Through the new 'confidential-guest-reset' property, control plane should be able to detect if the hypervisor supports x86 confidential guest resets. Older hypervisors that do not support resets will not have this property populated.
Suggested-by: Daniel P. Berrangé <[email protected]> Signed-off-by: Ani Sinha <[email protected]> --- qapi/qom.json | 16 ++++++++++++++-- 1 file changed, 14 insertions(+), 2 deletions(-) diff --git a/qapi/qom.json b/qapi/qom.json index 6f5c9de0f0..c653248f85 100644 --- a/qapi/qom.json +++ b/qapi/qom.json @@ -1009,13 +1009,19 @@ # designated guest firmware page for measured boot with -kernel # (default: false) (since 6.2) # +# Features: +# +# @confidential-guest-reset: If present, the hypervisor supports +# confidential guest resets (since 11.0). +# # Since: 9.1 ## { 'struct': 'SevCommonProperties', 'data': { '*sev-device': 'str', '*cbitpos': 'uint32', 'reduced-phys-bits': 'uint32', - '*kernel-hashes': 'bool' } } + '*kernel-hashes': 'bool' }, + 'features': ['confidential-guest-reset']} ## # @SevGuestProperties: @@ -1136,6 +1142,11 @@ # it, the guest will not be able to get a TD quote for # attestation. # +# Features: +# +# @confidential-guest-reset: If present, the hypervisor supports +# confidential guest resets (since 11.0). +# # Since: 10.1 ## { 'struct': 'TdxGuestProperties', @@ -1144,7 +1155,8 @@ '*mrconfigid': 'str', '*mrowner': 'str', '*mrownerconfig': 'str', - '*quote-generation-socket': 'SocketAddress' } } + '*quote-generation-socket': 'SocketAddress' }, + 'features': ['confidential-guest-reset']} ## # @ThreadContextProperties: -- 2.42.0
