[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [RFC PATCH v3 12/36] i386/tdx: Add property sept-ve-disable for tdx-
From: |
Gerd Hoffmann |
Subject: |
Re: [RFC PATCH v3 12/36] i386/tdx: Add property sept-ve-disable for tdx-guest object |
Date: |
Thu, 24 Mar 2022 08:57:03 +0100 |
On Thu, Mar 24, 2022 at 02:52:10PM +0800, Xiaoyao Li wrote:
> On 3/22/2022 5:02 PM, Gerd Hoffmann wrote:
> > On Thu, Mar 17, 2022 at 09:58:49PM +0800, Xiaoyao Li wrote:
> > > Add sept-ve-disable property for tdx-guest object. It's used to
> > > configure bit 28 of TD attributes.
> >
> > What is this?
>
> It seems this bit doesn't show up in the public spec yet.
>
> Bit 28 (SEPT_VE_DISABLE): Disable EPT violation conversion to #VE ON guest
> TD ACCESS of PENDING pages.
>
> The TDX architecture requires a private page to be accepted before using. If
> guest accesses a not-accepted (pending) page it will get #VE.
>
> For some OS, e.g., Linux TD guest, it doesn't want the #VE on pending page
> so it will set this bit.
Hmm. That looks rather pointless to me. The TDX patches for OVMF add a
#VE handler, so I suspect every guest wants #VE exceptions if even the
firmware cares to install a handler ...
Also: What will happen instead? EPT fault delivered to the host?
take care,
Gerd
- Re: [RFC PATCH v3 08/36] i386/tdx: Adjust get_supported_cpuid() for TDX VM, (continued)
- [RFC PATCH v3 09/36] KVM: Introduce kvm_arch_pre_create_vcpu(), Xiaoyao Li, 2022/03/17
- [RFC PATCH v3 10/36] i386/kvm: Move architectural CPUID leaf generation to separate helper, Xiaoyao Li, 2022/03/17
- [RFC PATCH v3 11/36] i386/tdx: Initialize TDX before creating TD vcpus, Xiaoyao Li, 2022/03/17
- [RFC PATCH v3 12/36] i386/tdx: Add property sept-ve-disable for tdx-guest object, Xiaoyao Li, 2022/03/17
- Re: [RFC PATCH v3 12/36] i386/tdx: Add property sept-ve-disable for tdx-guest object, Gerd Hoffmann, 2022/03/22
- Re: [RFC PATCH v3 12/36] i386/tdx: Add property sept-ve-disable for tdx-guest object, Xiaoyao Li, 2022/03/24
- Re: [RFC PATCH v3 12/36] i386/tdx: Add property sept-ve-disable for tdx-guest object,
Gerd Hoffmann <=
- Re: [RFC PATCH v3 12/36] i386/tdx: Add property sept-ve-disable for tdx-guest object, Xiaoyao Li, 2022/03/24
- Re: [RFC PATCH v3 12/36] i386/tdx: Add property sept-ve-disable for tdx-guest object, Gerd Hoffmann, 2022/03/24
- Re: [RFC PATCH v3 12/36] i386/tdx: Add property sept-ve-disable for tdx-guest object, Xiaoyao Li, 2022/03/24
- Re: [RFC PATCH v3 12/36] i386/tdx: Add property sept-ve-disable for tdx-guest object, Isaku Yamahata, 2022/03/24
[RFC PATCH v3 13/36] i386/tdx: Wire CPU features up with attributes of TD guest, Xiaoyao Li, 2022/03/17
[RFC PATCH v3 14/36] i386/tdx: Validate TD attributes, Xiaoyao Li, 2022/03/17
[RFC PATCH v3 16/36] i386/tdx: Set kvm_readonly_mem_enabled to false for TDX VM, Xiaoyao Li, 2022/03/17
[RFC PATCH v3 15/36] i386/tdx: Implement user specified tsc frequency, Xiaoyao Li, 2022/03/17