This repo holds the work area and revisions of the non-ISA specification created by the RISC-V AP-TEE TG. This specification defines the programming interfaces (ABI) to support the Confidential VM Extension (CoVE) confidential computing architecture for RISC-V application-processor platforms.
In order to isolate the TVMs from the host OS/VMM and non-confidential VMs, the TSM state must
be isolated first - this is achieved by enforcing isolation for memory assigned to the supervisor
domain that the TSM occupies - this is called the TSM-memory-region.
Reference: link
or any other supervisor domain for that matter.