[Qualcomm feedback] Chapter 4: Clarify page type reference

Question

[Qualcomm feedback] Chapter 4: Clarify page type reference

rsahita opened this issue 6 months ago · 2 comments

Reference: link

Each TVMs address space can be comprised of confidential and non-confidential regions. The
former includes both measured pages (that are part of the initial TVM payload), and confidential
zero-pages that can be mapped-in on demand by the VMM following runtime accesses by the TVM.
The non-confidential TVM-defined regions include those for shared-pages and MMIO.

not clear what these pages refer to. are those the confidential pages used by TVM and then no longer needed hence zeroed out? If they are no longer needed they should have been reclaimed before being used in the non-confidential domain (as per previous paragraph)

Answer 1 · 2024-03-11T03:02:39.000Z

These zero'ed confidential pages are pages that are demand-paged in and are expected to be zero'ed by the TSM to prevent attacks from the host software on the TVM. The TSM also enforces that the host does not overlap them with existing (present) G-stage mappings for the TVM. I can add this clarification.

Answer 2 · 2024-03-11T03:20:30.000Z

address in PR #71

cc @ozkoyuncu