Thread (11 messages) 11 messages, 2 authors, 2021-10-15

Re: [PATCH v5 16/16] x86/tdx: Add cmdline option to force use of ioremap_host_shared

From: "Michael S. Tsirkin" <mst@redhat.com>
Date: 2021-10-12 21:00:09
Also in: linux-alpha, linux-arch, linux-doc, linux-mips, linux-pci, lkml, sparclinux

On Tue, Oct 12, 2021 at 10:55:20AM -0700, Andi Kleen wrote:
quoted
I mean ... it's already wide spread.

I meant wide spread usage with confidential guests.
quoted
If we support it with TDX
it will be used with TDX.
It has some security trade offs. The main reason to use TDX is security.
Also when people take the VT-d tradeoffs they might be ok with the BIOS
trade offs too.

-Andi
Interesting. VT-d tradeoffs ... what are they?
Allowing hypervisor to write into BIOS looks like it will
trivially lead to code execution, won't it?

-- 
MST

_______________________________________________
Virtualization mailing list
Virtualization@lists.linux-foundation.org
https://lists.linuxfoundation.org/mailman/listinfo/virtualization
Keyboard shortcuts
hback out one level
jnext message in thread
kprevious message in thread
ldrill in
Escclose help / fold thread tree
?toggle this help