Re: [RFC PATCH v2 2/5] x86/sgx: Require userspace to define enclave pages'... | linux-security-module

[RFC PATCH v2 0/5] security: x86/sgx: SGX vs. LSM · Sean Christopherson <hidden> · 2019-06-06
[RFC PATCH v2 1/5] mm: Introduce vm_ops->may_mprotect() · Sean Christopherson <hidden> · 2019-06-06
Re: [RFC PATCH v2 1/5] mm: Introduce vm_ops->may_mprotect() · Jarkko Sakkinen <hidden> · 2019-06-10
Re: [RFC PATCH v2 1/5] mm: Introduce vm_ops->may_mprotect() · Sean Christopherson <hidden> · 2019-06-10
RE: [RFC PATCH v2 1/5] mm: Introduce vm_ops->may_mprotect() · Xing, Cedric <hidden> · 2019-06-10
Re: [RFC PATCH v2 1/5] mm: Introduce vm_ops->may_mprotect() · Sean Christopherson <hidden> · 2019-06-10
RE: [RFC PATCH v2 1/5] mm: Introduce vm_ops->may_mprotect() · Xing, Cedric <hidden> · 2019-06-10
[RFC PATCH v2 3/5] x86/sgx: Enforce noexec filesystem restriction for enclaves · Sean Christopherson <hidden> · 2019-06-06
Re: [RFC PATCH v2 3/5] x86/sgx: Enforce noexec filesystem restriction for enclaves · Jarkko Sakkinen <hidden> · 2019-06-10
Re: [RFC PATCH v2 3/5] x86/sgx: Enforce noexec filesystem restriction for enclaves · Andy Lutomirski <luto@kernel.org> · 2019-06-10
Re: [RFC PATCH v2 3/5] x86/sgx: Enforce noexec filesystem restriction for enclaves · Stephen Smalley <hidden> · 2019-06-11
[RFC PATCH v2 4/5] LSM: x86/sgx: Introduce ->enclave_load() hook for Intel SGX · Sean Christopherson <hidden> · 2019-06-06
Re: [RFC PATCH v2 4/5] LSM: x86/sgx: Introduce ->enclave_load() hook for Intel SGX · Stephen Smalley <hidden> · 2019-06-07
Re: [RFC PATCH v2 4/5] LSM: x86/sgx: Introduce ->enclave_load() hook for Intel SGX · Sean Christopherson <hidden> · 2019-06-10
Re: [RFC PATCH v2 4/5] LSM: x86/sgx: Introduce ->enclave_load() hook for Intel SGX · Jarkko Sakkinen <hidden> · 2019-06-10
[RFC PATCH v2 5/5] security/selinux: Add enclave_load() implementation · Sean Christopherson <hidden> · 2019-06-06
Re: [RFC PATCH v2 5/5] security/selinux: Add enclave_load() implementation · Stephen Smalley <hidden> · 2019-06-07
Re: [RFC PATCH v2 5/5] security/selinux: Add enclave_load() implementation · Sean Christopherson <hidden> · 2019-06-10
Re: [RFC PATCH v2 5/5] security/selinux: Add enclave_load() implementation · Jarkko Sakkinen <hidden> · 2019-06-17
[RFC PATCH v2 2/5] x86/sgx: Require userspace to define enclave pages' protection bits · Sean Christopherson <hidden> · 2019-06-06
Re: [RFC PATCH v2 2/5] x86/sgx: Require userspace to define enclave pages' protection bits · Jarkko Sakkinen <hidden> · 2019-06-10
Re: [RFC PATCH v2 2/5] x86/sgx: Require userspace to define enclave pages' protection bits · Sean Christopherson <hidden> · 2019-06-10
Re: [RFC PATCH v2 2/5] x86/sgx: Require userspace to define enclave pages' protection bits · Jarkko Sakkinen <hidden> · 2019-06-10
Re: [RFC PATCH v2 2/5] x86/sgx: Require userspace to define enclave pages' protection bits · Sean Christopherson <hidden> · 2019-06-10
Re: [RFC PATCH v2 2/5] x86/sgx: Require userspace to define enclave pages' protection bits · Jarkko Sakkinen <hidden> · 2019-06-12
