Re: [RFC PATCH v1 09/28] x86/efi: Access EFI data as encrypted when SEV is active

From: Paolo Bonzini
Date: Thu Sep 22 2016 - 14:24:02 EST

Next message: Greg Kroah-Hartman: "[PATCH 4.7 074/184] iio: humidity: am2315: set up buffer timestamps for non-zero values"
Previous message: Wolfram Sang: "Re: [PATCH v2 3/4] i2c: i801: Do not create iTCO watchdog when WDAT table exists"
In reply to: Tom Lendacky: "Re: [RFC PATCH v1 09/28] x86/efi: Access EFI data as encrypted when SEV is active"
Next in thread: Borislav Petkov: "Re: [RFC PATCH v1 09/28] x86/efi: Access EFI data as encrypted when SEV is active"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 22/09/2016 19:46, Tom Lendacky wrote:
>> > Do you mean, it is encrypted here because we're in the guest kernel?
> Yes, the idea is that the SEV guest will be running encrypted from the
> start, including the BIOS/UEFI, and so all of the EFI related data will
> be encrypted.

Unless this is part of some spec, it's easier if things are the same in
SME and SEV.

Paolo

Next message: Greg Kroah-Hartman: "[PATCH 4.7 074/184] iio: humidity: am2315: set up buffer timestamps for non-zero values"
Previous message: Wolfram Sang: "Re: [PATCH v2 3/4] i2c: i801: Do not create iTCO watchdog when WDAT table exists"
In reply to: Tom Lendacky: "Re: [RFC PATCH v1 09/28] x86/efi: Access EFI data as encrypted when SEV is active"
Next in thread: Borislav Petkov: "Re: [RFC PATCH v1 09/28] x86/efi: Access EFI data as encrypted when SEV is active"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]