On 04/10/2021 11:03, Paolo Bonzini wrote:
> Queued, thanks. However, it would be nice to have a documentation of
> all our SEV firmware interfaces somewhere in docs/specs/.
Thanks Paolo.
I'll try to arrange a skeleton for such document. So far I think we
have the following interfaces:
1. SEV
Queued, thanks. However, it would be nice to have a documentation of
all our SEV firmware interfaces somewhere in docs/specs/.
Paolo
On Thu, Sep 30, 2021 at 7:49 AM Dov Murik wrote:
>
> Currently booting with -kernel/-initrd/-append is not supported in SEV
> confidential guests, because the con
Currently booting with -kernel/-initrd/-append is not supported in SEV
confidential guests, because the content of these blobs is not measured
and therefore not trusted by the SEV guest.
However, in some cases the kernel, initrd, and cmdline are not secret
but should not be modified by the host.
