Received: by 10.223.164.202 with SMTP id h10csp5781661wrb;
        Tue, 21 Nov 2017 15:46:30 -0800 (PST)
X-Google-Smtp-Source: AGs4zMbDsVcSraFym0gjKlyamPS/gtdu8ueWi/uDbSh3GStFp/AZhKFwqv/dAuPMr8huvqWsr2R+
X-Received: by 10.101.91.5 with SMTP id y5mr18998122pgq.445.1511307990566;
        Tue, 21 Nov 2017 15:46:30 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; t=1511307990; cv=none;
        d=google.com; s=arc-20160816;
        b=ObtBQWaa4asdffTc6dRjmpRxixRa2cf88gDke0BGPfAAN9/BAzvlWRW1g8+R4QrzHr
         vF0+oPIl23O8t9r3t2ZLElH6g/jZcpyW8cmXtNLvbNcSxa3aU6rbFXY7PTdkPNafelj/
         psBwWK88EYHDbEMz6C7mlPM9viMYRhpbJJoqx9tx+WGlXNmwPGuV+IfukfpEHUy60Px9
         v/fhLAMOZPLP+d4cHy0259zWpsB3tfDSRGYOdBVCp/LCm4nagozboszmEVCRskUX8L9A
         Vx1DmEI4EmMZk2blQeq1DtI4GS8BICAcNT5LuKPyasALhuHYrwXIxg97vQM7M/gcuN0o
         s05w==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:spamdiagnosticmetadata
         :spamdiagnosticoutput:content-transfer-encoding:content-language
         :in-reply-to:mime-version:user-agent:date:message-id:from:references
         :cc:to:subject:dkim-signature:arc-authentication-results;
        bh=N0NQOHZceHVSlFbxPKXrNkIU9ek/V5MSWgsYR4T4SlQ=;
        b=X0Ms1+WLjXRC5/KRnxN8epFAWTMi8B2KgOncoXB/bKl+QlTU/4BdaA6czSkpQ5KU/D
         7Adm3MJ1Ytx+5J0DZG1AASVv2mt/PpOPX9hiBjgREf6UuHFZhmqoVAyXaJuDYZonDc1d
         lmg0GEbuRD/Pn+emYXF9B0z2+sfZZz5f0Gm1qTVcE5povy1FvyJX4mKRiu/vR1WbrM2r
         zPChzHPvBeE0kyRalLiM46/z2p2ac76fyvyvTYJsCm2a5X/5XXT6rW16bm2BEmMvaaWG
         AorpceIdQ1JPzfR6bAzSQ+oAD0E30DZxLf/M0ikzRZ5TzhMkwZHN6A4ipouVdKRc8m37
         za+g==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@fortanix.onmicrosoft.com header.s=selector1-fortanix-com header.b=UXjPOPVb;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67])
        by mx.google.com with ESMTP id z11si11666307plo.772.2017.11.21.15.46.19;
        Tue, 21 Nov 2017 15:46:30 -0800 (PST)
Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@fortanix.onmicrosoft.com header.s=selector1-fortanix-com header.b=UXjPOPVb;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1751515AbdKUXpl (ORCPT <rfc822;yuankui.zhao@gmail.com>
        + 76 others); Tue, 21 Nov 2017 18:45:41 -0500
Received: from mail-co1nam03on0112.outbound.protection.outlook.com ([104.47.40.112]:2913
