On 12/7/21 11:45 AM, Martin Fernandez wrote: >> I wonder, for example, why did you choose per-node reporting rather than >> per-region as described in UEFI spec. > Some time ago we discussed about this and concluded with Dave Hansen > that it was better to do it in this per-node way. Physical memory regions aren't exposed to userspace in any meaningful way. An ABI that says "everything is encrypted" is pretty meaningless and only useful for this one, special case. A per-node ABI is useful for this case and is also useful going forward if folks want to target allocations from applications to NUMA nodes which have encryption capabilities. The ABI in this set is useful for the immediate case and is useful to other folks.