On 7/7/25 00:15, Chao Gao wrote: >> Why should this specific kind of freeing (TDX private memory being freed >> back to the host) operation be different from any other kind of free? > To limit the impact of software bugs (e.g., TDX module bugs) to TDX guests > rather than affecting the entire kernel. It's one thing if the TDX module is so constantly buggy that we're getting tons of kernel crash reports that we track back to the TDX module. It's quite another thing to add kernel complexity to preemptively lessen the chance of a theoretical TDX bug.
