Coursera Flash Sale
40% Off Coursera Plus for 3 Months!
Grab it
Explore the challenges and solutions surrounding protected DMAbufs and dynamic memory assignment in this 20-minute conference talk from the Linux Plumbers Conference. Delve into protected memory concepts, which involve memory buffers secured behind hardware-enforced firewalls that remain inaccessible to the kernel under normal circumstances, accessible only to specific hardware IPs or CPUs operating in higher or differently privileged modes. Examine key use cases driving this feature in the TEE subsystem, including secure video playback, trusted UI, secure video recording, and secure key/crypto operations. Learn about the distinction between static memory firewall enforcement during boot, where memory regions are treated as reserved, and the more complex dynamic enforcement scenarios that enable efficient memory reuse for buffer allocations reaching hundreds of megabytes. Discover potential solutions to common problems requiring collaboration between different kernel subsystems, particularly the memory management (MM) subsystem, as presented by Sumit Garg.
