[PATCH V2 1/3] libvirt: Introduce virDomainSetLaunchSecurityState public API
Daniel P. Berrangé
berrange at redhat.com
Fri Dec 10 11:38:40 UTC 2021
On Thu, Dec 09, 2021 at 03:04:13PM -0700, Jim Fehlig wrote:
> This API allows setting a launch secret within a guests's memory. The
> launch secret is created by the guest owner after retrieving and
> verifying the launch measurement with virDomainGetLaunchSecurityInfo.
>
> The API uses virTypedParameter for input, allowing it to be expanded
> to support other confidential computing technologies. In the case of
> SEV, a basic guest launch workflow is described in the SEV API spec
> in section "1.3.1 Launch"
>
> https://www.amd.com/system/files/TechDocs/55766_SEV-KM_API_Specification.pdf
>
> Signed-off-by: Jim Fehlig <jfehlig at suse.com>
> ---
> include/libvirt/libvirt-domain.h | 35 ++++++++++++++++++
> src/driver-hypervisor.h | 7 ++++
> src/libvirt-domain.c | 62 ++++++++++++++++++++++++++++++++
> src/libvirt_public.syms | 5 +++
> 4 files changed, 109 insertions(+)
Reviewed-by: Daniel P. Berrangé <berrange at redhat.com>
Regards,
Daniel
--
|: https://berrange.com -o- https://www.flickr.com/photos/dberrange :|
|: https://libvirt.org -o- https://fstop138.berrange.com :|
|: https://entangle-photo.org -o- https://www.instagram.com/dberrange :|
More information about the libvir-list
mailing list