Closed rsahita closed 6 months ago
The RDSM configures the MTT such that a hart executing in the hosting domain does not have access to any confidential memory regions. The RDSM configures the MTT for the confidential domain to allow access to confidential memory exclusively to that domain, but may also allow access to non-confidential (shared) memory regions to one or more secondary domains.
adding this clarification to the description.
Closing as addressed in PR #70 cc @ozkoyuncu
Reference: link
access to non-confidential memory is bounded right - why is it not bounded to only TVM shared memory?
It has to be bounded for sure, but I believe the point of this note is that he fact alone that the memory is non-confidential is (by itself) not reason to cause a fault. Compare with next point, where the reverse is expected to programmatically cause a fault