On Tue, Oct 12, 2021 at 10:55:20AM -0700, Andi Kleen wrote: > > > I mean ... it's already wide spread. > > > I meant wide spread usage with confidential guests. > > > If we support it with TDX > > it will be used with TDX. > > It has some security trade offs. The main reason to use TDX is security. > Also when people take the VT-d tradeoffs they might be ok with the BIOS > trade offs too. > > -Andi
Interesting. VT-d tradeoffs ... what are they? Allowing hypervisor to write into BIOS looks like it will trivially lead to code execution, won't it? -- MST _______________________________________________ Virtualization mailing list Virtualization@lists.linux-foundation.org https://lists.linuxfoundation.org/mailman/listinfo/virtualization