        "EHLO NAM03-CO1-obe.outbound.protection.outlook.com"
        rhost-flags-OK-OK-OK-FAIL) by vger.kernel.org with ESMTP
        id S1751372AbdKUXpj (ORCPT <rfc822;linux-kernel@vger.kernel.org>);
        Tue, 21 Nov 2017 18:45:39 -0500
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=fortanix.onmicrosoft.com; s=selector1-fortanix-com;
 h=From:Date:Subject:Message-ID:Content-Type:MIME-Version;
 bh=N0NQOHZceHVSlFbxPKXrNkIU9ek/V5MSWgsYR4T4SlQ=;
 b=UXjPOPVbar/1l4t6HExmGOqIbxBkjDQQwsC4VViaw7QAnC4BtjG7OEgD2Z9+GyM8ubFkCL7He0UQcXtflR5clV6ZrLWIqYJmzWmxtOXsUQkM+LsaE6Txy2SKd1Suy69p/ht5mG/1zKMYGImLfbIC2X4Os8NXRAPpVnZlO4HhaLc=
Authentication-Results: spf=none (sender IP is )
 smtp.mailfrom=jethro@fortanix.com; 
Received: from [10.198.0.250] (67.207.107.146) by
 DM3PR11MB0921.namprd11.prod.outlook.com (2a01:111:e400:5983::11) with
 Microsoft SMTP Server (version=TLS1_2,
 cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P256) id 15.20.239.5; Tue, 21
 Nov 2017 23:45:35 +0000
Subject: Re: [PATCH v5 11/11] intel_sgx: driver documentation
To:     Borislav Petkov <bp@alien8.de>,
        Jarkko Sakkinen <jarkko.sakkinen@linux.intel.com>
Cc:     Peter Zijlstra <peterz@infradead.org>,
        platform-driver-x86@vger.kernel.org, linux-kernel@vger.kernel.org,
        Thomas Gleixner <tglx@linutronix.de>
References: <20171113194528.28557-1-jarkko.sakkinen@linux.intel.com>
 <20171113194528.28557-12-jarkko.sakkinen@linux.intel.com>
 <20171114083647.uxlaov56s2xw3pua@pd.tnic>
 <20171114204948.f6g2m62kx5gr5xtw@linux.intel.com>
 <20171115115412.uqdy3y74w4sdnzlo@hirez.programming.kicks-ass.net>
 <20171120224623.hpx7zcorrwo4ivhh@linux.intel.com>
 <20171121123854.rv3uxl7zndh3kr2z@linux.intel.com>
 <20171121124739.vszgiz37bhzjfnug@pd.tnic>
From:   Jethro Beekman <jethro@fortanix.com>
Message-ID: <32c3936f-f5f0-cd26-f6f8-6d710b4eb3d6@fortanix.com>
Date:   Tue, 21 Nov 2017 15:45:31 -0800
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101
 Thunderbird/52.4.0
MIME-Version: 1.0
In-Reply-To: <20171121124739.vszgiz37bhzjfnug@pd.tnic>
Content-Type: text/plain; charset=utf-8; format=flowed
Content-Language: en-US
Content-Transfer-Encoding: 7bit
X-Originating-IP: [67.207.107.146]
