Re: Runtime Memory Validation in Intel-TDX and AMD-SNP

Runtime Memory Validation in Intel-TDX and AMD-SNP · Joerg Roedel <hidden> · 2021-07-19
Re: Runtime Memory Validation in Intel-TDX and AMD-SNP · Matthew Wilcox <willy@infradead.org> · 2021-07-19
Re: Runtime Memory Validation in Intel-TDX and AMD-SNP · Joerg Roedel <hidden> · 2021-07-19
Re: Runtime Memory Validation in Intel-TDX and AMD-SNP · Andi Kleen <hidden> · 2021-07-19
Re: Runtime Memory Validation in Intel-TDX and AMD-SNP · Joerg Roedel <hidden> · 2021-07-20
Re: Runtime Memory Validation in Intel-TDX and AMD-SNP · Dr. David Alan Gilbert <hidden> · 2021-07-20
Re: Runtime Memory Validation in Intel-TDX and AMD-SNP · Joerg Roedel <hidden> · 2021-07-20
Re: Runtime Memory Validation in Intel-TDX and AMD-SNP · Andy Lutomirski <luto@kernel.org> · 2021-07-20
Re: Runtime Memory Validation in Intel-TDX and AMD-SNP · Erdem Aktas <hidden> · 2021-07-20
Re: Runtime Memory Validation in Intel-TDX and AMD-SNP · Erdem Aktas <hidden> · 2021-07-20
Re: Runtime Memory Validation in Intel-TDX and AMD-SNP · "Andy Lutomirski" <luto@kernel.org> · 2021-07-20
Re: Runtime Memory Validation in Intel-TDX and AMD-SNP · Erdem Aktas <hidden> · 2021-07-20
Re: Runtime Memory Validation in Intel-TDX and AMD-SNP · Andi Kleen <hidden> · 2021-07-20
Re: Runtime Memory Validation in Intel-TDX and AMD-SNP · Erdem Aktas <hidden> · 2021-07-20
Re: Runtime Memory Validation in Intel-TDX and AMD-SNP · Andi Kleen <hidden> · 2021-07-21
Re: Runtime Memory Validation in Intel-TDX and AMD-SNP · Joerg Roedel <hidden> · 2021-07-21
Re: Runtime Memory Validation in Intel-TDX and AMD-SNP · Andi Kleen <hidden> · 2021-07-20
Re: Runtime Memory Validation in Intel-TDX and AMD-SNP · Joerg Roedel <hidden> · 2021-07-20
Re: Runtime Memory Validation in Intel-TDX and AMD-SNP · Andi Kleen <hidden> · 2021-07-20
Re: Runtime Memory Validation in Intel-TDX and AMD-SNP · Erdem Aktas <hidden> · 2021-07-20
Re: Runtime Memory Validation in Intel-TDX and AMD-SNP · Andi Kleen <hidden> · 2021-07-21
Re: Runtime Memory Validation in Intel-TDX and AMD-SNP · Marc Orr <hidden> · 2021-07-22
Re: Runtime Memory Validation in Intel-TDX and AMD-SNP · Joerg Roedel <joro@8bytes.org> · 2021-07-26
Re: Runtime Memory Validation in Intel-TDX and AMD-SNP · Joerg Roedel <hidden> · 2021-07-20
Re: Runtime Memory Validation in Intel-TDX and AMD-SNP · Dave Hansen <hidden> · 2021-07-20
Re: Runtime Memory Validation in Intel-TDX and AMD-SNP · Kirill A. Shutemov <hidden> · 2021-07-20
Re: Runtime Memory Validation in Intel-TDX and AMD-SNP · Mike Rapoport <rppt@kernel.org> · 2021-07-21
Re: Runtime Memory Validation in Intel-TDX and AMD-SNP · Kirill A. Shutemov <hidden> · 2021-07-21
Re: Runtime Memory Validation in Intel-TDX and AMD-SNP · Joerg Roedel <hidden> · 2021-07-21
Re: Runtime Memory Validation in Intel-TDX and AMD-SNP · Mike Rapoport <rppt@kernel.org> · 2021-07-21