RE: [RFC PATCH v2 2/5] x86/sgx: Require userspace to define enclave pages' protection bits · Xing, Cedric <hidden> · 2019-06-10
Re: [RFC PATCH v2 2/5] x86/sgx: Require userspace to define enclave pages' protection bits · Andy Lutomirski <luto@kernel.org> · 2019-06-10
RE: [RFC PATCH v2 2/5] x86/sgx: Require userspace to define enclave pages' protection bits · Xing, Cedric <hidden> · 2019-06-10
Re: [RFC PATCH v2 2/5] x86/sgx: Require userspace to define enclave pages' protection bits · Andy Lutomirski <luto@amacapital.net> · 2019-06-12
Re: [RFC PATCH v2 2/5] x86/sgx: Require userspace to define enclave pages' protection bits · Sean Christopherson <hidden> · 2019-06-12
RE: [RFC PATCH v2 2/5] x86/sgx: Require userspace to define enclave pages' protection bits · Xing, Cedric <hidden> · 2019-06-12
[RFC PATCH v1 0/3] security/x86/sgx: SGX specific LSM hooks · Cedric Xing <hidden> · 2019-06-10
[RFC PATCH v1 2/3] LSM/x86/sgx: Implement SGX specific hooks in SELinux · Cedric Xing <hidden> · 2019-06-10
Re: [RFC PATCH v1 2/3] LSM/x86/sgx: Implement SGX specific hooks in SELinux · Stephen Smalley <hidden> · 2019-06-11
Re: [RFC PATCH v1 2/3] LSM/x86/sgx: Implement SGX specific hooks in SELinux · Sean Christopherson <hidden> · 2019-06-11
Re: [RFC PATCH v1 2/3] LSM/x86/sgx: Implement SGX specific hooks in SELinux · Dr. Greg <hidden> · 2019-06-12
Re: [RFC PATCH v1 2/3] LSM/x86/sgx: Implement SGX specific hooks in SELinux · Sean Christopherson <hidden> · 2019-06-12
Re: [RFC PATCH v1 2/3] LSM/x86/sgx: Implement SGX specific hooks in SELinux · Dr. Greg <hidden> · 2019-06-13
Re: [RFC PATCH v1 2/3] LSM/x86/sgx: Implement SGX specific hooks in SELinux · Andy Lutomirski <luto@kernel.org> · 2019-06-12
Re: [RFC PATCH v1 2/3] LSM/x86/sgx: Implement SGX specific hooks in SELinux · Sean Christopherson <hidden> · 2019-06-13
RE: [RFC PATCH v1 2/3] LSM/x86/sgx: Implement SGX specific hooks in SELinux · Xing, Cedric <hidden> · 2019-06-13
RE: [RFC PATCH v1 2/3] LSM/x86/sgx: Implement SGX specific hooks in SELinux · Xing, Cedric <hidden> · 2019-06-13
Re: [RFC PATCH v1 2/3] LSM/x86/sgx: Implement SGX specific hooks in SELinux · Stephen Smalley <hidden> · 2019-06-13
RE: [RFC PATCH v1 2/3] LSM/x86/sgx: Implement SGX specific hooks in SELinux · Xing, Cedric <hidden> · 2019-06-13
Re: [RFC PATCH v1 2/3] LSM/x86/sgx: Implement SGX specific hooks in SELinux · Sean Christopherson <hidden> · 2019-06-13
RE: [RFC PATCH v1 2/3] LSM/x86/sgx: Implement SGX specific hooks in SELinux · Xing, Cedric <hidden> · 2019-06-14
Re: [RFC PATCH v1 2/3] LSM/x86/sgx: Implement SGX specific hooks in SELinux · Sean Christopherson <hidden> · 2019-06-14
Re: [RFC PATCH v1 2/3] LSM/x86/sgx: Implement SGX specific hooks in SELinux · Sean Christopherson <hidden> · 2019-06-14
Re: [RFC PATCH v1 2/3] LSM/x86/sgx: Implement SGX specific hooks in SELinux · Andy Lutomirski <luto@kernel.org> · 2019-06-16
Re: [RFC PATCH v1 2/3] LSM/x86/sgx: Implement SGX specific hooks in SELinux · Sean Christopherson <hidden> · 2019-06-17
Re: [RFC PATCH v1 2/3] LSM/x86/sgx: Implement SGX specific hooks in SELinux · Andy Lutomirski <luto@kernel.org> · 2019-06-17
