lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <499db0a3-186c-4998-a1c6-ce774a2d6c25@suse.com>
Date: Thu, 4 Jul 2024 13:17:12 +0300
From: Nikolay Borisov <nik.borisov@...e.com>
To: "Kirill A. Shutemov" <kirill.shutemov@...ux.intel.com>,
 Dave Hansen <dave.hansen@...ux.intel.com>,
 Thomas Gleixner <tglx@...utronix.de>, Ingo Molnar <mingo@...hat.com>,
 Borislav Petkov <bp@...en8.de>, x86@...nel.org,
 "H. Peter Anvin" <hpa@...or.com>
Cc: linux-coco@...ts.linux.dev, linux-kernel@...r.kernel.org
Subject: Re: [PATCHv5 0/4] x86/tdx: Adjust TD settings on boot



On 24.06.24 г. 14:41 ч., Kirill A. Shutemov wrote:
> The patchset adjusts a few TD settings on boot for the optimal functioning
> of the system:
> 
>    - Disable EPT violation #VE on private memory if TD can control it
> 
>      The newer TDX module allows the guest to control whether it wants to
>      see #VE on EPT violation on private memory. The Linux kernel does not
>      want such #VEs and needs to disable them.
> 
>    - Enable virtualization of topology-related CPUID leafs X2APIC_APICID MSR;
> 
>      The ENUM_TOPOLOGY feature allows the VMM to provide topology
>      information to the guest. Enabling the feature eliminates
>      topology-related #VEs: the TDX module virtualizes accesses to the
>      CPUID leafs and the MSR.
> 
>      It allows TDX guest to run with non-trivial topology configuration.


Reviewed-by: Nikolay Borisov <nik.borisov@...e.com>

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