Skip to content

Commit

Permalink
clarify the TVM confidential DMA scope.
Browse files Browse the repository at this point in the history 
Signed-off-by: Jiewen Yao <[email protected]>
  • Loading branch information
@jyao1
jyao1 committed Feb 18, 2024
1 parent 67928b1 commit 1519c38
Showing 1 changed file with 3 additions and 1 deletion.
4 changes: 3 additions & 1 deletion specification/06-arch_overview.adoc
View file
Original file line number Diff line number Diff line change
Expand Up @@ -27,7 +27,9 @@ and registering IOMMUs and PCIe root ports, and then binding physical devices
interfaces (TDI) and TVMs together.

With the CoVE-IO ABIs and flows, TDIs can access TVM confidential memory
directly. CoVE-IO uses the Smmtt I/O MTT extension and the platform IOMMUs
directly. Based on the TVM configuration, the confidential DMA memory
could be all TVM memory or a subset of the TVM memory.
CoVE-IO uses the Smmtt I/O MTT extension and the platform IOMMUs
security domain specific Register Programming Interfaces (RPI) to grant TDIs
with direct access to their bound TVM confidential memory and isolate it from
DMA originating from any unbound TDI.
Expand Down

0 comments on commit 1519c38

Please sign in to comment.