X-ClientProxiedBy: BN6PR14CA0022.namprd14.prod.outlook.com
 (2603:10b6:404:79::32) To DM3PR11MB0921.namprd11.prod.outlook.com
 (2a01:111:e400:5983::11)
X-MS-PublicTrafficType: Email
X-MS-Office365-Filtering-Correlation-Id: 70355a09-0909-4d69-bff4-08d53139f66b
X-Microsoft-Antispam: UriScan:;BCL:0;PCL:0;RULEID:(22001)(4534020)(4602075)(4603075)(4627115)(201702281549075)(2017052603258);SRVR:DM3PR11MB0921;
X-Microsoft-Exchange-Diagnostics: 1;DM3PR11MB0921;3:I0YZ6FhzNdBXwWUedfBDbL7ViczG4nUQMDt+D6Sc+nFQ+rr6b1fzLakhuIUYSuHR+THYvW0JepP9F6zRN6vKS19kx1clED5fJ8d3KkXRd1GYAPHpzRKe/JVmp1wKG2174DPlVyUkqRogn+PEbb/ALLTLjdq691DK/bIoVhGkyYivlUmxBGJigl+j1TmBswoqRZQiOyJrTkFYSYE8hzmawIYruyvqTdxY8xKB2ujjNY8gl6AGZYD85cJMX1yID7lN;25:rVm24T953JMufDfalVL64UcrWOYooXxNod85ldU/PQ15mhX9K/9hO7wMpHWXGUdRXXCuGg5rCkTZT4Saf+FxLCLmxq91CGVIub5zGTr88TRRjnFqw6V5kS8OR0NUpl0Czm/X28P19V7sH3OWrztflUmSeFJXsMmZuCyLFZEPPDNnpQ5zibU4jWkEpfGfk/l37EXYoUCP3KsaYtfRu0QxwnylZrd2Th3Qk/XBUPT/6McidlsPWwU0MwKPZumLDJd3pmWb0b0FFk7opES153S2jLd46Q5WiAcFpqMY9qONliDAzig6dSNnUJIBwQ6EI3J95T0xFyC4k0dWd1cPTNpWgM2NQCAOdPpqMhyrC0gx0Dc=;31:r/dLM1fAWn8XjoBWsXR1j8S5GiCqugYQOc++JLAJMbVkIruLY9gRGHDMPdr3Q1k04YvPeTDkiHZjDin6khPhLbrISfRWrcnhNpYkXfVsG0tVhQ4xE74U2pQpxM8xVeKu1uLmTbeGDh8OgjeAnZGxSmgXQSDLT9CuHYrSmFd1EthSORFtXgBKTDWp6pD0zV5BQnRRgvI+0X+hq/U6sWDJHnOTlr0fwKmQTxHIhXL32LM=
X-MS-TrafficTypeDiagnostic: DM3PR11MB0921:
X-Microsoft-Antispam-PRVS: <DM3PR11MB0921A480F3B1746E51542B16AA230@DM3PR11MB0921.namprd11.prod.outlook.com>
X-Exchange-Antispam-Report-Test: UriScan:(192374486261705)(17755550239193);
X-Exchange-Antispam-Report-CFA-Test: BCL:0;PCL:0;RULEID:(100000700101)(100105000095)(100000701101)(100105300095)(100000702101)(100105100095)(6040450)(2401047)(8121501046)(5005006)(3002001)(3231022)(10201501046)(93006095)(93001095)(100000703101)(100105400095)(6041248)(2016111802025)(20161123562025)(20161123555025)(20161123564025)(20161123560025)(20161123558100)(201703131423075)(201702281528075)(201703061421075)(201703061406153)(6043046)(6072148)(201708071742011)(100000704101)(100105200095)(100000705101)(100105500095);SRVR:DM3PR11MB0921;BCL:0;PCL:0;RULEID:(100000800101)(100110000095)(100000801101)(100110300095)(100000802101)(100110100095)(100000803101)(100110400095)(100000804101)(100110200095)(100000805101)(100110500095);SRVR:DM3PR11MB0921;
