On Thu, Feb 01, 2024 at 09:57:29AM +0800, Yuan Yao <yuan.yao@xxxxxxxxxxxxxxx> wrote: > On Mon, Jan 22, 2024 at 03:52:37PM -0800, isaku.yamahata@xxxxxxxxx wrote: > > From: Kai Huang <kai.huang@xxxxxxxxx> > > > > Each TDX guest must be protected by its own unique TDX KeyID. KVM will > > need to tell the TDX module the unique KeyID for a TDX guest when KVM > > creates it. > > > > Export the TDX KeyID range that can be used by TDX guests for KVM to > > use. KVM can then manage these KeyIDs and assign one for each TDX guest > > when it is created. > > > > Each TDX guest has a root control structure called "Trust Domain Root" > > (TDR). Unlike the rest of the TDX guest, the TDR is protected by the > > TDX global KeyID. When tearing down the TDR, KVM will need to pass the > > TDX global KeyID explicitly to the TDX module to flush cache associated > > to the TDR. > > > > Also export the TDX global KeyID for KVM to tear down the TDR. > > > > Signed-off-by: Kai Huang <kai.huang@xxxxxxxxx> > > The variables exported by this patch are used first time in patch 18 IIUC... > So how about move this one just before the patch 18 ? With v19, I put those tdx host patches in the first part. -- Isaku Yamahata <isaku.yamahata@xxxxxxxxxxxxxxx>