/tdx

Rust library for Intel TDX

Primary LanguageRustApache License 2.0Apache-2.0

Workflow Status Average time to resolve an issue Percentage of issues still open Maintenance

tdx

The tdx crate provides an implementation of APIs for Intel Trusted Domain eXtensions (TDX).

TDX APIs

The Linux kernel exposes APIs for managing TDX-enabled KVM virtual machines

This crate implements those APIs and offers them to Rust client code through a flexible and type-safe high-level interface.

TDX KVM VM APIs

Refer to the vm module for more information.

TDX KVM vCPU APIs

Refer to the vcpu module for more information.

Remarks

Note that the Linux kernel provides access to these APIs through a set of ioctls that are meant to be called on the /dev/kvm device node. As a result, these ioctls form the substrate of the tdx crate. Binaries that result from consumers of this crate are expected to run as a process with the necessary privileges to interact with the device nodes.

License: Apache-2.0