1. Patchew
  2. Libvirt
  3. [PATCH v3 00/21] LIBVIRT: X86: TDX support
  4. View patch

[PATCH v3 21/21] docs: domain: Add documentation for Intel TDX guest

Zhenzhong Duan posted 21 patches 5 months, 2 weeks ago
There is a newer version of this series
[PATCH v3 21/21] docs: domain: Add documentation for Intel TDX guest
Posted by Zhenzhong Duan 5 months, 2 weeks ago 
Signed-off-by: Zhenzhong Duan <zhenzhong.duan@intel.com>
---
 docs/formatdomain.rst | 63 +++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 63 insertions(+)

diff --git a/docs/formatdomain.rst b/docs/formatdomain.rst
index 9a2f065590..5acebefec0 100644
--- a/docs/formatdomain.rst
+++ b/docs/formatdomain.rst
@@ -9528,6 +9528,69 @@ The ``<launchSecurity/>`` element then accepts the following child elements:
    the SNP_LAUNCH_FINISH command in the SEV-SNP firmware ABI.
 
 
+The contents of the ``<launchSecurity type='tdx'>`` element is used to provide
+the guest owners input used for creating an encrypted VM using the Intel TDX
+(Trusted Domain eXtensions). Intel TDX refers to an Intel technology that
+extends Virtual Machine Extensions (VMX) and Multi-Key Total Memory Encryption
+(MKTME) with a new kind of virtual machine guest called a Trust Domain (TD).
+A TD runs in a CPU mode that is designed to protect the confidentiality of its
+memory contents and its CPU state from any other software, including the hosting
+Virtual Machine Monitor (VMM), unless explicitly shared by the TD itself.
+Example configuration:
+
+::
+
+   <domain>
+     ...
+     <launchSecurity type='tdx'>
+       <policy>0x10000001</policy>
+       <mrConfigId>xxx</mrConfigId>
+       <mrOwner>xxx</mrOwner>
+       <mrOwnerConfig>xxx</mrOwnerConfig>
+       <quoteGenerationSocket path="/var/run/tdx-qgs/qgs.socket"/>
+     </launchSecurity>
+     ...
+   </domain>
+
+``policy``
+   The optional ``policy`` element provides the guest TD attributes which is
+   passed by the host VMM as a guest TD initialization parameter as part of
+   TD_PARAMS, it exactly matches the definition of TD_PARAMS.ATTRIBUTES in
+   (Intel TDX Module Spec Table 22.2: ATTRIBUTES Definition). It is reported
+   to the guest TD by TDG.VP.INFO and as part of TDREPORT_STRUCT returned by
+   TDG.MR.REPORT. The guest policy is 64bit unsigned with the fields shown
+   in Table:
+
+   ====== ====================================================================================
+   Bit(s) Description
+   ====== ====================================================================================
+   0      Guest TD runs in off-TD debug mode when set
+   1:27   reserved
+   28     Disable EPT violation conversion to #VE on guest TD access of PENDING pages when set
+   29:63  reserved
+   ====== ====================================================================================
+
+``mrConfigId``
+   The optional ``mrConfigId`` element provides ID for non-owner-defined
+   configuration of the guest TD, e.g., run-time or OS configuration
+   (base64 encoded SHA384 digest).
+
+``@mrowner``
+   The optional ``@mrowner`` element provides ID for the guest TD’s owner
+   (base64 encoded SHA384 digest).
+
+``mrownerconfig``
+   The optional ``mrownerconfig`` element provides ID for owner-defined
+   configuration of the guest TD, e.g., specific to the workload rather than
+   the run-time or OS (base64 encoded SHA384 digest).
+
+``quoteGenerationSocket``
+   The optional ``quoteGenerationSocket`` subelement provides Quote Generation
+   Service(QGS) daemon socket address configuration. It includes an optional
+   ``path`` attribute to determine the UNIX socket address, when omitted,
+   ``/var/run/tdx-qgs/qgs.socket`` is used as default. User in TD guest cannot
+   get TD quoting for attestation if this subelement is not provided.
+
 Example configs
 ===============
 
