@conor it is highly CPU architecture dependent feature and any TEE must be part of the boot flow so I don't think it should linkable as module at all. As part of the boot flow any possible in-kernel use cases are enabled, i.e. other subsystems could have Keystone backend. Thus, I think it is best pick for now.

I can request riscv-keystone@vger.kernel.org if there is broader interest on this work.

@monsieuricon

I’ve opened up #development #git tree for in-kernel #Keystone #enclave #driver:

https://git.kernel.org/pub/scm/linux/kernel/git/jarkko/linux-riscv-keystone.git/

Existing branches:

• keystone: follows Linus’ tree.
• keystone-5.19.y: I’m actively trying to get Genesys2 FPGA hosting CVA6 working with this kernel version. Buddy allocator works but the use of dma_alloc_coherent() to allocate contiguous physical memory for enclaves freezes the system when it is being used (not in the call itself).

Keystone enclaves are applications hosted by Keystone security monitor running inside #OpenSBI, and partitioned and protected by physical memory protection (usually shortened as PMP) machine registers.

PMP is part of standard RISC-V ISA, which means that Keystone enclaves are usable with any RISC-V CPU with MMU. There is nothing that would prevent this coming eventually a mainline feature because it works for without non-standard or proprietary components involved.

Another favorable element of having Keystone enclaves as kernel feature is that Keystones enclave can run both in U-mode and S-mode meaning that kernel subsystems could use the feature too (if wanted). For instance, #Intel #SGX can host only ring-3 enclaves, which limits its scope.

#linux #kernel #riscv #cva6

@rjzak have impossible week with work but i'll check as soon as i have time, lot's unexpected stuff apologies

The only #diagram tool that I've ever liked was #xfig and I would still use over anything else available if it was brought to modern day.

#sublime #merge, software that I'm happy that I've paid for. There's some pretty decent fee options such as #Gitg from #Gnome but this has just tiny bit of extra comfort and performance (UI has very low-
latency).

Wrote myself a cheat sheet on how to get #unprivileged #Nix up and running because had forgotten how to do it. I like my Nix this way, i.e. a #container tool for me that actually makes sense to me I guess, and fits for my needs.

https://publish.obsidian.md/jarkko/Nix+Home+Manager

@rjzak busy day today but i'll look up tomorrow at some point

@rjzak I was pointing out the channel so that I can help over there. Just was saying what for the channel was originally created.

#Bitwig hack: you can get audio feedback path inside grid with "Long Delay" and "Mixer" devices.. Apparently Long Delay device can be routed back to an input of a Mixer device. Without it or with any other device this seems to not be possible.

@rjzak oh ok. I have IRC channel with David Howells called #linux-security at OFTC. We have mainly to sync with the Linux keyring but it is a public channel. Probably would be just easier to dig through this because it is not exactly a "yes/no" question, right?

going to sample it and put over this :-)

https://sonicware.jp/products/liven-8bit-warps

testing #sonicware #8bitwarps sequencer and looper, recorded directly and no post-processing #musicproduction

Download manuals:

wget -q --show-progress -r -np -nd -l2 -A pdf https://u-he.com/downloads/manuals/plugins/ -P "U-he Manuals"

@uheplugins

PS. #renoise should really get #pipewire support. I use mostly #bitwig but as a sort of idle activity trackers are so much better.

@guenther I love Rust but taking the mindset that Rust is memory safe more than in marketing material is not a great idea. If the marketing material was honest it would say something like "Rust provides improved memory safety". I doubt that there ever can be literally memory safe programming language :-)

PS. RME BabyFace Pro FS is not a bad sound card for Linux. It has two modes: super proprietary with FPGA based mixing desk and class compliant mode. To switch between the modes you hold "select" and "dim" buttons when connecting the sound card.

Display's USB has hub one single killer application that I just found: removing electric magnetic interference when connecting sound card (in my case RME BabyFace Pro FS). I.e. instead of connecting sound card to the PC, I connect it to my display. Took way too many years to realize this! I have dedicated Mac Mini for making music but it is also nice to have sound when I'm at my workplace, i.e. my desktop PC :-) Life just upgraded!

… and install to ~/.vst and ~/.vst3