X-Microsoft-Exchange-Diagnostics: 1;DM3PR11MB0921;4:zexOVwT/2zCSD0Fjnad6FabKVLSCGybiF4snRBb15XbZe0BX4V0d4ty0sHerd1n4yvuPVm2qdgkq1qmH0zze1VMnP0DG3UxvcVOvvCyY+hwlt5RozNvH0VX9vmMzhpONOFFghH+fcQPhlNKhSHRDoClLoxKr/4l+s2WTxPmKAbmvbnlf3L6qwxmfqchlI+n1UY5pcEvo4IbHiqmu2BEDOA9YWJPTDtrZBSwxSY4DPB0LwzQdYgPV/0jFMpg7EaLHlaqVdd3Zc+K/dp72aLyadD250uh7GcG/curQejw/m/zVAsrXt0mYPxTy3ReF9zIp4vQGFc+yHhqyRJvs6GTm7FL3vNlO10ufe6osX0wFJ/w=
X-Forefront-PRVS: 049897979A
X-Forefront-Antispam-Report: SFV:NSPM;SFS:(10019020)(979002)(6049001)(6009001)(346002)(376002)(377424004)(24454002)(189002)(15404003)(199003)(3846002)(53546010)(16576012)(58126008)(93886005)(229853002)(5660300001)(230700001)(76176999)(106356001)(105586002)(54356999)(316002)(50986999)(6666003)(23676004)(83506002)(52146003)(2950100002)(33646002)(189998001)(65826007)(31686004)(6116002)(25786009)(36756003)(4326008)(478600001)(2906002)(101416001)(8936002)(16526018)(53936002)(31696002)(86362001)(66066001)(4001150100001)(65806001)(65956001)(47776003)(8676002)(81156014)(81166006)(97736004)(68736007)(64126003)(67846002)(6246003)(77096006)(110136005)(7736002)(6486002)(54906003)(50466002)(305945005)(2486003)(969003)(989001)(999001)(1009001)(1019001);DIR:OUT;SFP:1102;SCL:1;SRVR:DM3PR11MB0921;H:[10.198.0.250];FPR:;SPF:None;PTR:InfoNoRecords;MX:1;A:1;LANG:en;
Received-SPF: None (protection.outlook.com: fortanix.com does not designate
 permitted sender hosts)
X-Microsoft-Exchange-Diagnostics: =?utf-8?B?MTtETTNQUjExTUIwOTIxOzIzOnBUNUZGMHEyTHAvbWtJemR2bmM4WGZSUjRi?=
 =?utf-8?B?RFpPOTZlakJmQVoydnpEa1RhbWVGbXVXZE1WN1EzTmwrMVlEclFjYldtQTQx?=
 =?utf-8?B?WWxiWFJWN252amNEblhvdS9yMVlnVTN5dUtlbnNkUW80MXQ3OE8xc2MrNkxq?=
 =?utf-8?B?UUJZZ3hqRFZ5bXhvZkZPQTNYQnNpT1h6VktlWmUxZjFVSUxGMGFKblhxczlS?=
 =?utf-8?B?NERaeXpSRVBkQ2lFaTNjT0htb3F2WnhoQW9pTEFOeVVBK2xzdTVGcHdRT2lN?=
 =?utf-8?B?Nkw1dENMYUNBRU5aV1VDaERXN0Z3SGwyUk40NzdnRkpldm1ub0Z6OUVrZWI3?=
 =?utf-8?B?MVVCdFl1YW1wbzZES1BwdXZlTkJlVGEwa1dIN2J3VVVGSHVZQVh5Mm5pMEZY?=
 =?utf-8?B?UFA3V1UrOXFCMkFoYXpDMFArQ2FjKzk2ck5XdUFueVhHMXFvRExtZEh5R3Fk?=
 =?utf-8?B?alNSSHFQSGp2S2oxVmdaZ3B2c3ZEdWkzelYxU081TEgrdXVKMlpqeU1LM0Nh?=
 =?utf-8?B?TXlzVzNFdVpNS1VYSThXQnZFMXZQUlVjZ2g0enlWcys1TUZHVytMTW9NTVBl?=