Re: [RFC PATCH v1 2/3] LSM/x86/sgx: Implement SGX specific hooks in SELinux · Dr. Greg <hidden> · 2019-06-18
RE: [RFC PATCH v1 2/3] LSM/x86/sgx: Implement SGX specific hooks in SELinux · Xing, Cedric <hidden> · 2019-06-14
Re: [RFC PATCH v1 2/3] LSM/x86/sgx: Implement SGX specific hooks in SELinux · Sean Christopherson <hidden> · 2019-06-14
Re: [RFC PATCH v1 2/3] LSM/x86/sgx: Implement SGX specific hooks in SELinux · Sean Christopherson <hidden> · 2019-06-14
Re: [RFC PATCH v1 2/3] LSM/x86/sgx: Implement SGX specific hooks in SELinux · Sean Christopherson <hidden> · 2019-06-14
Re: [RFC PATCH v1 2/3] LSM/x86/sgx: Implement SGX specific hooks in SELinux · Andy Lutomirski <luto@kernel.org> · 2019-06-16
Re: [RFC PATCH v1 2/3] LSM/x86/sgx: Implement SGX specific hooks in SELinux · Dr. Greg <hidden> · 2019-06-14
RE: [RFC PATCH v1 2/3] LSM/x86/sgx: Implement SGX specific hooks in SELinux · Xing, Cedric <hidden> · 2019-06-11
Re: [RFC PATCH v1 2/3] LSM/x86/sgx: Implement SGX specific hooks in SELinux · Stephen Smalley <hidden> · 2019-06-13
Re: [RFC PATCH v1 2/3] LSM/x86/sgx: Implement SGX specific hooks in SELinux · Sean Christopherson <hidden> · 2019-06-13
RE: [RFC PATCH v1 2/3] LSM/x86/sgx: Implement SGX specific hooks in SELinux · Xing, Cedric <hidden> · 2019-06-13
RE: [RFC PATCH v1 2/3] LSM/x86/sgx: Implement SGX specific hooks in SELinux · Xing, Cedric <hidden> · 2019-06-13
Re: [RFC PATCH v1 2/3] LSM/x86/sgx: Implement SGX specific hooks in SELinux · Sean Christopherson <hidden> · 2019-06-14
[RFC PATCH v1 3/3] LSM/x86/sgx: Call new LSM hooks from SGX subsystem · Cedric Xing <hidden> · 2019-06-10
[RFC PATCH v1 1/3] LSM/x86/sgx: Add SGX specific LSM hooks · Cedric Xing <hidden> · 2019-06-10
Re: [RFC PATCH v1 0/3] security/x86/sgx: SGX specific LSM hooks · Jarkko Sakkinen <hidden> · 2019-06-10

Re: [RFC PATCH v2 2/5] x86/sgx: Require userspace to define enclave pages' protection bits

From: Jarkko Sakkinen <hidden>
Date: 2019-06-10 17:45:29
Also in: lkml, selinux

On Mon, Jun 10, 2019 at 09:15:33AM -0700, Sean Christopherson wrote:

quoted

'flags' should would renamed as 'secinfo_flags_mask' even if the name is
longish. It would use the same values as the SECINFO flags. The field in
struct sgx_encl_page should have the same name. That would express
exactly relation between SECINFO and the new field. I would have never
asked on last iteration why SECINFO is not enough with a better naming.

No, these flags do not impact the EPCM protections in any way.  Userspace
can extend the EPCM protections without going through the kernel.  The
protection flags for an enclave page impact VMA/PTE protection bits.

IMO, it is best to treat the EPCM as being completely separate from the
kernel's EPC management.

It is a clumsy API if permissions are not taken in the same format for
everything. There is no reason not to do it. The way mprotect() callback
just interprets the field is as VMA permissions.

It would also be more future-proof just to have a mask covering all bits
of the SECINFO flags field.

/Jarkko

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help