Re: [PATCH V2 1/3] libvirt: Introduce virDomainSetLaunchSecurityState public API

Friday, 10 December 2021

On Thu, Dec 09, 2021 at 03:04:13PM -0700, Jim Fehlig wrote:
...
 This API allows setting a launch secret within a guests's memory.
The
 launch secret is created by the guest owner after retrieving and
 verifying the launch measurement with virDomainGetLaunchSecurityInfo.

 The API uses virTypedParameter for input, allowing it to be expanded
 to support other confidential computing technologies. In the case of
 SEV, a basic guest launch workflow is described in the SEV API spec
 in section "1.3.1 Launch"

 https://www.amd.com/system/files/TechDocs/55766_SEV-KM_API_Specification.pdf

 Signed-off-by: Jim Fehlig <jfehlig(a)suse.com&gt;
 ---
  include/libvirt/libvirt-domain.h | 35 ++++++++++++++++++
  src/driver-hypervisor.h          |  7 ++++
  src/libvirt-domain.c             | 62 ++++++++++++++++++++++++++++++++
  src/libvirt_public.syms          |  5 +++
  4 files changed, 109 insertions(+) 
Reviewed-by: Daniel P. Berrangé <berrange(a)redhat.com&gt;

Regards,
Daniel
-- 
|: https://berrange.com      -o-    https://www.flickr.com/photos/dberrange :|
|: https://libvirt.org         -o-            https://fstop138.berrange.com :|
|: https://entangle-photo.org    -o-    https://www.instagram.com/dberrange :|

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

Re: [PATCH V2 1/3] libvirt: Introduce virDomainSetLaunchSecurityState public API