On Tue, Feb 14, 2023 at 12:59:11AM +1300, Kai Huang wrote: > Use a state machine protected by mutex to make sure the initialization > will only be done once, as tdx_enable() can be called multiple times > (i.e. KVM module can be reloaded) and be called concurrently by other > kernel components in the future. I still object to doing tdx_enable() at kvm module load. kvm.ko gets loaded unconditionally on boot, even if I then never use kvm. This stuff needs to be done when an actual VM is created, not before.
