Smepmp extension chapter needs a rewrite to make it normative #1818
Comments
|
Yes, overall, the effort to merge all the specs together has been structural rather than semantic. Each spec's authors should be working with @wmat to close that gap. |
|
Given the more substantial than typical rewrite that is required, this need
should be raised to the Security HC chair (Andrew Dellow) to ensure that
someone commits to doing the work and doing it sometime soon.
Greg
…On Tue, Jan 21, 2025 at 8:58 AM Andrew Waterman ***@***.***> wrote:
Yes, overall, the effort to merge all the specs together has been
structural rather than semantic. Each spec's authors should be working with
@wmat <https://github.com/wmat> to close that gap.
—
Reply to this email directly, view it on GitHub
<#1818 (comment)>,
or unsubscribe
<https://github.com/notifications/unsubscribe-auth/ALLX6GVJFISE2LTYANIRZ5L2LZ4DLAVCNFSM6AAAAABVS2WQU2VHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDMMBVGI3TAMJZHE>
.
You are receiving this because you are subscribed to this thread.Message
ID: ***@***.***>
|
|
This comment can be applied to many sections of the manual. That said, we should also be keeping an archive of the proposals which often include rationale that helps explain design details, and which are useful for later development. But I agree this should be normally not in the reference manual, except where it helps clarify the specification itself. |
|
Rationale in the spec is welcome, as long as it is actually rationale and is clearly marked as non-normative. If you look at Rationale section, it has sentences
that only made sense while the proposal was outside the manual. Smepmp has issues in normative text as well. A lot of definitions around mseccfg are outdated, because the CSR is already defined and used outside of this extension. For example, the sentence I already quoted
is barely readable even with the usual amount of goodwill needed for the manual. (The manual should say if the value is implementation specific or reset to zero. Based on the reset section, I think it is neither.) |
|
Some other bits that need to be reworked:
(The previous two should be moved to where
(There are a few more "we introduce a field"s.)
(Not related to it being a proposal, but "Adding a rule" is an odd way to say "Configuring a PMP entry".)
(Probably should be "the firmware" or similar.)
Also
Based on the acronym I think this is supposed to be Machine-Mode Whitelist Policy? If you think the whitelist is racist then how about I actually really like the Rationale section. It would be nice if more of the spec had that. |
|
The "visual representation" (which is great btw), uses "Machine-Mode Whitelist Policy". |
|
Updated both the text and the image, let me know if that works: |
The text that made it into this repository is not a specification, but a proposal, and needs a thorough rewrite.
To list some issues:
A lot of the Smepmp chapter should be straight deleted.
The text was updated successfully, but these errors were encountered: