Re: [RFC PATCH 64/67] KVM: TDX: Add "basic" support for building and running Trust Domains

From: Isaku Yamahata
Date: Mon Jun 14 2021 - 23:01:50 EST

Next message: Alistair Popple: "Re: [PATCH v10 07/10] mm: Device exclusive memory access"
Previous message: Philip Li: "Re: [tip:tip] BUILD SUCCESS 3a1176a9af5a1b7d7a0a40b0975412008eb221c3"
In reply to: Erdem Aktas: "Re: [RFC PATCH 64/67] KVM: TDX: Add "basic" support for building and running Trust Domains"
Next in thread: Sean Christopherson: "Re: [RFC PATCH 64/67] KVM: TDX: Add "basic" support for building and running Trust Domains"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Thu, Jun 10, 2021 at 07:33:29PM -0700,
Erdem Aktas <erdemaktas@xxxxxxxxxx> wrote:

> some more feedback on KVM_TDX_INIT_MEM_REGION:
>
> KVM_TDX_INIT_MEM_REGION requires a source and destination address
> which is a little counterintuitive (debatable). I think this requires
> better documentation to explain the usage better. I was wrongly
> expecting to provide the guest memory which has the code as a pointer
> and expecting it to be in-place measured and encrypted.
>
> KVM_TDX_INIT_MEM_REGION crashes the host when:
> * Target gpa is not valid or not backed by a page
> * When source and destination overlap

Thanks for feedback.
On next respin, I'm going to document new API more.

--
Isaku Yamahata <isaku.yamahata@xxxxxxxxx>

Next message: Alistair Popple: "Re: [PATCH v10 07/10] mm: Device exclusive memory access"
Previous message: Philip Li: "Re: [tip:tip] BUILD SUCCESS 3a1176a9af5a1b7d7a0a40b0975412008eb221c3"
In reply to: Erdem Aktas: "Re: [RFC PATCH 64/67] KVM: TDX: Add "basic" support for building and running Trust Domains"
Next in thread: Sean Christopherson: "Re: [RFC PATCH 64/67] KVM: TDX: Add "basic" support for building and running Trust Domains"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]