KVM: TDX: Finalize VM initialization - kernel - saturneric's kernel source tree

diff options

author	Isaku Yamahata <[email protected]>	2024-09-04 03:07:50 +0000
committer	Paolo Bonzini <[email protected]>	2025-03-14 18:20:53 +0000
commit	012426d6f59cab21f4e1ab4cc2c919fd26a04ead (patch)
tree	3bb00bc2bd89e82714bfb93cff50c0dfcde4974b /rust/helpers/task.c
parent	KVM: TDX: Add an ioctl to create initial guest memory (diff)
download	kernel-012426d6f59cab21f4e1ab4cc2c919fd26a04ead.tar.gz kernel-012426d6f59cab21f4e1ab4cc2c919fd26a04ead.zip

KVM: TDX: Finalize VM initialization

Add a new VM-scoped KVM_MEMORY_ENCRYPT_OP IOCTL subcommand, KVM_TDX_FINALIZE_VM, to perform TD Measurement Finalization. Documentation for the API is added in another patch: "Documentation/virt/kvm: Document on Trust Domain Extensions(TDX)" For the purpose of attestation, a measurement must be made of the TDX VM initial state. This is referred to as TD Measurement Finalization, and uses SEAMCALL TDH.MR.FINALIZE, after which: 1. The VMM adding TD private pages with arbitrary content is no longer allowed 2. The TDX VM is runnable Co-developed-by: Adrian Hunter <[email protected]> Signed-off-by: Adrian Hunter <[email protected]> Signed-off-by: Isaku Yamahata <[email protected]> Signed-off-by: Rick Edgecombe <[email protected]> Message-ID: <[email protected]> Signed-off-by: Paolo Bonzini <[email protected]>

Diffstat (limited to 'rust/helpers/task.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: