[RFC v2 00/13] Multi-Key Total Memory Encryption API (MKTME)
Kirill A. Shutemov
kirill at shutemov.name
Fri Dec 7 11:54:30 UTC 2018
On Thu, Dec 06, 2018 at 09:23:20PM +0000, Sakkinen, Jarkko wrote:
> On Thu, 2018-12-06 at 14:22 +0300, Kirill A. Shutemov wrote:
> > When you say "disable encryption to a page" does the encryption get
> > > actually disabled or does the CPU just decrypt it transparently i.e.
> > > what happens physically?
> >
> > Yes, it gets disabled. Physically. It overrides TME encryption.
>
> OK, thanks for confirmation. BTW, how much is the penalty to keep it
> always enabled? Is it something that would not make sense for some
> other reasons?
We don't have any numbers to share at this point.
--
Kirill A. Shutemov
More information about the Linux-security-module-archive
mailing list