Received: by 2002:a05:7412:d1aa:b0:fc:a2b0:25d7 with SMTP id ba42csp1551015rdb; Wed, 31 Jan 2024 01:59:57 -0800 (PST) X-Google-Smtp-Source: AGHT+IHM0OnvAmoPcK/yB20lVaL8hpAG4VIhR/UCAnd3bESIlxQlVaYMObXKDj6J5JofqC8ksQbN X-Received: by 2002:a17:906:b06:b0:a36:5fcf:7d64 with SMTP id u6-20020a1709060b0600b00a365fcf7d64mr685896ejg.8.1706695196909; Wed, 31 Jan 2024 01:59:56 -0800 (PST) ARC-Seal: i=2; a=rsa-sha256; t=1706695196; cv=pass; d=google.com; s=arc-20160816; b=0zCFcin8T+R07Ku3FUMW+j1RPBbdOvKudCxwEq4gszU+3PHw2bFlUGAxQZLlsK021N 69gpoGjte3pWqdOs+Ftqc+Ebcy6pY0dm0IiVFrOCQkH0YjySiGUIKGG+oMxyM/F1lg+P rbbYPGqndxEuoVkqY7QRO0UeeBl2dCccu+UiHWY9MrdrsjN/8b8YSUfLpGJE9DLtFPTV ELCr5bcGNQK1RpfRqdJbf1D4VutB3qXMEQaIFT9XkhOrpV5Nl4SLQ4JECuP23uoZwOYD gsbqV3ZAwwhl2N4El340GCFKd+0sl1/NSHwMZRvuwGdUfq+MkUYamPj2za9Ff3KQZWf/ 6p1Q== ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:list-unsubscribe:list-subscribe:list-id:precedence :dkim-signature; bh=ndpOHGWhLs4zO4Wyfi6kMgHbolC9NcQlphKc2GTyubI=; fh=pVKGBQE08uQpsJ4glUm7P2RQbWOMbY5BUbR1oB6CNAk=; b=sVOxNQWnioC6lGyevN9DvP+gdLtX0egRcTTaTf9HIByBlbS8xzxbBU+fpR5+P8vASw hp562XEUsd79kIr7OXQBruDECS3502BGjPQGbGG5gK9ClV2ujiKVkTjj1lUcm7U5ylHo 3ywvqFqzWn+81UlIf/BNeynYemwUQxpkW9C+TnAldwKM/IoOVJYC9JjVG0BX3PLhFlBj qIENkDQq66txdlmmOMo+M/g9SpXsXW3OmefIABhEuNLz4QPH70eoIY9FBvjMik9Lm3O+ 1Js+zuDf96oPdgUdiXxm0NA8AvVuLqT9WRShRm7rlAjTe14x0yqpfjoNydTnWwt1OgjO y3/Q==; dara=google.com ARC-Authentication-Results: i=2; mx.google.com; dkim=pass header.i=@kernel.org header.s=k20201202 header.b=M84x0a7u; arc=pass (i=1 dkim=pass dkdomain=kernel.org); spf=pass (google.com: domain of linux-kernel+bounces-46171-linux.lists.archive=gmail.com@vger.kernel.org designates 2604:1380:4601:e00::3 as permitted sender) smtp.mailfrom="linux-kernel+bounces-46171-linux.lists.archive=gmail.com@vger.kernel.org"; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org X-Forwarded-Encrypted: i=1; AJvYcCVWnXqrq9TNr+65cXMQqtnfK6XYb5VozUj/1DkDHBlyCPxskN8UjZ6TML70+zXty2XZNIulgMScTwHEjIQtHcgZFzeN8OonG+9gcL0gOA== Return-Path: Received: from am.mirrors.kernel.org (am.mirrors.kernel.org. [2604:1380:4601:e00::3]) by mx.google.com with ESMTPS id w21-20020a170906131500b00a36788590d8si426169ejb.125.2024.01.31.01.59.56 for (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Wed, 31 Jan 2024 01:59:56 -0800 (PST) Received-SPF: pass (google.com: domain of linux-kernel+bounces-46171-linux.lists.archive=gmail.com@vger.kernel.org designates 2604:1380:4601:e00::3 as permitted sender) client-ip=2604:1380:4601:e00::3; Authentication-Results: mx.google.com; dkim=pass header.i=@kernel.org header.s=k20201202 header.b=M84x0a7u; arc=pass (i=1 dkim=pass dkdomain=kernel.org); spf=pass (google.com: domain of linux-kernel+bounces-46171-linux.lists.archive=gmail.com@vger.kernel.org designates 2604:1380:4601:e00::3 as permitted sender) smtp.mailfrom="linux-kernel+bounces-46171-linux.lists.archive=gmail.com@vger.kernel.org"; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org Received: from smtp.subspace.kernel.org (wormhole.subspace.kernel.org [52.25.139.140]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by am.mirrors.kernel.org (Postfix) with ESMTPS id A65FF1F26B7E for ; Wed, 31 Jan 2024 09:59:56 +0000 (UTC) Received: from localhost.localdomain (localhost.localdomain [127.0.0.1]) by smtp.subspace.kernel.org (Postfix) with ESMTP id 882A169971; Wed, 31 Jan 2024 09:59:48 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; dkim=pass (2048-bit key) header.d=kernel.org header.i=@kernel.org header.b="M84x0a7u" Received: from smtp.kernel.org (aws-us-west-2-korg-mail-1.web.codeaurora.org [10.30.226.201]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id A92AF69958; Wed, 31 Jan 2024 09:59:47 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; arc=none