Re: SGX vs LSM (Re: [PATCH v20 00/28] Intel SGX1 support)

From: Sean Christopherson
Date: Fri May 17 2019 - 13:52:47 EST

Next message: Liming Sun: "RE: [PATCH v4] platform/mellanox: Add bootctl driver for Mellanox BlueField Soc"
Previous message: Marcelo Tosatti: "Re: [PATCH] sched: introduce configurable delay before entering idle"
In reply to: Stephen Smalley: "Re: SGX vs LSM (Re: [PATCH v20 00/28] Intel SGX1 support)"
Next in thread: Stephen Smalley: "Re: SGX vs LSM (Re: [PATCH v20 00/28] Intel SGX1 support)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Fri, May 17, 2019 at 01:42:50PM -0400, Stephen Smalley wrote:
> On 5/17/19 1:29 PM, Sean Christopherson wrote:
> >AIUI, having FILE__WRITE and FILE__EXECUTE on /dev/sgx/enclave would allow
> >*any* enclave/process to map EPC as RWX. Moving to anon inodes and thus
> >PROCESS__EXECMEM achieves per-process granularity.
> >
>
> No, FILE__WRITE and FILE__EXECUTE are a check between a process and a file,
> so you can ensure that only whitelisted processes are allowed both to
> /dev/sgx/enclave.

Ah, so each process has its own FILE__* permissions for a specific set of
files?

Does that allow differentiating between a process making an EPC page RWX
and a process making two separate EPC pages RW and RX?

Next message: Liming Sun: "RE: [PATCH v4] platform/mellanox: Add bootctl driver for Mellanox BlueField Soc"
Previous message: Marcelo Tosatti: "Re: [PATCH] sched: introduce configurable delay before entering idle"
In reply to: Stephen Smalley: "Re: SGX vs LSM (Re: [PATCH v20 00/28] Intel SGX1 support)"
Next in thread: Stephen Smalley: "Re: SGX vs LSM (Re: [PATCH v20 00/28] Intel SGX1 support)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]