GitHub - jkrh/pkvm-x86

This is a pKVM-IA fork that makes the PKVM work with the full feature set provided by the KVM. This includes working with non-modified system BIOSs, Operating Systems and hardware flavors that do not support Virtualized Exceptions (#VEs), including the KVM VCPU itself.

In addition, the goal is to provide guests usable secure SMM state like the stock KVM does, just one that is protected by the EPT also from the host attack attempts. The use case we are after is not direct device emulation but rather providing the guest a protected state out of the host reach. This state can chain up to the real trust source accessible via the sample API implemented against coreboot.

Beyond the basic functionality, the PKVM is extended with tools for guest debugging and validation for any given set of virtual devices.

Name		Name	Last commit message	Last commit date
Latest commit History 195 Commits
core		core
coreboot @ 798e87d		coreboot @ 798e87d
crosvm @ 10d2f33		crosvm @ 10d2f33
linux @ 75cefdf		linux @ 75cefdf
patches		patches
platform/q35		platform/q35
qemu @ fd1952d		qemu @ fd1952d
scripts		scripts
uefi		uefi
.gitignore		.gitignore
.gitmodules		.gitmodules
LICENSE		LICENSE
Makefile		Makefile
README.md		README.md
flake.lock		flake.lock
flake.nix		flake.nix
shell.nix		shell.nix

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

About

Releases

Packages

Contributors 2

Languages

License

jkrh/pkvm-x86

Folders and files

Latest commit

History

Repository files navigation

About

Resources

License

Stars

Watchers

Forks

Releases

Packages 0

Contributors 2

Languages

Packages