-- 
2.34.1
Re: [PATCH v3 21/21] docs: domain: Add documentation for Intel TDX guest
Posted by Xiaoyao Li 5 months, 1 week ago 
On 6/30/2025 2:17 PM, Zhenzhong Duan wrote:
> Signed-off-by: Zhenzhong Duan <zhenzhong.duan@intel.com>
> ---
>   docs/formatdomain.rst | 63 +++++++++++++++++++++++++++++++++++++++++++
>   1 file changed, 63 insertions(+)
> 
> diff --git a/docs/formatdomain.rst b/docs/formatdomain.rst
> index 9a2f065590..5acebefec0 100644
> --- a/docs/formatdomain.rst
> +++ b/docs/formatdomain.rst
> @@ -9528,6 +9528,69 @@ The ``<launchSecurity/>`` element then accepts the following child elements:
>      the SNP_LAUNCH_FINISH command in the SEV-SNP firmware ABI.
>   
>   
> +The contents of the ``<launchSecurity type='tdx'>`` element is used to provide
> +the guest owners input used for creating an encrypted VM using the Intel TDX
> +(Trusted Domain eXtensions). Intel TDX refers to an Intel technology that
> +extends Virtual Machine Extensions (VMX) and Multi-Key Total Memory Encryption
> +(MKTME) with a new kind of virtual machine guest called a Trust Domain (TD).
> +A TD runs in a CPU mode that is designed to protect the confidentiality of its
> +memory contents and its CPU state from any other software, including the hosting
> +Virtual Machine Monitor (VMM), unless explicitly shared by the TD itself.
> +Example configuration:
> +
> +::
> +
> +   <domain>
> +     ...
> +     <launchSecurity type='tdx'>
> +       <policy>0x10000001</policy>
> +       <mrConfigId>xxx</mrConfigId>
> +       <mrOwner>xxx</mrOwner>
> +       <mrOwnerConfig>xxx</mrOwnerConfig>
> +       <quoteGenerationSocket path="/var/run/tdx-qgs/qgs.socket"/>
> +     </launchSecurity>
> +     ...
> +   </domain>
> +
> +``policy``
> +   The optional ``policy`` element provides the guest TD attributes which is
> +   passed by the host VMM as a guest TD initialization parameter as part of
> +   TD_PARAMS, it exactly matches the definition of TD_PARAMS.ATTRIBUTES in
> +   (Intel TDX Module Spec Table 22.2: ATTRIBUTES Definition). It is reported
> +   to the guest TD by TDG.VP.INFO and as part of TDREPORT_STRUCT returned by
> +   TDG.MR.REPORT. The guest policy is 64bit unsigned with the fields shown
> +   in Table:

(It should be commenting on the patch that enables the policy. I'm just 
too lazy to find that patch)

Could we rename "policy" to "attributes", or more precisely 
"tdAttributes"? It's not intuitive for users to connect "policy" with 
"TD attributes".
RE: [PATCH v3 21/21] docs: domain: Add documentation for Intel TDX guest
Posted by Duan, Zhenzhong 5 months, 1 week ago 

>-----Original Message-----
>From: Li, Xiaoyao <xiaoyao.li@intel.com>
>Subject: Re: [PATCH v3 21/21] docs: domain: Add documentation for Intel
>TDX guest
>
>On 6/30/2025 2:17 PM, Zhenzhong Duan wrote:
>> Signed-off-by: Zhenzhong Duan <zhenzhong.duan@intel.com>
>> ---
>>   docs/formatdomain.rst | 63
>+++++++++++++++++++++++++++++++++++++++++++
>>   1 file changed, 63 insertions(+)
>>
>> diff --git a/docs/formatdomain.rst b/docs/formatdomain.rst
>> index 9a2f065590..5acebefec0 100644
>> --- a/docs/formatdomain.rst
>> +++ b/docs/formatdomain.rst
>> @@ -9528,6 +9528,69 @@ The ``<launchSecurity/>`` element then accepts
>the following child elements:
>>      the SNP_LAUNCH_FINISH command in the SEV-SNP firmware ABI.
>>
>>
>> +The contents of the ``<launchSecurity type='tdx'>`` element is used to
>provide
>> +the guest owners input used for creating an encrypted VM using the Intel
>TDX
>> +(Trusted Domain eXtensions). Intel TDX refers to an Intel technology that
>> +extends Virtual Machine Extensions (VMX) and Multi-Key Total Memory
>Encryption
>> +(MKTME) with a new kind of virtual machine guest called a Trust Domain
>(TD).
>> +A TD runs in a CPU mode that is designed to protect the confidentiality of
>its
>> +memory contents and its CPU state from any other software, including the
>hosting
>> +Virtual Machine Monitor (VMM), unless explicitly shared by the TD itself.
>> +Example configuration:
>> +
>> +::
>> +
>> +   <domain>
>> +     ...
>> +     <launchSecurity type='tdx'>
>> +       <policy>0x10000001</policy>
>> +       <mrConfigId>xxx</mrConfigId>
>> +       <mrOwner>xxx</mrOwner>
>> +       <mrOwnerConfig>xxx</mrOwnerConfig>
>> +       <quoteGenerationSocket path="/var/run/tdx-qgs/qgs.socket"/>
>> +     </launchSecurity>
>> +     ...
>> +   </domain>
>> +
>> +``policy``
>> +   The optional ``policy`` element provides the guest TD attributes which
>is
>> +   passed by the host VMM as a guest TD initialization parameter as part
>of
>> +   TD_PARAMS, it exactly matches the definition of
>TD_PARAMS.ATTRIBUTES in
>> +   (Intel TDX Module Spec Table 22.2: ATTRIBUTES Definition). It is
>reported
>> +   to the guest TD by TDG.VP.INFO and as part of TDREPORT_STRUCT
>returned by
>> +   TDG.MR.REPORT. The guest policy is 64bit unsigned with the fields
>shown
>> +   in Table:
>
>(It should be commenting on the patch that enables the policy. I'm just
>too lazy to find that patch)

