[libvirt] [PATCH 0/2] AMD SEV: Relabel session data under /var/lib/libvirt
Michal Privoznik
mprivozn at redhat.com
Wed Dec 19 09:47:32 UTC 2018
On 12/11/18 3:43 PM, Erik Skultety wrote:
> If a user tries to pass the optional "dhCert" or "session" data to the SEV
> firmware, these are in form of a base64-encoded strings which libvirt then
> takes and creates files with those strings as content under
> /var/lib/libvirt/qemu/<domain>. Libvirt then puts paths to these files on to
> QEMU cmdline. QEMU then uses these files within its communication with SEV
> firmware, provided it has access to those files.
>
> https://bugzilla.redhat.com/show_bug.cgi?id=1658112
>
> Erik Skultety (2):
> qemu: process: SEV: Assume libDir to be the directory to create files
> in
> qemu: process: SEV: Relabel guest owner's SEV files created before
> start
>
> src/qemu/qemu_process.c | 13 +++++++++----
> 1 file changed, 9 insertions(+), 4 deletions(-)
>
ACK
Michal
More information about the libvir-list
mailing list