Re: [PATCH v4 2/2] x86/devmem: Drop /dev/mem access for confidential guests

On Mon, Apr 28, 2025 at 8:53 AM Dave Hansen dave.hansen@intel.com wrote:

Would most developers reading this know what an "SEPT violation" is or what its implications are?

This results in an immediate exit from and termination of the TDX guest, right?

In most cases yes but it depends on the settings.

If TDX_TD_ATTRIBUTES_SEPT_VE_DISABLE is set then the TDX guest is terminated immediately.

Otherwise a #VE is generated for the guest to handle.

TDX_TD_ATTRIBUTES_SEPT_VE_DISABLE is disabled by default. See [1].

[1] https://lore.kernel.org/all/20250401130205.2198253-11-xiaoyao.li@intel.com/