Will do.

>
>Could we rename "policy" to "attributes", or more precisely
>"tdAttributes"? It's not intuitive for users to connect "policy" with
>"TD attributes".

Will use "attributes" as QAPI exposes "attributes".

Thanks
Zhenzhong
Re: [PATCH v3 21/21] docs: domain: Add documentation for Intel TDX guest
Posted by Daniel P. Berrangé via Devel 5 months, 1 week ago 
On Wed, Jul 09, 2025 at 03:46:14AM +0000, Duan, Zhenzhong wrote:
> 
> 
> >-----Original Message-----
> >From: Li, Xiaoyao <xiaoyao.li@intel.com>
> >Subject: Re: [PATCH v3 21/21] docs: domain: Add documentation for Intel
> >TDX guest
> >
> >On 6/30/2025 2:17 PM, Zhenzhong Duan wrote:
> >> Signed-off-by: Zhenzhong Duan <zhenzhong.duan@intel.com>
> >> ---
> >>   docs/formatdomain.rst | 63
> >+++++++++++++++++++++++++++++++++++++++++++
> >>   1 file changed, 63 insertions(+)
> >>
> >> diff --git a/docs/formatdomain.rst b/docs/formatdomain.rst
> >> index 9a2f065590..5acebefec0 100644
> >> --- a/docs/formatdomain.rst
> >> +++ b/docs/formatdomain.rst
> >> @@ -9528,6 +9528,69 @@ The ``<launchSecurity/>`` element then accepts
> >the following child elements:
> >>      the SNP_LAUNCH_FINISH command in the SEV-SNP firmware ABI.
> >>
> >>
> >> +The contents of the ``<launchSecurity type='tdx'>`` element is used to
> >provide
> >> +the guest owners input used for creating an encrypted VM using the Intel
> >TDX
> >> +(Trusted Domain eXtensions). Intel TDX refers to an Intel technology that
> >> +extends Virtual Machine Extensions (VMX) and Multi-Key Total Memory
> >Encryption
> >> +(MKTME) with a new kind of virtual machine guest called a Trust Domain
> >(TD).
> >> +A TD runs in a CPU mode that is designed to protect the confidentiality of
> >its
> >> +memory contents and its CPU state from any other software, including the
> >hosting
> >> +Virtual Machine Monitor (VMM), unless explicitly shared by the TD itself.
> >> +Example configuration:
> >> +
> >> +::
> >> +
> >> +   <domain>
> >> +     ...
> >> +     <launchSecurity type='tdx'>
> >> +       <policy>0x10000001</policy>
> >> +       <mrConfigId>xxx</mrConfigId>
> >> +       <mrOwner>xxx</mrOwner>
> >> +       <mrOwnerConfig>xxx</mrOwnerConfig>
> >> +       <quoteGenerationSocket path="/var/run/tdx-qgs/qgs.socket"/>
> >> +     </launchSecurity>
> >> +     ...
> >> +   </domain>
> >> +
> >> +``policy``
> >> +   The optional ``policy`` element provides the guest TD attributes which
> >is
> >> +   passed by the host VMM as a guest TD initialization parameter as part
> >of
> >> +   TD_PARAMS, it exactly matches the definition of
> >TD_PARAMS.ATTRIBUTES in
> >> +   (Intel TDX Module Spec Table 22.2: ATTRIBUTES Definition). It is
> >reported
> >> +   to the guest TD by TDG.VP.INFO and as part of TDREPORT_STRUCT
> >returned by
> >> +   TDG.MR.REPORT. The guest policy is 64bit unsigned with the fields
> >shown
> >> +   in Table:
> >
> >(It should be commenting on the patch that enables the policy. I'm just
> >too lazy to find that patch)
> 
> Will do.
> 
> >
> >Could we rename "policy" to "attributes", or more precisely
> >"tdAttributes"? It's not intuitive for users to connect "policy" with
> >"TD attributes".
> 
> Will use "attributes" as QAPI exposes "attributes".

