230.98]:37752 "EHLO
        jabberwock.ucw.cz" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S1725779AbgHHWSM (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Sat, 8 Aug 2020 18:18:12 -0400
Received: by jabberwock.ucw.cz (Postfix, from userid 1017)
        id C848E1C0BD9; Sun,  9 Aug 2020 00:18:09 +0200 (CEST)
Date:   Sun, 9 Aug 2020 00:18:08 +0200
From:   Pavel Machek <pavel@ucw.cz>
To:     "Dr. Greg" <greg@enjellic.com>
Cc:     Jarkko Sakkinen <jarkko.sakkinen@linux.intel.com>, x86@kernel.org,
        linux-sgx@vger.kernel.org, linux-kernel@vger.kernel.org,
        linux-doc@vger.kernel.org, Randy Dunlap <rdunlap@infradead.org>,
        Sean Christopherson <sean.j.christopherson@intel.com>,
        akpm@linux-foundation.org, andriy.shevchenko@linux.intel.com,
        asapek@google.com, bp@alien8.de, cedric.xing@intel.com,
        chenalexchen@google.com, conradparker@google.com,
        cyhanish@google.com, dave.hansen@intel.com, haitao.huang@intel.com,
        josh@joshtriplett.org, kai.huang@intel.com, kai.svahn@intel.com,
        kmoy@google.com, ludloff@google.com, luto@kernel.org,
        nhorman@redhat.com, npmccallum@redhat.com, puiterwijk@redhat.com,
        rientjes@google.com, tglx@linutronix.de, yaozhangx@google.com
Subject: Re: [PATCH v36 23/24] docs: x86/sgx: Document SGX micro architecture
 and kernel internals
Message-ID: <20200808221808.GB1020@bug>
References: <20200716135303.276442-1-jarkko.sakkinen@linux.intel.com>
 <20200716135303.276442-24-jarkko.sakkinen@linux.intel.com>
 <20200728213511.GB13081@duo.ucw.cz>
 <20200806102148.GA14798@wind.enjellic.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: 8BIT
In-Reply-To: <20200806102148.GA14798@wind.enjellic.com>
User-Agent: Mutt/1.5.23 (2014-03-12)
Sender: linux-kernel-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

Hi!

> Good morning, I hope the week is progressing well for everyone.
> 
> > > CPUs starting from Icelake use Total Memory Encryption (TME) in
> > > the place of MEE. TME throws away the Merkle tree, which means
> > > losing integrity and anti-replay protection but also enables
> > > variable size memory pools for EPC.  Using this attack for
> > > benefit would require an interposer on the system bus.
> 
> > It is not exactly clear what "this attack" means.
> 
> In the new world that is SGX, 'this attack', roughly means that
> enclaves are susceptible to the same security threats that would be
> faced if you were running TLS/HTTPS or SSH without packet checksums
> and replay avoidance/detection mechanisms in place.

Umm, ssh w/o checksums would be rather dangerous, no? As in... if I can guess what you
are typing, I can make you type something else.

Anyway, it would be nice to somehow fix the document. It talks about "this attack"
without talking about any attack before, which is bad style.

Best regards,
									Pavel
-- 
(english) http://www.livejournal.com/~pavelmachek
(cesky, pictures) http://atrey.karlin.mff.cuni.cz/~pavel/picture/horses/blog.html