On 10/30/24 12:00, Rick Edgecombe wrote: > From: Isaku Yamahata <isaku.yamahata@xxxxxxxxx> > > Intel TDX protects guest VMs from malicious host and certain physical > attacks. Pre-TDX Intel hardware has support for a memory encryption > architecture called MK-TME, which repurposes several high bits of > physical address as "KeyID". TDX ends up with reserving a sub-range of > MK-TME KeyIDs as "TDX private KeyIDs". The changelog there was great. It read my mind because I was wondering why some of the operations didn't get combined in helper functions which could be exported. Acked-by: Dave Hansen <dave.hansen@xxxxxxxxxxxxxxx>
