Received: by 2002:a05:6358:d09b:b0:dc:cd0c:909e with SMTP id jc27csp1951753rwb; Fri, 2 Dec 2022 03:32:35 -0800 (PST) X-Google-Smtp-Source: AA0mqf4f5JQ6/pOw+kehH4gtIosSLM2JCqd0C1IiTJkBFBBjpf4ABj0QX3HQNzyiHCZYQzUTaU/D X-Received: by 2002:a05:6402:4011:b0:461:96ba:b9c with SMTP id d17-20020a056402401100b0046196ba0b9cmr2538970eda.353.1669980755441; Fri, 02 Dec 2022 03:32:35 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1669980755; cv=none; d=google.com; s=arc-20160816; b=QrAcNTeWECgs5TPmH0L6/Ve5DOfYA052mjPWW5XoECnPcx3yOHADBG28rNg7hnPCYg hSeDAuNjG8WsOeNhDg85UL+1/7/AUiG9Hy/XnHH+374xL+k/rl88s5gUhnz5IL/e4CJX xrehadcYactrmBqcBekpAX/WlYePSaKFKFAz9NCZU3RMc61TgBYjxV8VUt9Ekn8nlCa6 5l1Q2S5ftXl5mlxcp5moB1082r4i1ceON/YQ8lyfmuoGSCHLlomrjVPbvXaeQxRIcwPo oNpgOoTt4XFg0j1DPy3d08i9gf0GGgTCpHp9qxbIurcufFrVMtkIC74GZUL8XGbiLonm DUtQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:content-transfer-encoding:mime-version :references:in-reply-to:message-id:date:subject:cc:to:from :dkim-signature; bh=Es/l4Z3TAnIL86PaoJgiAUD+8VAVLYqVBXwIBi7oMD0=; b=mPV5Tjam/mE6uG7A5uH+we7KV0KhiHEyV7ALKFi6jZBu7bI9MfOg7Vjfsk9ORnJl64 Vx8UPKb1JCozA7S/5pWsY4wVHvvhxtXEiyF0OSNOxHcQk6H+7LfECoEvjlfz6p4KHqgG EK6oJEECyStRE/c9LYhSyBU5ra7dWWHpztIno6Wh4LjdF874pWThIFwmMA5EmZWPrlxg WDwHXqoeUvAYE/lUnNgNVvZ8YT0mrPxWdwjYQJI2EzdarkyqVimUqyJluVEgmT2vpSlu eDbe8bVuzYREgzDFp1HjvW7LM1vj5r0/eH115Pqr8Btzr5uOuwn82qJdsHOa1x0PLSmB 3NLw== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@kernel.org header.s=k20201202 header.b=HubRNWXy; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org Return-Path: Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20]) by mx.google.com with ESMTP id e17-20020a056402191100b00461c9bb5205si7006120edz.152.2022.12.02.03.32.15; Fri, 02 Dec 2022 03:32:35 -0800 (PST) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20; Authentication-Results: mx.google.com; dkim=pass header.i=@kernel.org header.s=k20201202 header.b=HubRNWXy; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S233113AbiLBLSG (ORCPT + 83 others); Fri, 2 Dec 2022 06:18:06 -0500 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:33568 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S233059AbiLBLSB (ORCPT ); Fri, 2 Dec 2022 06:18:01 -0500 Received: from ams.source.kernel.org (ams.source.kernel.org [IPv6:2604:1380:4601:e00::1]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 06C225BD42 for ; Fri, 2 Dec 2022 03:17:59 -0800 (PST) Received: from smtp.kernel.org (relay.kernel.org [52.25.139.140]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ams.source.kernel.org (Postfix) with ESMTPS id B2085B80955 for ; Fri, 2 Dec 2022 11:17:57 +0000 (UTC) Received: by smtp.kernel.org (Postfix) with ESMTPSA id 9C0C2C43470; Fri, 2 Dec 2022 11:17:53 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kernel.org; s=k20201202; t=1669979876; bh=+Z1MWlojIRA1QnTq1ioenobi9ADsvAqAO/dbKIkbqjE=; h=From:To:Cc:Subject:Date:In-Reply-To:References:From; b=HubRNWXyGURblb7IaT99ORDq0RAytki48Py2iNBMKtLeEmIUw5kIR4/XIgr4IAHnb 4T5KMpEae2eaNa7TyLUEd6Jf5aJxTwdPg3i049crdrYVGshKHGxlyW8UtpX2tYvM3N iUaVu3gx+8/Wg+/HfEeH6INCWGDqyTf/dl3s6olUARfaU0Octbd45SN+lSvEgHdF/x hSF/nIr0hi/kFUbfmn6f6jmSDB146ZbSOK6oIw0gs0G93El+mNtgNAG1RLHrs9/YE5 +FsQzyQI9l1Tjaw810VXs/t3Dr/GHcC7x9Cew+fzI95CBaRFe+edZLpDXN6ISfoc2r UvUHlrSFy6Vpw== From: Will Deacon To: Alexandru Elisei , Oliver Upton , Suzuki K Poulose , James Morse , Quentin Perret , Sudeep Holla , Andrew Walbran , Marc Zyngier , Catalin Marinas Cc: kernel-team@android.com, Will Deacon , kvmarm@lists.linux.dev, linux-arm-kernel@lists.infradead.org, kvmarm@lists.cs.columbia.edu, linux-kernel@vger.kernel.org Subject: Re: [PATCH 00/12] KVM: arm64: FF-A proxy for pKVM Date: Fri, 2 Dec 2022 11:17:43 +0000 Message-Id: <166990989276.390165.11951641189203574187.b4-ty@kernel.org> X-Mailer: git-send-email 2.20.1 In-Reply-To: <20221116170335.2341003-1-qperret@google.com> References: <20221116170335.2341003-1-qperret@google.com> MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 8bit X-Spam-Status: No, score=-7.1 required=5.0 tests=BAYES_00,DKIMWL_WL_HIGH, DKIM_SIGNED,DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,RCVD_IN_DNSWL_HI, SPF_HELO_NONE,SPF_PASS autolearn=ham autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on lindbergh.monkeyblade.net Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Wed, 16 Nov 2022 17:03:23 +0000, Quentin Perret wrote: > pKVM's primary goal is to protect guest pages from a compromised host by > enforcing access control restrictions using stage-2 page-tables. Sadly, > this cannot prevent TrustZone from accessing non-secure memory, and a > compromised host could, for example, perform a 'confused deputy' attack > by asking TrustZone to use pages that have been donated to protected > guests. This would effectively allow the host to have TrustZone > exfiltrate guest secrets on its behalf, hence breaking the isolation > that pKVM intends to provide. > > [...] Applied first two cleanups to arm64 (for-next/ffa), thanks! [01/12] firmware: arm_ffa: Move constants to header file https://git.kernel.org/arm64/c/229d58e31678 [02/12] firmware: arm_ffa: Move comment before the field it is documenting https://git.kernel.org/arm64/c/c8e320b00a2a Cheers, -- Will https://fixes.arm64.dev https://next.arm64.dev https://will.arm64.dev