IMHO 'policy' is preferrable as it is consistent with terminology we
already use in SEV guests. I did actually request the same at the
QEMU level too, and missed that it got named 'attributes' in the
final merged code 

With regards,
Daniel
-- 
|: https://berrange.com      -o-    https://www.flickr.com/photos/dberrange :|
|: https://libvirt.org         -o-            https://fstop138.berrange.com :|
|: https://entangle-photo.org    -o-    https://www.instagram.com/dberrange :|
Re: [PATCH v3 21/21] docs: domain: Add documentation for Intel TDX guest
Posted by Xiaoyao Li 5 months, 1 week ago 
On 7/9/2025 2:58 PM, Daniel P. Berrangé wrote:
>>> Could we rename "policy" to "attributes", or more precisely
>>> "tdAttributes"? It's not intuitive for users to connect "policy" with
>>> "TD attributes".
>> Will use "attributes" as QAPI exposes "attributes".
> IMHO 'policy' is preferrable as it is consistent with terminology we
> already use in SEV guests.

The only advantage we can get is that both SEV and TDX guest have a 
filed named "policy".

But the bits of it have entire different meaning for SEV and TDX. 
Nothing can be shared at all. So why not name it with different name, 
and people get they are different things.

> I did actually request the same at the
> QEMU level too, and missed that it got named 'attributes' in the
> final merged code
Re: [PATCH v3 21/21] docs: domain: Add documentation for Intel TDX guest
Posted by Daniel P. Berrangé via Devel 5 months, 1 week ago 
On Wed, Jul 09, 2025 at 03:13:11PM +0800, Xiaoyao Li wrote:
> On 7/9/2025 2:58 PM, Daniel P. Berrangé wrote:
> > > > Could we rename "policy" to "attributes", or more precisely
> > > > "tdAttributes"? It's not intuitive for users to connect "policy" with
> > > > "TD attributes".
> > > Will use "attributes" as QAPI exposes "attributes".
> > IMHO 'policy' is preferrable as it is consistent with terminology we
> > already use in SEV guests.
> 
> The only advantage we can get is that both SEV and TDX guest have a filed
> named "policy".
> 
> But the bits of it have entire different meaning for SEV and TDX. Nothing
> can be shared at all. So why not name it with different name, and people get
> they are different things.

You're ignoring the benefit to applications above libvirt, which avoid
having two different fields which serve the same purpose, but with
arbitrarily different names. Yes, the values you put in the bitfields
are different for SEV vs TDX, but the conceptual need is the same, and
libvirt aims to use common terminology for equivalent concepts across
technologies.

With regards,
Daniel
-- 
|: https://berrange.com      -o-    https://www.flickr.com/photos/dberrange :|
|: https://libvirt.org         -o-            https://fstop138.berrange.com :|
|: https://entangle-photo.org    -o-    https://www.instagram.com/dberrange :|
Re: [PATCH v3 21/21] docs: domain: Add documentation for Intel TDX guest
Posted by Xiaoyao Li 5 months, 1 week ago 
On 7/9/2025 11:46 AM, Duan, Zhenzhong wrote:
>> (It should be commenting on the patch that enables the policy. I'm just
>> too lazy to find that patch)
> Will do.

It's just myself excuse for not commenting it in patch 07

>> Could we rename "policy" to "attributes", or more precisely
>> "tdAttributes"? It's not intuitive for users to connect "policy" with
>> "TD attributes".
> Will use "attributes" as QAPI exposes "attributes".

