On Fri, 2023-09-08 at 08:22 -0700, Dave Hansen wrote: > On 8/25/23 05:14, Kai Huang wrote: > > TDX memory has integrity and confidentiality protections. Violations of > > this integrity protection are supposed to only affect TDX operations and > > are never supposed to affect the host kernel itself. In other words, > > the host kernel should never, itself, see machine checks induced by the > > TDX integrity hardware. > > This is missing one thing: alluding to how this will be used. We might > do that by saying: "To prepare for _____, add ______." > > But that's a minor nit. Thanks for suggestion. I thought I somehow mentioned at last in the changelog: With this erratum, there are additional things need to be done. Similar to other CPU bugs, use a CPU bug bit to indicate this erratum ... Perhaps it's not clear. How about below? With this erratum, there are additional things need to be done around kexec() and machine check handler. To prepare for those changes, add a CPU bugbittoindicatethiserratum.Notethisbugreflectsthe hardwarethusitisdetectedregardlessofwhetherthekernelisbuilt with TDX support or not. > > ... > > Signed-off-by: Kai Huang <kai.huang@xxxxxxxxx> > > Reviewed-by: Kirill A. Shutemov <kirill.shutemov@xxxxxxxxxxxxxxx> > > Reviewed-by: David Hildenbrand <david@xxxxxxxxxx> > > Reviewed-by: Dave Hansen <dave.hansen@xxxxxxxxxxxxxxx> Thanks!