On 9/29/23 13:19, Michael Kelley wrote:
In a CoCo VM when a page transitions from encrypted to decrypted, or vice
versa, attributes in the PTE must be updated *and* the hypervisor must
be notified of the change. Because there are two separate steps, there's
a window where the settings are inconsi
On 9/29/23 13:19, Michael Kelley wrote:
In preparation for temporarily marking pages not present during a
transition between encrypted and decrypted, use slow_virt_to_phys()
in the hypervisor callbacks. As long as the PFN is correct,
slow_virt_to_phys() works even if the leaf PTE is not present.
On 9/29/23 13:19, Michael Kelley wrote:
In a CoCo VM when a page transitions from encrypted to decrypted, or vice
versa, attributes in the PTE must be updated *and* the hypervisor must
be notified of the change. Because there are two separate steps, there's
a window where the settings are inconsi
On 10/2/23 11:35, Tom Lendacky wrote:
On 9/29/23 13:19, Michael Kelley wrote:
In a CoCo VM when a page transitions from encrypted to decrypted, or vice
versa, attributes in the PTE must be updated *and* the hypervisor must
be notified of the change. Because there are two separate steps, there&#
On 5/24/24 17:44, Michael Kelley wrote:
From: Dexuan Cui Sent: Friday, May 24, 2024 1:46 AM
From: Dave Hansen
Sent: Thursday, May 23, 2024 7:26 AM
[...]
On 5/22/24 19:24, Dexuan Cui wrote:
...
My thoughts:
__bss_decrypted is named as if it applies to any CoCo VM, but really
it is specific
On 2/11/25 14:32, Borislav Petkov wrote:
> On Tue, Feb 11, 2025 at 09:43:23AM -0800, Sean Christopherson wrote:
>> It conflates two very different things: host/bare metal support for memory
>> encryption, and SEV guest support. For kernels that will never run in a VM,
>> pulling in all the SEV gue
