Re: [PATCHv5 03/19] mm/ksm: Do not merge pages with different KeyIDs

From: Dave Hansen
Date: Wed Jul 18 2018 - 13:38:32 EST

Next message: Giulio Benetti: "Re: [PATCH v10 4/4] rtc: ds1307: add frequency_test_enable sysfs attribute to check tick on m41txx"
Previous message: Dave Hansen: "Re: [PATCHv5 02/19] mm: Do not use zero page in encrypted pages"
In reply to: Kirill A. Shutemov: "[PATCHv5 03/19] mm/ksm: Do not merge pages with different KeyIDs"
Next in thread: Kirill A. Shutemov: "Re: [PATCHv5 03/19] mm/ksm: Do not merge pages with different KeyIDs"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 07/17/2018 04:20 AM, Kirill A. Shutemov wrote:
> Pages encrypted with different encryption keys are not allowed to be
> merged by KSM. Otherwise it would cross security boundary.

Let's say I'm using plain AES (not AES-XTS). I use the same key in two
keyid slots. I map a page with the first keyid and another with the
other keyid.

Won't they have the same cipertext? Why shouldn't we KSM them?

Next message: Giulio Benetti: "Re: [PATCH v10 4/4] rtc: ds1307: add frequency_test_enable sysfs attribute to check tick on m41txx"
Previous message: Dave Hansen: "Re: [PATCHv5 02/19] mm: Do not use zero page in encrypted pages"
In reply to: Kirill A. Shutemov: "[PATCHv5 03/19] mm/ksm: Do not merge pages with different KeyIDs"
Next in thread: Kirill A. Shutemov: "Re: [PATCHv5 03/19] mm/ksm: Do not merge pages with different KeyIDs"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]