I would suggest waiting a while to see other's opinion.
Re: [PATCH v3 21/21] docs: domain: Add documentation for Intel TDX guest
Posted by Daniel P. Berrangé via Devel 5 months, 1 week ago 
On Mon, Jun 30, 2025 at 02:17:32PM +0800, Zhenzhong Duan wrote:
> Signed-off-by: Zhenzhong Duan <zhenzhong.duan@intel.com>
> ---
>  docs/formatdomain.rst | 63 +++++++++++++++++++++++++++++++++++++++++++
>  1 file changed, 63 insertions(+)
> 
> diff --git a/docs/formatdomain.rst b/docs/formatdomain.rst
> index 9a2f065590..5acebefec0 100644
> --- a/docs/formatdomain.rst
> +++ b/docs/formatdomain.rst
> @@ -9528,6 +9528,69 @@ The ``<launchSecurity/>`` element then accepts the following child elements:
>     the SNP_LAUNCH_FINISH command in the SEV-SNP firmware ABI.
>  
>  
> +The contents of the ``<launchSecurity type='tdx'>`` element is used to provide
> +the guest owners input used for creating an encrypted VM using the Intel TDX
> +(Trusted Domain eXtensions). Intel TDX refers to an Intel technology that
> +extends Virtual Machine Extensions (VMX) and Multi-Key Total Memory Encryption
> +(MKTME) with a new kind of virtual machine guest called a Trust Domain (TD).
> +A TD runs in a CPU mode that is designed to protect the confidentiality of its
> +memory contents and its CPU state from any other software, including the hosting
> +Virtual Machine Monitor (VMM), unless explicitly shared by the TD itself.
> +Example configuration:
> +
> +::
> +
> +   <domain>
> +     ...
> +     <launchSecurity type='tdx'>
> +       <policy>0x10000001</policy>
> +       <mrConfigId>xxx</mrConfigId>
> +       <mrOwner>xxx</mrOwner>
> +       <mrOwnerConfig>xxx</mrOwnerConfig>
> +       <quoteGenerationSocket path="/var/run/tdx-qgs/qgs.socket"/>
> +     </launchSecurity>
> +     ...
> +   </domain>
> +
> +``policy``
> +   The optional ``policy`` element provides the guest TD attributes which is
> +   passed by the host VMM as a guest TD initialization parameter as part of
> +   TD_PARAMS, it exactly matches the definition of TD_PARAMS.ATTRIBUTES in
> +   (Intel TDX Module Spec Table 22.2: ATTRIBUTES Definition). It is reported
> +   to the guest TD by TDG.VP.INFO and as part of TDREPORT_STRUCT returned by
> +   TDG.MR.REPORT. The guest policy is 64bit unsigned with the fields shown
> +   in Table:
> +
> +   ====== ====================================================================================
> +   Bit(s) Description
> +   ====== ====================================================================================
> +   0      Guest TD runs in off-TD debug mode when set
> +   1:27   reserved
> +   28     Disable EPT violation conversion to #VE on guest TD access of PENDING pages when set
> +   29:63  reserved
> +   ====== ====================================================================================
> +
> +``mrConfigId``
> +   The optional ``mrConfigId`` element provides ID for non-owner-defined
> +   configuration of the guest TD, e.g., run-time or OS configuration
> +   (base64 encoded SHA384 digest).
> +
> +``@mrowner``
> +   The optional ``@mrowner`` element provides ID for the guest TD’s owner

s/mrowner/mrOwner/

> +   (base64 encoded SHA384 digest).
> +
> +``mrownerconfig``
> +   The optional ``mrownerconfig`` element provides ID for owner-defined

s/mrownerconfig/mrOwnerConfig/

> +   configuration of the guest TD, e.g., specific to the workload rather than
> +   the run-time or OS (base64 encoded SHA384 digest).
> +
> +``quoteGenerationSocket``
> +   The optional ``quoteGenerationSocket`` subelement provides Quote Generation

s/quoteGenerationSocket/quoteGenerationService/

> +   Service(QGS) daemon socket address configuration. It includes an optional
> +   ``path`` attribute to determine the UNIX socket address, when omitted,
> +   ``/var/run/tdx-qgs/qgs.socket`` is used as default. User in TD guest cannot
> +   get TD quoting for attestation if this subelement is not provided.
> +
>  Example configs
>  ===============
>  
> -- 
> 2.34.1
> 

With regards,
Daniel
-- 
|: https://berrange.com      -o-    https://www.flickr.com/photos/dberrange :|
|: https://libvirt.org         -o-            https://fstop138.berrange.com :|
|: https://entangle-photo.org    -o-    https://www.instagram.com/dberrange :|
RE: [PATCH v3 21/21] docs: domain: Add documentation for Intel TDX guest
Posted by Duan, Zhenzhong 5 months, 1 week ago 

