[libvirt PATCH v2 11/12] qemu: probe for sev-guest.kernel-hashes property
Peter Krempa
pkrempa at redhat.com
Fri Dec 10 14:59:10 UTC 2021
On Fri, Dec 10, 2021 at 14:56:05 +0000, Daniel P. Berrangé wrote:
> On Fri, Dec 10, 2021 at 03:53:46PM +0100, Peter Krempa wrote:
> > On Fri, Dec 10, 2021 at 11:37:34 +0000, Daniel P. Berrangé wrote:
> > > This sev-guest object property indicates whether QEMU should
> > > expose the kernel, ramdisk, cmdline hashes to the firmware
> > > for measurement.
> > >
> > > The 6.2.0 capabilities are hacked to look as if they were
> > > generated with sev-guest support.
> >
> > The qemu-6.2 lifecycle is not ended yet, so I'll be re-generating the
> > caps, thus your hack will get lost.
> >
> > Given that qemu is at rc4 now you can either wait until the final
> > release is out and I update the caps or pick a different older version
> > to hack.
>
> This is a new feature in 6.2.0, so it has to be done in the
> 6.2.0 caps to make any sense.
>
> As long as you can re-generate the 6.2.0 caps on a SEV capable
> machine, I'll just wait for you.
I don't have a sev-capable box, but I kept generating the caps for all
of the 6.2.0 lifecycle so it will have the least of diff.
More information about the libvir-list
mailing list