microvm: storageVM encryption support for all VMs by hros-tii · Pull Request #1408 · tiiuae/ghaf

hros-tii · 2025-09-15T12:21:06Z

Description of Changes

This commit adds two methods to provide a TPM to a microvm:

passthrough of the host TPM or,
emulated TPM hosted in admin VM. The default configuration enables the passthrough for the system VMs and the emulation for app VMs.

MicroVMs have a new option: storagevm.encryption.enable. When this is set, the persistent storage is backed by a disk image instead of a virtiofs mapped directory. The disk image is encrypted inside the VM using the TPM device available to the VM (through one of the 2 methods) and decrypted when the VM boots.

The host option virtualization.storagevm-encryption.enable enables the encrypted storage for all the VMs.

Type of Change

New Feature
Bug Fix
Improvement / Refactor

Checklist

Clear summary in PR description
Detailed and meaningful commit message(s)
Commits are logically organized and squashed if appropriate
Contribution guidelines followed
Ghaf documentation updated with the commit - https://tiiuae.github.io/ghaf/
Author has run make-checks and it passes
All automatic GitHub Action checks pass - see actions
Author has added reviewers and removed PR draft status
Tested on Lenovo X1 x86_64 Gen11

Testing Instructions

Applicable Targets

Installation Method

/!\ Before flashing, reset the TPM in the BIOS /!\

Press F1 on splash screen to open BIOS
Go to Security > Security Chip
Select Clear Security Chip

Requires full re-installation
Can be updated with nixos-rebuild ... switch
Other:

Test Steps To Verify:

Build lenovo-x1-extras-debug target.
Build and flash on Lenovo X1 laptop
SSH into a system VM (ex: admin-vm)
The VM should have a TPM device:

[ghaf@admin-vm:~]$ ls /dev/tpm*
/dev/tpm0  /dev/tpmrm0

Run lsblk to verify that the guestStorage partition is encrypted:

[ghaf@admin-vm:~]$ lsblk
NAME     MAJ:MIN RM SIZE RO TYPE  MOUNTPOINTS
vda      253:0    0  10G  0 disk
└─vmdata 254:0    0  10G  0 crypt /etc/timezone.conf
                                  /etc/locale-givc.conf
                                  /guestStorage/var/lib/nixos/shadow
                                  /var/lib/nixos/shadow

SSH into an application VM (ex: chrome-vm)
Same verifications as step 4 and 5

targets/vm/flake-module.nix

docs/src/content/docs/ghaf/overview/arch/guest-tpm.mdx

flake.nix

modules/microvm/common/storagevm.nix

modules/microvm/host/vtpm-proxy.nix

mbssrc · 2025-10-01T10:20:17Z

Great work! For testing, we should include performance and boot-time tests

The abrmd duplicates functionality of the in-kernel RM which is in the kernel since version 4.12. It is not useful to have both enabled. Quoting the README of tpm2-abrmd: > The reason we have both is that the in-kernel RM was only added very > recently (4.12) and we have TPM2 users in environments with kernels > going back to the 3.x series. So the user space RM will be around at > least till everyone is using the kernel RM. > ... > Eventually, all of the required features will end up in the kernel > RM and it will become the default. In addition, the abrmd cannot be used by qemu, unlike the kernel RM. Signed-off-by: Hugo Ros <Hugo.Ros@tii.ae>

This commit adds two methods to provide a TPM to a microvm: 1. passthrough of the host TPM or, 2. emulated TPM hosted in admin VM The default configuration enables the passthrough for the system VMs and the emulation for app VMs. The storage VM has a new option: storagevm.encryption.enable. When this is set, the persistent storage is backed by a disk image instead of a virtiofs mapped directory. The disk image is encrypted inside the VM using the TPM device available to the VM (through one of the 2 methods) and decrypted when the VM boots. The host option `virtualization.storagevm-encryption.enable` enables the encrypted storage for all the VMs. Signed-off-by: Hugo Ros <Hugo.Ros@tii.ae>

Signed-off-by: Hugo Ros <Hugo.Ros@tii.ae>

milva-unikie · 2025-10-17T10:52:28Z

Tested on lenovo-x1-extras-debug
(Reset the TPM in the BIOS before testing)

All VMs (except ids-vm) have a TPM device.
All VMs (except ids-vm & zathura-vm) have an encrypted guestStorage partition.
Performance results seem to be okay. We don't do regular testing with the extras image so it is a bit difficult to compare. The extras image has a longer boot time than the lenovo-x1-carbon-gen11-debug image but that is also the case with the mainline extras image.

hros-tii temporarily deployed to internal September 15, 2025 12:21 — with GitHub Actions Inactive

hros-tii commented Sep 15, 2025

View reviewed changes

targets/vm/flake-module.nix Outdated Show resolved Hide resolved

hros-tii temporarily deployed to internal September 15, 2025 12:57 — with GitHub Actions Inactive

hros-tii temporarily deployed to internal September 15, 2025 12:58 — with GitHub Actions Inactive

hros-tii force-pushed the tpm-proxy branch from f1d6093 to b89341d Compare September 15, 2025 14:46

hros-tii temporarily deployed to internal September 15, 2025 14:46 — with GitHub Actions Inactive

hros-tii force-pushed the tpm-proxy branch from b89341d to 52e25b6 Compare September 25, 2025 11:50

hros-tii temporarily deployed to internal September 25, 2025 11:50 — with GitHub Actions Inactive

hros-tii force-pushed the tpm-proxy branch from 52e25b6 to 1a05728 Compare September 25, 2025 11:55

hros-tii temporarily deployed to internal September 25, 2025 11:55 — with GitHub Actions Inactive

hros-tii force-pushed the tpm-proxy branch from 1a05728 to d2942ee Compare September 25, 2025 13:18

hros-tii temporarily deployed to internal September 25, 2025 13:18 — with GitHub Actions Inactive

hros-tii marked this pull request as ready for review September 25, 2025 14:30