[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Message-ID: <20240512122154.2655269-1-kirill.shutemov@linux.intel.com>
Date: Sun, 12 May 2024 15:21:50 +0300
From: "Kirill A. Shutemov" <kirill.shutemov@...ux.intel.com>
To: "Kirill A. Shutemov" <kirill.shutemov@...ux.intel.com>,
Dave Hansen <dave.hansen@...ux.intel.com>,
Thomas Gleixner <tglx@...utronix.de>,
Ingo Molnar <mingo@...hat.com>,
Borislav Petkov <bp@...en8.de>,
x86@...nel.org,
"H. Peter Anvin" <hpa@...or.com>
Cc: linux-coco@...ts.linux.dev,
linux-kernel@...r.kernel.org
Subject: [PATCHv4 0/4] x86/tdx: Adjust TD settings on boot
The patchset adjusts a few TD settings on boot for the optimal functioning
of the system:
- Disable EPT violation #VE on private memory if TD can control it
The newer TDX module allows the guest to control whether it wants to
see #VE on EPT violation on private memory. The Linux kernel does not
want such #VEs and needs to disable them.
- Enable virtualization of topology-related CPUID leafs X2APIC_APICID MSR;
The ENUM_TOPOLOGY feature allows the VMM to provide topology
information to the guest. Enabling the feature eliminates
topology-related #VEs: the TDX module virtualizes accesses to the
CPUID leafs and the MSR.
It allows TDX guest to run with non-trivial topology configuration.
v4:
- Drop unnecessary enumeration;
- Drop TDG.SYS.RD wrapper;
- CC stable@ for SEPT disable patch;
- Update commit messages;
v3:
- Update commit messages;
- Rework patches 3/4 and 4/4;
v2:
- Rebased;
- Allow write to TDCS_TD_CTLS to fail;
- Adjust commit messages;
Kirill A. Shutemov (4):
x86/tdx: Factor out TD metadata write TDCALL
x86/tdx: Rename tdx_parse_tdinfo() to tdx_setup()
x86/tdx: Dynamically disable SEPT violations from causing #VEs
x86/tdx: Enable CPU topology enumeration
arch/x86/coco/tdx/tdx.c | 140 +++++++++++++++++++++++++-----
arch/x86/include/asm/shared/tdx.h | 13 ++-
2 files changed, 130 insertions(+), 23 deletions(-)
--
2.43.0
Powered by blists - more mailing lists