| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <499db0a3-186c-4998-a1c6-ce774a2d6c25@suse.com> Date: Thu, 4 Jul 2024 13:17:12 +0300 From: Nikolay Borisov <nik.borisov@...e.com> To: "Kirill A. Shutemov" <kirill.shutemov@...ux.intel.com>, Dave Hansen <dave.hansen@...ux.intel.com>, Thomas Gleixner <tglx@...utronix.de>, Ingo Molnar <mingo@...hat.com>, Borislav Petkov <bp@...en8.de>, x86@...nel.org, "H. Peter Anvin" <hpa@...or.com> Cc: linux-coco@...ts.linux.dev, linux-kernel@...r.kernel.org Subject: Re: [PATCHv5 0/4] x86/tdx: Adjust TD settings on boot On 24.06.24 г. 14:41 ч., Kirill A. Shutemov wrote: > The patchset adjusts a few TD settings on boot for the optimal functioning > of the system: > > - Disable EPT violation #VE on private memory if TD can control it > > The newer TDX module allows the guest to control whether it wants to > see #VE on EPT violation on private memory. The Linux kernel does not > want such #VEs and needs to disable them. > > - Enable virtualization of topology-related CPUID leafs X2APIC_APICID MSR; > > The ENUM_TOPOLOGY feature allows the VMM to provide topology > information to the guest. Enabling the feature eliminates > topology-related #VEs: the TDX module virtualizes accesses to the > CPUID leafs and the MSR. > > It allows TDX guest to run with non-trivial topology configuration. Reviewed-by: Nikolay Borisov <nik.borisov@...e.com>
Powered by blists - more mailing lists