Re: [RFC] KVM: mm: fd-based approach for supporting KVM guest private memory

From: Andi Kleen
Date: Tue Aug 31 2021 - 16:39:50 EST

Next message: David Christensen: "Re: [PATCH v6 00/11] DDW + Indirect Mapping"
Previous message: pr-tracker-bot: "Re: [GIT PULL] Device properties framework updates for v5.15-rc1"
In reply to: David Hildenbrand: "Re: [RFC] KVM: mm: fd-based approach for supporting KVM guest private memory"
Next in thread: Yu Zhang: "Re: [RFC] KVM: mm: fd-based approach for supporting KVM guest private memory"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 8/31/2021 1:15 PM, David Hildenbrand wrote:

On 31.08.21 22:01, Andi Kleen wrote:

Thanks a lot for this summary. A question about the requirement: do
we or
do we not have plan to support assigned device to the protected VM?

Good question, I assume that is stuff for the far far future.

It is in principle possible with the current TDX, but not secure. But
someone might decide to do it. So it would be good to have basic support
at least.

Can you elaborate the "not secure" part? Do you mean, making the device only access "shared" memory, not secure/encrypted/whatsoever?

Yes that's right. It can only access shared areas.

-Andi

Next message: David Christensen: "Re: [PATCH v6 00/11] DDW + Indirect Mapping"
Previous message: pr-tracker-bot: "Re: [GIT PULL] Device properties framework updates for v5.15-rc1"
In reply to: David Hildenbrand: "Re: [RFC] KVM: mm: fd-based approach for supporting KVM guest private memory"
Next in thread: Yu Zhang: "Re: [RFC] KVM: mm: fd-based approach for supporting KVM guest private memory"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]