 =?utf-8?B?N1N3cFhwQ1UzYzFVQlM3REs1ak13OUozR3FZcFk5eUFSZVFNYWdXNlJJZkpU?=
 =?utf-8?B?K2N5dDdvdGcrNTA2SUVKbjFQd2htZjBkWmxSU2lXSGs0b2VIZFVVZThhSXRv?=
 =?utf-8?B?TGM2MTVtbVJlSGJqOTliMFVRTzkxQjh4SUMwQ2FNSU8yaEpkL1hLWFRSSUQ1?=
 =?utf-8?B?SUtFa1pPOGJ5UGhLS052UG42c1NnSWc2dktjOXd1WUNYaGN6d2RUQlBTWFJi?=
 =?utf-8?B?NGNUS2JucmcwRTgwelZ1MytMcVBzb2lkelBxVXpwbWREYzRMOGNUWVpmcVdp?=
 =?utf-8?B?Q3hyM3ZUOWZBVDd6dFFzQXBKVnlnd3ZGeThjM0VMOVJYQjBkTEx1TEJiWUNV?=
 =?utf-8?B?OFE2d1lRTzVkcFg2NnVpcGdQeUlaN1NlN0s2ZkRtM01lT254OUUrSEdRcVN3?=
 =?utf-8?B?dDE3T0dVNyt3QnVsdjZVTSt5ZmN1WTl4bGlyQ2ZRTlNKT3NGZE4vMXBhcDhQ?=
 =?utf-8?B?YlNmcnRMa0VXYmNMeFpoenhmRFNaWkFabW1vWGc5ZDFYZkt3V1lLa1ZwSDBo?=
 =?utf-8?B?SjFjYjV4OGhDVGdUVFZEdGM4L1JqUFhxYkIxQ1IrK3M4WDB0UlpudWxyYVA3?=
 =?utf-8?B?ZmRoSStUTjdmd3Z1d3pJU0thUG03SmxxK2NpUzBjN3UyMzlPYkw2bkR3a09B?=
 =?utf-8?B?bm9FWStBeFJlbTlCWWEwd1NLVUtlTS9xZ0lTclUvZG1FWDJLSEtRbkVRR011?=
 =?utf-8?B?SHdqeEk0VWF0bFdpTGJkTmdEVHhJQ0JWMVdKUHE2Z3Nvd25ZRHFod3VDOFJ0?=
 =?utf-8?B?d2RXMmhxTXRQTDROOVpaeUNwUm5YQm91VkFHbnlrWWRobVEwTnhPbXAwKyt2?=
 =?utf-8?B?NTgvR2p5KzNDK3hSbnNrakh0bWZVLzQzcDdIMThDd0FRcUREd3JXSFNQMjR1?=
 =?utf-8?B?RDNxeFZmcVRCVFgrVHVqbkEyZm9pZDlEQmQrYW9qMjNaK3hqeWtpRWtnOUlk?=
 =?utf-8?B?UWJaWEhDbXZ6SFYrOW81bTZWN0JONjRNVk1Fb3VNS0hEdHk1Rmp5ZkZrQXQ5?=
 =?utf-8?B?c0wwL25xUkgrVHJsRHlkRk82SSs2dlNhQ2UzcVZUUDJ4SGFjaVJoM2dVa0Jl?=
 =?utf-8?B?QnlpZXo0RWNNdXpNVVBpUjcxUTh4VDAwYkxCSFkzamFpNkM4WEpCNEVIT2dI?=
 =?utf-8?B?NFpPemFIU2xFREVwV1RhRVpsa3paUWNjR1VDTk96WXlIbStlanBodnJyaldp?=
 =?utf-8?B?azNjWWs5andTT0hjQ0VUL1RXOFNnL0o5ZFNUVXZNY05JSVIxakt1SFFrZFZz?=
 =?utf-8?B?UmZJdy9Od0djRUZ0TUt1anZsOHA5SVNEVmVzaXJOK1M2WlYwWnVFOFFETzha?=
 =?utf-8?B?c1lOSStDWityNTUrNEsrYVAzbTYwU2RJYVQzUm14RU1zcndncGMwMG1CMUVo?=
 =?utf-8?B?WSt1ZEFJL3U3TXJrY0dVVDBPZkRNc1hTR3RHOUJKUjJNWFZuYXdXRGgrb1Y4?=
 =?utf-8?B?OFNNWmpwZ0h6WGFURytnRU80bndzKzBNMUlwU01sQnM5VUpFL2VsNk9KOGtG?=
 =?utf-8?Q?WH4flLraXjR6KsMWzbVBOZ0n68VmfJT3h8tAFW1IXb70?=
X-Microsoft-Exchange-Diagnostics: 