Re: Runtime Memory Validation in Intel-TDX and AMD-SNP · Joerg Roedel <hidden> · 2021-07-21
Re: Runtime Memory Validation in Intel-TDX and AMD-SNP · Kirill A. Shutemov <hidden> · 2021-07-21
Re: Runtime Memory Validation in Intel-TDX and AMD-SNP · Joerg Roedel <hidden> · 2021-07-21
Re: Runtime Memory Validation in Intel-TDX and AMD-SNP · David Hildenbrand <hidden> · 2021-07-22
Re: Runtime Memory Validation in Intel-TDX and AMD-SNP · Joerg Roedel <joro@8bytes.org> · 2021-07-26
Re: Runtime Memory Validation in Intel-TDX and AMD-SNP · David Hildenbrand <hidden> · 2021-07-27
Re: Runtime Memory Validation in Intel-TDX and AMD-SNP · Joerg Roedel <joro@8bytes.org> · 2021-08-02
Re: Runtime Memory Validation in Intel-TDX and AMD-SNP · David Hildenbrand <hidden> · 2021-08-02
Re: Runtime Memory Validation in Intel-TDX and AMD-SNP · David Hildenbrand <hidden> · 2021-07-22
Re: Runtime Memory Validation in Intel-TDX and AMD-SNP · Kirill A. Shutemov <hidden> · 2021-07-22
Re: Runtime Memory Validation in Intel-TDX and AMD-SNP · Mike Rapoport <rppt@kernel.org> · 2021-07-23
Re: Runtime Memory Validation in Intel-TDX and AMD-SNP · Kirill A. Shutemov <hidden> · 2021-07-23
Re: Runtime Memory Validation in Intel-TDX and AMD-SNP · Mike Rapoport <rppt@kernel.org> · 2021-07-25
Re: Runtime Memory Validation in Intel-TDX and AMD-SNP · Kirill A. Shutemov <hidden> · 2021-07-25
Re: Runtime Memory Validation in Intel-TDX and AMD-SNP · Mike Rapoport <rppt@kernel.org> · 2021-07-26
Re: Runtime Memory Validation in Intel-TDX and AMD-SNP · Kirill A. Shutemov <hidden> · 2021-07-26
Re: Runtime Memory Validation in Intel-TDX and AMD-SNP · Joerg Roedel <joro@8bytes.org> · 2021-07-26
Re: Runtime Memory Validation in Intel-TDX and AMD-SNP · Erdem Aktas <hidden> · 2021-07-26
Re: Runtime Memory Validation in Intel-TDX and AMD-SNP · Kirill A. Shutemov <hidden> · 2021-07-26
Re: Runtime Memory Validation in Intel-TDX and AMD-SNP · Erdem Aktas <hidden> · 2021-07-27
Re: Runtime Memory Validation in Intel-TDX and AMD-SNP · Varad Gautam <hidden> · 2021-07-23
RE: Runtime Memory Validation in Intel-TDX and AMD-SNP · Kaplan, David <hidden> · 2021-07-23

From: Joerg Roedel <joro@8bytes.org>
Date: 2021-07-26 18:55:30
Also in: linux-coco

On Thu, Jul 22, 2021 at 10:31:27AM -0700, Marc Orr wrote:

IMHO, we need to be completely certain that guest data cannot be
compromised if we're going to remove the requirement that guest memory
only be validated once in a certain state (e.g., from within a crash
kernel). Perhaps it is the case that we're certain that guest data
cannot be compromised from within a crash kernel -- but it's not what
I read in the email exchange.

Right, at least SNP has a strict requirement that no memory could be
validated or invalidated twice without giving up security guarantees for
that memory.

Regards,

	Jörg

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help