[Kernel-packages] [Bug 2046040] [NEW] enable CONFIG_INTEL_TDX_HOST in linux >= 6.7 for noble

Sat, 09 Dec 2023 10:50:36 -0800 

Public bug reported:

[Impact]

Intel Trust Domain Extensions (TDX) protects guest VMs from malicious host and 
certain physical attacks.
Linux 6.7 introduced the TDX support for the host to run confidential VMs (TDX 
guests).

[Test case]

We should probably define with Intel a proper test case to test this
feature, since it requires special hardware/firmware support.

[Fix]

Enable CONFIG_INTEL_TDX_HOST in our generic kernel.

[Regression potential]

The TDX host support may introduce potential performance regressions, so
we should probably do some performance evaluation with vs without
CONFIG_INTEL_TDX_HOST enabled.

** Affects: linux (Ubuntu)
     Importance: Undecided
         Status: New

** Affects: linux (Ubuntu Noble)
     Importance: Undecided
         Status: New

** Package changed: linux-lowlatency (Ubuntu) => linux (Ubuntu)

** Also affects: linux (Ubuntu Noble)
   Importance: Undecided
       Status: New

-- 
You received this bug notification because you are a member of Kernel
Packages, which is subscribed to linux in Ubuntu.
https://bugs.launchpad.net/bugs/2046040

Title:
  enable CONFIG_INTEL_TDX_HOST in linux >= 6.7 for noble

Status in linux package in Ubuntu:
  New
Status in linux source package in Noble:
  New

Bug description:
  [Impact]

  Intel Trust Domain Extensions (TDX) protects guest VMs from malicious host 
and certain physical attacks.
  Linux 6.7 introduced the TDX support for the host to run confidential VMs 
(TDX guests).

  [Test case]

  We should probably define with Intel a proper test case to test this
  feature, since it requires special hardware/firmware support.

  [Fix]

  Enable CONFIG_INTEL_TDX_HOST in our generic kernel.

  [Regression potential]

  The TDX host support may introduce potential performance regressions,
  so we should probably do some performance evaluation with vs without
  CONFIG_INTEL_TDX_HOST enabled.

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/linux/+bug/2046040/+subscriptions


-- 
Mailing list: https://launchpad.net/~kernel-packages
Post to     : kernel-packages@lists.launchpad.net
Unsubscribe : https://launchpad.net/~kernel-packages
More help   : https://help.launchpad.net/ListHelp

Reply via email to