]> git.ipfire.org Git - thirdparty/kernel/stable.git/commit
projects / thirdparty / kernel / stable.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 9342bf3) | patch
configfs-tsm-report: tdx_guest: Increase Quote buffer size to 128KB
authorKuppuswamy Sathyanarayanan <sathyanarayanan.kuppuswamy@linux.intel.com>
Wed, 11 Feb 2026 00:17:12 +0000 (16:17 -0800)
committerDan Williams <dan.j.williams@intel.com>
Wed, 11 Feb 2026 02:24:09 +0000 (18:24 -0800)
commit43185067c6fd55b548ecb648a69d9569fcf622b5
treee496fc0c348fb326d3a859e3d069e1cfb60826d7tree
parent9342bf3d670b1b3d3cfc77a9dc1cd0d6574e5cc6commit | diff
configfs-tsm-report: tdx_guest: Increase Quote buffer size to 128KB

Intel platforms are transitioning from traditional SGX-based
attestation toward DICE-based attestation as part of a broader move
toward open and standardized attestation models. DICE enables layered
and extensible attestation, where evidence is accumulated across
multiple boot stages.

With SGX-based attestation, Quote sizes are typically under 8KB, as the
payload consists primarily of Quote data and a small certificate bundle.
Existing TDX guest code sizes the Quote buffer accordingly.

DICE-based attestation produces significantly larger Quotes due to the
inclusion of evidence (certificate chains) from multiple boot layers.
The cumulative Quote size can reach approximately 100KB.

Increase GET_QUOTE_BUF_SIZE to 128KB to ensure sufficient buffer
capacity for DICE-based Quote payloads.

Reviewed-by: Fang Peter <peter.fang@intel.com>
Signed-off-by: Kuppuswamy Sathyanarayanan <sathyanarayanan.kuppuswamy@linux.intel.com>
Link: https://patch.msgid.link/20260211001712.1531955-4-sathyanarayanan.kuppuswamy@linux.intel.com
Signed-off-by: Dan Williams <dan.j.williams@intel.com>
Documentation/ABI/testing/configfs-tsm-report diff | blob | blame | history
drivers/virt/coco/tdx-guest/tdx-guest.c diff | blob | blame | history
Mirror https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git