• Sean Christopherson's avatar
    KVM: x86: Add capability to grant VM access to privileged SGX attribute · fe7e9488
    Sean Christopherson authored
    Add a capability, KVM_CAP_SGX_ATTRIBUTE, that can be used by userspace
    to grant a VM access to a priveleged attribute, with args[0] holding a
    file handle to a valid SGX attribute file.
    
    The SGX subsystem restricts access to a subset of enclave attributes to
    provide additional security for an uncompromised kernel, e.g. to prevent
    malware from using the PROVISIONKEY to ensure its nodes are running
    inside a geniune SGX enclave and/or to obtain a stable fingerprint.
    
    To prevent userspace from circumventing such restrictions by running an
    enclave in a VM, KVM restricts guest access to privileged attributes by
    default.
    
    Cc: Andy Lutomirski <luto@amacapital.net>
    Signed-off-by: default avatarSean Christopherson <sean.j.christopherson@intel.com>
    Signed-off-by: default avatarKai Huang <kai.huang@intel.com>
    Message-Id: <0b099d65e933e068e3ea934b0523bab070cb8cea.1618196135.git.kai.huang@intel.com>
    Signed-off-by: default avatarPaolo Bonzini <pbonzini@redhat.com>
    fe7e9488
cpuid.c 32.4 KB