On Wed, Jul 03, 2024 at 12:05:51PM +0100, Roy Hopkins wrote: > For confidential guests a policy can be provided that defines the > security level, debug status, expected launch measurement and other > parameters that define the configuration of the confidential platform. > > This commit adds a new function named set_guest_policy() that can be > implemented by each confidential platform, such as AMD SEV to set the > policy. This will allow configuration of the policy from a > multi-platform resource such as an IGVM file without the IGVM processor > requiring specific implementation details for each platform. > > Signed-off-by: Roy Hopkins <roy.hopk...@suse.com> > --- > include/exec/confidential-guest-support.h | 21 +++++++++++++++++++++ > backends/confidential-guest-support.c | 12 ++++++++++++ > 2 files changed, 33 insertions(+)
Reviewed-by: Daniel P. Berrangé <berra...@redhat.com> With regards, Daniel -- |: https://berrange.com -o- https://www.flickr.com/photos/dberrange :| |: https://libvirt.org -o- https://fstop138.berrange.com :| |: https://entangle-photo.org -o- https://www.instagram.com/dberrange :|