Re: [RFC] Randomness on confidential computing platforms

From: Dave Hansen
Date: Mon Jan 29 2024 - 11:33:55 EST

Next message: Mike Snitzer: "Re: [PATCH v8 0/5] Fix I/O priority lost in device-mapper"
Previous message: Kousik Sanagavarapu: "[PATCH] selftest/ftrace: fix typo in ftracetest script"
In reply to: Kirill A. Shutemov: "Re: [RFC] Randomness on confidential computing platforms"
Next in thread: H. Peter Anvin: "Re: [RFC] Randomness on confidential computing platforms"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 1/26/24 05:42, Kirill A. Shutemov wrote:
> 3. Panic after enough re-tries of RDRAND/RDSEED instructions fail.
> Another DoS variant against the Guest.

I think Sean was going down the same path, but I really dislike the idea
of having TDX-specific (or CoCo-specific) policy here.

How about we WARN_ON() RDRAND/RDSEED going bonkers? The paranoid folks
can turn on panic_on_warn, if they haven't already.

Next message: Mike Snitzer: "Re: [PATCH v8 0/5] Fix I/O priority lost in device-mapper"
Previous message: Kousik Sanagavarapu: "[PATCH] selftest/ftrace: fix typo in ftracetest script"
In reply to: Kirill A. Shutemov: "Re: [RFC] Randomness on confidential computing platforms"
Next in thread: H. Peter Anvin: "Re: [RFC] Randomness on confidential computing platforms"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]