>-----Original Message-----
>From: Daniel P. Berrangé <berrange@redhat.com>
>Subject: Re: [PATCH v3 21/21] docs: domain: Add documentation for Intel
>TDX guest
>
>On Mon, Jun 30, 2025 at 02:17:32PM +0800, Zhenzhong Duan wrote:
>> Signed-off-by: Zhenzhong Duan <zhenzhong.duan@intel.com>
>> ---
>>  docs/formatdomain.rst | 63
>+++++++++++++++++++++++++++++++++++++++++++
>>  1 file changed, 63 insertions(+)
>>
>> diff --git a/docs/formatdomain.rst b/docs/formatdomain.rst
>> index 9a2f065590..5acebefec0 100644
>> --- a/docs/formatdomain.rst
>> +++ b/docs/formatdomain.rst
>> @@ -9528,6 +9528,69 @@ The ``<launchSecurity/>`` element then accepts
>the following child elements:
>>     the SNP_LAUNCH_FINISH command in the SEV-SNP firmware ABI.
>>
>>
>> +The contents of the ``<launchSecurity type='tdx'>`` element is used to
>provide
>> +the guest owners input used for creating an encrypted VM using the Intel
>TDX
>> +(Trusted Domain eXtensions). Intel TDX refers to an Intel technology that
>> +extends Virtual Machine Extensions (VMX) and Multi-Key Total Memory
>Encryption
>> +(MKTME) with a new kind of virtual machine guest called a Trust Domain
>(TD).
>> +A TD runs in a CPU mode that is designed to protect the confidentiality of
>its
>> +memory contents and its CPU state from any other software, including the
>hosting
>> +Virtual Machine Monitor (VMM), unless explicitly shared by the TD itself.
>> +Example configuration:
>> +
>> +::
>> +
>> +   <domain>
>> +     ...
>> +     <launchSecurity type='tdx'>
>> +       <policy>0x10000001</policy>
>> +       <mrConfigId>xxx</mrConfigId>
>> +       <mrOwner>xxx</mrOwner>
>> +       <mrOwnerConfig>xxx</mrOwnerConfig>
>> +       <quoteGenerationSocket path="/var/run/tdx-qgs/qgs.socket"/>
>> +     </launchSecurity>
>> +     ...
>> +   </domain>
>> +
>> +``policy``
>> +   The optional ``policy`` element provides the guest TD attributes which
>is
>> +   passed by the host VMM as a guest TD initialization parameter as part
>of
>> +   TD_PARAMS, it exactly matches the definition of
>TD_PARAMS.ATTRIBUTES in
>> +   (Intel TDX Module Spec Table 22.2: ATTRIBUTES Definition). It is
>reported
>> +   to the guest TD by TDG.VP.INFO and as part of TDREPORT_STRUCT
>returned by
>> +   TDG.MR.REPORT. The guest policy is 64bit unsigned with the fields
>shown
>> +   in Table:
>> +
>> +   ======
>===============================================================
>=====================
>> +   Bit(s) Description
>> +   ======
>===============================================================
>=====================
>> +   0      Guest TD runs in off-TD debug mode when set
>> +   1:27   reserved
>> +   28     Disable EPT violation conversion to #VE on guest TD access of
>PENDING pages when set
>> +   29:63  reserved
>> +   ======
>===============================================================
>=====================
>> +
>> +``mrConfigId``
>> +   The optional ``mrConfigId`` element provides ID for non-owner-defined
>> +   configuration of the guest TD, e.g., run-time or OS configuration
>> +   (base64 encoded SHA384 digest).
>> +
>> +``@mrowner``
>> +   The optional ``@mrowner`` element provides ID for the guest TD’s
>owner
>
>s/mrowner/mrOwner/
>
>> +   (base64 encoded SHA384 digest).
>> +
>> +``mrownerconfig``
>> +   The optional ``mrownerconfig`` element provides ID for owner-defined
>
>s/mrownerconfig/mrOwnerConfig/
>
>> +   configuration of the guest TD, e.g., specific to the workload rather
>than
>> +   the run-time or OS (base64 encoded SHA384 digest).
>> +
>> +``quoteGenerationSocket``
>> +   The optional ``quoteGenerationSocket`` subelement provides Quote
>Generation
>
>s/quoteGenerationSocket/quoteGenerationService/

Fixed above, thanks

Zhenzhong

Patchew 2.1-devel-b67e4c2

© 2016 - 2025 Red Hat, Inc.