git.monstr.eu Git - linux-2.6-microblaze.git/commit

KVM: x86: Add capability to grant VM access to privileged SGX attribute

Add a capability, KVM_CAP_SGX_ATTRIBUTE, that can be used by userspace
to grant a VM access to a priveleged attribute, with args[0] holding a
file handle to a valid SGX attribute file.

The SGX subsystem restricts access to a subset of enclave attributes to
provide additional security for an uncompromised kernel, e.g. to prevent
malware from using the PROVISIONKEY to ensure its nodes are running
inside a geniune SGX enclave and/or to obtain a stable fingerprint.

To prevent userspace from circumventing such restrictions by running an
enclave in a VM, KVM restricts guest access to privileged attributes by
default.

Cc: Andy Lutomirski <luto@amacapital.net>
Signed-off-by: Sean Christopherson <sean.j.christopherson@intel.com>
Signed-off-by: Kai Huang <kai.huang@intel.com>
Message-Id: <0b099d65e933e068e3ea934b0523bab070cb8cea.1618196135.git.kai.huang@intel.com>
Signed-off-by: Paolo Bonzini <pbonzini@redhat.com>

author	Sean Christopherson <sean.j.christopherson@intel.com>
	Mon, 12 Apr 2021 04:21:43 +0000 (16:21 +1200)
committer	Paolo Bonzini <pbonzini@redhat.com>
	Tue, 20 Apr 2021 08:18:56 +0000 (04:18 -0400)
commit	fe7e948837f312d87853b3fce743795d1ae3715a
tree	857091031011a85b50b8e1a04e06cff47b115993	tree \| snapshot
parent	72add915fbd5bf5c57deee3da5b2605e966ac199	commit \| diff

Documentation/virt/kvm/api.rst		diff \| blob \| history
arch/x86/kvm/cpuid.c		diff \| blob \| history
arch/x86/kvm/x86.c		diff \| blob \| history
include/uapi/linux/kvm.h		diff \| blob \| history