Navigation: Linux Kernel Driver DataBase - web LKDDB: Main index - E index

CONFIG_EFI_COCO_SECRET: EFI Confidential Computing Secret Area Support

General informations

The Linux kernel configuration item CONFIG_EFI_COCO_SECRET:

prompt: EFI Confidential Computing Secret Area Support
type: bool
depends on: (none)
defined in drivers/firmware/efi/Kconfig
found in Linux kernels: 5.19, 6.0–6.8, 6.9-rc+HEAD

Help text

Confidential Computing platforms (such as AMD SEV) allow the Guest Owner to securely inject secrets during guest VM launch. The secrets are placed in a designated EFI reserved memory area.

In order to use the secrets in the kernel, the location of the secret area (as published in the EFI config table) must be kept.

If you say Y here, the address of the EFI secret area will be kept for usage inside the kernel. This will allow the virt/coco/efi_secret module to access the secrets, which in turn allows userspace programs to access the injected secrets.

Hardware

LKDDb

Raw data from LKDDb:

(none)

Sources

This page is automaticly generated with free (libre, open) software lkddb(see lkddb-sources).

The data is retrived from:

Linux kernel
Linux Kernel Driver DataBase (LKDDb)

Automatic links from Google (and ads)

Custom Search

Popular queries:

Navigation: Linux Kernel Driver DataBase - web LKDDB: main index - E index

Automatically generated (in year 2024). See also LKDDb sources on GitLab