smtp.client-ip=10.30.226.201 ARC-Seal:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1706695187; cv=none; b=ualGrJKQE4a1QwhPD71x8B8QSo/lVxHTMxOJG3S2TSMoU6Ug0QuPPr3ATtLeGqUk29lJXY4Vfqg/kJw2Q2SVrUpnzky5u1vYSMl9qgKyY9fG2Nm7u44hSnmsBmurDAQFRJXHtpSCOlKorxKQwTOIIl8+KFRBRejXALJXg5vW4gk= ARC-Message-Signature:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1706695187; c=relaxed/simple; bh=ndpOHGWhLs4zO4Wyfi6kMgHbolC9NcQlphKc2GTyubI=; h=MIME-Version:References:In-Reply-To:From:Date:Message-ID:Subject: To:Cc:Content-Type; b=fXh/5Jp2hu7Rs6Z5JStrJSsCdzwgI+nT4fxj9PWypL25U1MOiQ+4l0bQacMvkUM9/KAYfbn9PoDR6kBBivC695TpaL/+OkXqDYd6cvqIijp9i1Bs2su6r3Pz59TIzmMZTncgsIikosuc9o81HbqdRkySznOKm0/IgLtC0h/cT1U= ARC-Authentication-Results:i=1; smtp.subspace.kernel.org; dkim=pass (2048-bit key) header.d=kernel.org header.i=@kernel.org header.b=M84x0a7u; arc=none smtp.client-ip=10.30.226.201 Received: by smtp.kernel.org (Postfix) with ESMTPSA id 324EAC433B2; Wed, 31 Jan 2024 09:59:47 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kernel.org; s=k20201202; t=1706695187; bh=ndpOHGWhLs4zO4Wyfi6kMgHbolC9NcQlphKc2GTyubI=; h=References:In-Reply-To:From:Date:Subject:To:Cc:From; b=M84x0a7uUEP4VPvSwPNa2lMonKxd3C2zSzazDaWS7Tz2K7YiZ2yCQJvmLfQ4kjTFL fPPZB2vxZuG51kuLFyf3wHESUh6MIjeCwRUBrvhBFaBFtSUDgwAyXeTY2H/8heM09v 0HP601hjsRdcGlbb2TQqyPLHKdCL/uwCsRxkm3nMkyn5XsMC+KOvrxrBe7B5Lc0Mv9 AQssPuD+C8Q3EUND5bScW0xvRqE2bta6/dmyhVrwBOFi7sWn8i7DmZhFIKg0wDI6iR 0D37optKDWRzQX62jNCFbErFYwiCDNP5pMZUIMRAcz0D8FBCJntziFVPS4GrtFp1Xy iiQEYWEhowLJw== Received: by mail-lf1-f49.google.com with SMTP id 2adb3069b0e04-5102a877d50so5593864e87.0; Wed, 31 Jan 2024 01:59:47 -0800 (PST) X-Gm-Message-State: AOJu0Yz/PrSX5USKZ7XMVv6D56oJjpVxmD1/jgSgmMpudefmSBpiT6bx OfsHYBTHvjj3J5XKMsE6dIegdgt/UIrzv0aXa08wB+LGtgPDESwnQ54uY/bltM4qVUSeAhX2NC7 a5DVZwMIwvRbCBGpBYZTQ7tBcYXw= X-Received: by 2002:ac2:443a:0:b0:50f:18f7:855e with SMTP id w26-20020ac2443a000000b0050f18f7855emr790716lfl.39.1706695185332; Wed, 31 Jan 2024 01:59:45 -0800 (PST) Precedence: bulk X-Mailing-List: linux-kernel@vger.kernel.org List-Id: List-Subscribe: List-Unsubscribe: MIME-Version: 1.0 References: <20240129180502.4069817-21-ardb+git@google.com> <20240129180502.4069817-23-ardb+git@google.com> <20240131083511.GIZboGP8jPIrUZA8DF@fat_crate.local> <20240131092952.GCZboTECip8DbWtYtz@fat_crate.local> In-Reply-To: <20240131092952.GCZboTECip8DbWtYtz@fat_crate.local> From: Ard Biesheuvel Date: Wed, 31 Jan 2024 10:59:34 +0100 X-Gmail-Original-Message-ID: Message-ID: Subject: Re: [PATCH v3 02/19] x86/boot: Move mem_encrypt= parsing to the decompressor To: Borislav Petkov Cc: Ard Biesheuvel , linux-kernel@vger.kernel.org, Kevin Loughlin , Tom Lendacky , Dionna Glaze , Thomas Gleixner , Ingo Molnar , Dave Hansen , Andy Lutomirski , Arnd Bergmann , Nathan Chancellor , Nick Desaulniers , Justin Stitt , Kees Cook , Brian Gerst , linux-arch@vger.kernel.org, llvm@lists.linux.dev Content-Type: text/plain; charset="UTF-8" On Wed, 31 Jan 2024 at 10:30, Borislav Petkov wrote: > > On Wed, Jan 31, 2024 at 10:12:13AM +0100, Ard Biesheuvel wrote: > > The reason we need two flags is because there is no default value to > > use when the command line param is absent. > > I think absent means memory encryption disabled like with every other > option which is not present... > > > There is CONFIG_AMD_MEM_ENCRYPT_ACTIVE_BY_DEFAULT but that one is AMD > > ... yes, and I'm thinking that it is time we kill this. I don't think > anything uses it. It was meant well at the time. > > Let's wait for Tom to wake up first, though, as he might have some > objections... > OK, yeah, that would help. AIUI this is for SME only anyway - SEV ignores this, and I suppose TDX will do the same.