linux-drivers/
drivers/virt/coco/arm-cca-guest

Arm CCA Realm guest attestation driver

A guest-side interface for Linux running as a "Realm" virtual machine on Arm CPUs with the Realm Management Extension. It exposes attestation services so cloud tenants can prove their VM is genuinely isolated from the hypervisor and host, as part of Arm's Confidential Compute Architecture on next-generation server silicon.

keep conf=0.88 deploy=low replacement=none subsystem=virt category=virtualization
88%

recommendation

It should stay because this is brand-new infrastructure for Arm's Confidential Compute Architecture, merged in October 2024 and still receiving follow-up work into 2025. Although real-world deployments are minimal today, Arm and partners like Fujitsu (with the 2025 MONAKA server CPU) are actively bringing first-generation RME silicon to market, and the code is under active upstream maintenance.

repository signals

3 files
232 source lines
4 commits, 5y
+249 / −5 lines added / removed, 5y
4 authors, 5y
monthly commits · 2021-04-21 → 2026-04-21 · 4 total · active in 3/61 months
2021 2022 2023 2024 2025 2026 2021-04: 0 commits · +0 −0 2021-05: 0 commits · +0 −0 2021-06: 0 commits · +0 −0 2021-07: 0 commits · +0 −0 2021-08: 0 commits · +0 −0 2021-09: 0 commits · +0 −0 2021-10: 0 commits · +0 −0 2021-11: 0 commits · +0 −0 2021-12: 0 commits · +0 −0 2022-01: 0 commits · +0 −0 2022-02: 0 commits · +0 −0 2022-03: 0 commits · +0 −0 2022-04: 0 commits · +0 −0 2022-05: 0 commits · +0 −0 2022-06: 0 commits · +0 −0 2022-07: 0 commits · +0 −0 2022-08: 0 commits · +0 −0 2022-09: 0 commits · +0 −0 2022-10: 0 commits · +0 −0 2022-11: 0 commits · +0 −0 2022-12: 0 commits · +0 −0 2023-01: 0 commits · +0 −0 2023-02: 0 commits · +0 −0 2023-03: 0 commits · +0 −0 2023-04: 0 commits · +0 −0 2023-05: 0 commits · +0 −0 2023-06: 0 commits · +0 −0 2023-07: 0 commits · +0 −0 2023-08: 0 commits · +0 −0 2023-09: 0 commits · +0 −0 2023-10: 0 commits · +0 −0 2023-11: 0 commits · +0 −0 2023-12: 0 commits · +0 −0 2024-01: 0 commits · +0 −0 2024-02: 0 commits · +0 −0 2024-03: 0 commits · +0 −0 2024-04: 0 commits · +0 −0 2024-05: 0 commits · +0 −0 2024-06: 0 commits · +0 −0 2024-07: 0 commits · +0 −0 2024-08: 0 commits · +0 −0 2024-09: 0 commits · +0 −0 2024-10: 1 commit · +237 −0 2024-11: 0 commits · +0 −0 2024-12: 2 commits · +8 −1 2025-01: 0 commits · +0 −0 2025-02: 0 commits · +0 −0 2025-03: 1 commit · +4 −4 2025-04: 0 commits · +0 −0 2025-05: 0 commits · +0 −0 2025-06: 0 commits · +0 −0 2025-07: 0 commits · +0 −0 2025-08: 0 commits · +0 −0 2025-09: 0 commits · +0 −0 2025-10: 0 commits · +0 −0 2025-11: 0 commits · +0 −0 2025-12: 0 commits · +0 −0 2026-01: 0 commits · +0 −0 2026-02: 0 commits · +0 −0 2026-03: 0 commits · +0 −0 2026-04: 0 commits · +0 −0

sources

  1. git.kernel.org

    Kernel history shows this directory is new, introduced in October 2024 and still receiving follow-up changes in late 2024 and 2025 rather than aging out.

  2. docs.kernel.org

    The ARM64 maintainers entry lists drivers/virt/coco/arm-cca-guest under a maintained area, indicating current upstream ownership rather than deprecation.

  3. docs.kernel.org

    Arm CCA support is for Linux running as a Realm guest on Arm systems with RME, so this is a specialized confidential-computing guest driver rather than legacy commodity hardware support.

  4. developer.arm.com

    Arm stated in 2023 that partners were working on first silicon implementations of RME and expected it to become a mainstream feature in future CPU generations.

  5. developer.arm.com

    Arm highlighted a 2025 Fujitsu MONAKA deployment case for Arm CCA, showing the technology is still appearing in new products in 2025.

codex reasoning notes (technical)

Local file inspection via shell showed a real module_init-based TSM driver that only loads in Realm world and exposes attestation. Upstream activity was checked with local shell git log using safe.directory; the cited kernel.org log URL is canonical recall for that same history. Web search found the Linux maintainers page and Arm CCA architecture doc, both showing maintained, current confidential-computing scope. Web search also found Arm official 2023 and 2025 blogs indicating ongoing/new Arm CCA hardware rollouts. No removal discussion surfaced in the available lore/web checks. This is niche and early-deployment infrastructure, but it is new and still relevant, so keep rather than deprecate/remove.