The tdx
crate provides an implementation of APIs for Intel Trusted Domain eXtensions (TDX).
The Linux kernel exposes APIs for managing TDX-enabled KVM virtual machines
This crate implements those APIs and offers them to Rust client code through a flexible and type-safe high-level interface.
Refer to the vm
module for more information.
Refer to the vcpu
module for more information.
Note that the Linux kernel provides access to these APIs through a set
of ioctl
s that are meant to be called on the /dev/kvm
device node.
As a result, these ioctl
s form the substrate of the tdx
crate.
Binaries that result from consumers of this crate are expected to run as
a process with the necessary privileges to interact with the device nodes.
License: Apache-2.0