FOSDEM 2026

"Running Mushroom on Intel TDX" ( 2025 )

Saturday at 14:00, 20 minutes, K.4.401, K.4.401, Confidential Computing Tom Dohrmann , slides , video

Mushroom is a project for securely running Linux workloads in attestable, integrity-protected environments with a minimalistic TCB. Mushroom depends on TEEs to provide integrity guarantees for data in use. It was initially developed for AMD SEV-SNP, but it recently gained support for running on Intel TDX as well. This talk will explore some of the required changes and discuss how the differences between AMD SEV-SNP and Intel TDX informed some of the design decisions.

2026

0.52 "Full disk encryption for Confidential Computing guests"
0.52 "Open source firmware for high assurance confidential infrastructure"

2025

0.53 "Confidential Virtual Machines Demystified: A Technical Deep Dive into Linux Guest OS Enlightenment"
0.53 "Integrating Intel TDX remote attestation into SSH"
0.49 "Supporting Confidential Computing on Arm with Open Source Software"
0.49 "TrenchBoot - project status update"
0.49 "Latest implementation of AMD SEV-SNP in OVMF"

2024

0.65 "Integrity Protect Workloads with Mushroom"
0.56 "Intel TDX Deep Dive"
0.49 "TrenchBoot - project status update"

Related: