Re: [PATCHv5 0/4] x86/tdx: Adjust TD settings on boot

From: Nikolay Borisov
Date: Thu Jul 04 2024 - 06:17:28 EST

Next message: Przemek Kitszel: "Re: [PATCH net-next] ntp: fix size argument for kcalloc"
Previous message: Dmitry Baryshkov: "Re: [PATCH v1] drm/ci: uprev IGT"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 24.06.24 г. 14:41 ч., Kirill A. Shutemov wrote:

The patchset adjusts a few TD settings on boot for the optimal functioning
of the system:

- Disable EPT violation #VE on private memory if TD can control it

The newer TDX module allows the guest to control whether it wants to
see #VE on EPT violation on private memory. The Linux kernel does not
want such #VEs and needs to disable them.

- Enable virtualization of topology-related CPUID leafs X2APIC_APICID MSR;

The ENUM_TOPOLOGY feature allows the VMM to provide topology
information to the guest. Enabling the feature eliminates
topology-related #VEs: the TDX module virtualizes accesses to the
CPUID leafs and the MSR.

It allows TDX guest to run with non-trivial topology configuration.

Reviewed-by: Nikolay Borisov <nik.borisov@xxxxxxxx>

Next message: Przemek Kitszel: "Re: [PATCH net-next] ntp: fix size argument for kcalloc"
Previous message: Dmitry Baryshkov: "Re: [PATCH v1] drm/ci: uprev IGT"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]