1;DM3PR11MB0921;6:3ypCnTFPzAukhzYo327FSZV2E9TLWvRHY1iuesD/KykTjwUpI5yGWUBj9kNdTOYWjY3yBgMlMh1YBpe/0fv8MClUEyqMBM0/jY1MWXMrLUfTPN2f6gRNDP8D8+gn9702TOGb7Nf/JN/OSmb+NUrTkUh1SdicsCjOduaDm59k7so3n9eY+A5B7Gnfd3USGVOhIC8exl4EyrPWU7QDZ1qqbpnFYo5jaJxSjDscBLZVqxHGXFZMQd49wVGVwwx12m7rZxbtC1ky0undNhRMpiXWUuKdqfwE9/VTIgtI2Wzz+aNuIpqqUvNFfKEYE5vLe75e/2PQO+y3QaxzUuDrQD43gX5R3oc9mTVpbGykD/wizeo=;5:1wGlb/3b6sR1lOLWGmfI9/FOg5MMt35nXJrOsCIJgpGraw/uszRdlrwBYAwEPETYbqcYiGXC1dHclal1mytXTYaVigfDtc2jjML04tigJEq5vri72boHFggJInZtGxwUUJ65A5Jv5O97ZPfDIFI5o2Ik2vN39tqfQzFYjLLjz6Q=;24:3HYdM52DcN6SC5rIo+R9QR67NWD0yI3VUPMy3yVqgSsK49oBIZLj7NJil4ABITSFK6HvmAmYQ9z2W3xn5XsKoZ3+ZrnQBb/sp5b2dyGDW80=;7:MQtQQZLzAZ6yvHZjtwZ1lJnnzBFJfPwDJoR/+Fa0fkQcIAwbP7s7fucUimW7VIRzBkDFginTKNmimlCxt0kvB40MOT4VH0/b30vFrw37DkBvNIxIVRfkruQOG2rgesr4EKNkbIWcCzSHFeY5CGHHDv/0b8uH66/5k/CwwG4vZI/Em/xTeYDnKOi5RyqpxHjGB3ixHT5c0RKtFitApxN26udDGvbvl9S6hm6+h1AUVb5uwJFfbIVXRt3YFZKCJsMQ
SpamDiagnosticOutput: 1:99
SpamDiagnosticMetadata: NSPM
X-OriginatorOrg: fortanix.com
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 21 Nov 2017 23:45:35.1040 (UTC)
X-MS-Exchange-CrossTenant-Network-Message-Id: 70355a09-0909-4d69-bff4-08d53139f66b
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-CrossTenant-Id: de7becae-4883-43e8-82c7-7dbdbb988ae6
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM3PR11MB0921
Sender: linux-kernel-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

On 2017-11-21 04:47, Borislav Petkov wrote:
> On Tue, Nov 21, 2017 at 02:38:54PM +0200, Jarkko Sakkinen wrote:
>>    Try to start LE. If it doesn't start i.e. is signed with a different
>>    root key than the one inside MSRs, then fail the initialization.
> 
> But what if the one inside the MSRs is from the fw vendor and I don't
> trust it?
> 

Boris & Peter: this key has nothing to do with "trust" or "security". As 
Sean mentioned in the other thread (PATCH v5 06/11) the kernel is fully 
capable of enforcing any security policy on its own without help of an 
enclave.

 > I.e., let the owner really own the hardware she paid money for.

Yes, let's. Processors with SGX have been commercially available for 
over 2 years (and I have owned them for the same time). Why is it that I 
still can't use a mainline kernel to get access to all the cabapilities 
of my 2-year old hardware? Let's try not to put too much policy in the 
kernel and let userspace decide.

Jethro Beekman

From 1584680058736199509@xxx Tue Nov 21 12:51:11 +0000 2017
X-GM-THRID: 1583981482468800352
X-Gmail-Labels: Inbox,Category Forums,HistoricalUnread