Re: [PATCH v14 2/7] mm: add VM_DROPPABLE for designating always lazily freeable mappings

From: Linus Torvalds
Date: Fri Jan 06 2023 - 16:11:14 EST

Next message: Namhyung Kim: "Re: [PATCH v2] perf record: Fix coredump with --overwrite and --max-size"
Previous message: Randy Dunlap: "Re: [PATCH] include/linux/mm: fix release_pages_arg kernel doc comment"
In reply to: Andy Lutomirski: "Re: [PATCH v14 2/7] mm: add VM_DROPPABLE for designating always lazily freeable mappings"
Next in thread: Jason A. Donenfeld: "Re: [PATCH v14 2/7] mm: add VM_DROPPABLE for designating always lazily freeable mappings"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Fri, Jan 6, 2023 at 12:54 PM Andy Lutomirski <luto@xxxxxxxxxx> wrote:
>
> I'm going to suggest a very very different approach: fix secret
> storage in memory for real. That is, don't lock "super secret
> sensitive stuff" into memory, and don't wipe it either. *Encrypt* it.

I don't think you're wrong, but people will complain about key
management, and worry about that part instead.

Honestly, this is what SGX and CPU enclaves is _supposed_ to all do
for you, but then nobody uses it for various reasons.

Linus

Next message: Namhyung Kim: "Re: [PATCH v2] perf record: Fix coredump with --overwrite and --max-size"
Previous message: Randy Dunlap: "Re: [PATCH] include/linux/mm: fix release_pages_arg kernel doc comment"
In reply to: Andy Lutomirski: "Re: [PATCH v14 2/7] mm: add VM_DROPPABLE for designating always lazily freeable mappings"
Next in thread: Jason A. Donenfeld: "Re: [PATCH v14 2/7] mm: add VM_DROPPABLE for designating always lazily freeable mappings"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]