Re: [PATCH 1/3] sev/i386: Allow launching with -kernel if no OVMF hashes table found

2021-11-05 Thread Dov Murik
On 04/11/2021 20:22, Daniel P. Berrangé wrote: > On Thu, Nov 04, 2021 at 06:18:10PM +, Dr. David Alan Gilbert wrote: >> * Daniel P. Berrangé (berra...@redhat.com) wrote: >>> On Mon, Nov 01, 2021 at 10:21:34AM +, Dov Murik wrote: Commit cff03145ed3c ("sev/i386: Introduce sev_add_kern

Re: [PATCH 1/3] sev/i386: Allow launching with -kernel if no OVMF hashes table found

2021-11-04 Thread Daniel P . Berrangé
On Thu, Nov 04, 2021 at 06:18:10PM +, Dr. David Alan Gilbert wrote: > * Daniel P. Berrangé (berra...@redhat.com) wrote: > > On Mon, Nov 01, 2021 at 10:21:34AM +, Dov Murik wrote: > > > Commit cff03145ed3c ("sev/i386: Introduce sev_add_kernel_loader_hashes > > > for measured linux boot", 202

Re: [PATCH 1/3] sev/i386: Allow launching with -kernel if no OVMF hashes table found

2021-11-04 Thread Dr. David Alan Gilbert
* Daniel P. Berrangé (berra...@redhat.com) wrote: > On Mon, Nov 01, 2021 at 10:21:34AM +, Dov Murik wrote: > > Commit cff03145ed3c ("sev/i386: Introduce sev_add_kernel_loader_hashes > > for measured linux boot", 2021-09-30) introduced measured direct boot > > with -kernel, using an OVMF-designa

Re: [PATCH 1/3] sev/i386: Allow launching with -kernel if no OVMF hashes table found

2021-11-03 Thread Daniel P . Berrangé
On Mon, Nov 01, 2021 at 10:21:34AM +, Dov Murik wrote: > Commit cff03145ed3c ("sev/i386: Introduce sev_add_kernel_loader_hashes > for measured linux boot", 2021-09-30) introduced measured direct boot > with -kernel, using an OVMF-designated hashes table which QEMU fills. > > However, if OVMF d

Re: [PATCH 1/3] sev/i386: Allow launching with -kernel if no OVMF hashes table found

2021-11-01 Thread Dov Murik
On 01/11/2021 16:25, Tom Lendacky wrote: > On 11/1/21 5:21 AM, Dov Murik wrote: >> Commit cff03145ed3c ("sev/i386: Introduce sev_add_kernel_loader_hashes >> for measured linux boot", 2021-09-30) introduced measured direct boot >> with -kernel, using an OVMF-designated hashes table which QEMU fil

Re: [PATCH 1/3] sev/i386: Allow launching with -kernel if no OVMF hashes table found

2021-11-01 Thread Tom Lendacky
On 11/1/21 5:21 AM, Dov Murik wrote: Commit cff03145ed3c ("sev/i386: Introduce sev_add_kernel_loader_hashes for measured linux boot", 2021-09-30) introduced measured direct boot with -kernel, using an OVMF-designated hashes table which QEMU fills. However, if OVMF doesn't designate such an area,

[PATCH 1/3] sev/i386: Allow launching with -kernel if no OVMF hashes table found

2021-11-01 Thread Dov Murik
Commit cff03145ed3c ("sev/i386: Introduce sev_add_kernel_loader_hashes for measured linux boot", 2021-09-30) introduced measured direct boot with -kernel, using an OVMF-designated hashes table which QEMU fills. However, if OVMF doesn't designate such an area, QEMU would completely abort the VM lau