Re: [PATCH Part1 RFC v3 20/22] x86/boot: Add Confidential Computing address to setup_header

From: Borislav Petkov
Date: Fri Jun 25 2021 - 13:02:00 EST

Next message: John Garry: "[PATCH] scsi: Delete scsi_{get,free}_host_dev()"
Previous message: James Bottomley: "Re: linux-mm@xxxxxxxxx - limping on a backup"
In reply to: Brijesh Singh: "Re: [PATCH Part1 RFC v3 20/22] x86/boot: Add Confidential Computing address to setup_header"
Next in thread: Michael Roth: "Re: [PATCH Part1 RFC v3 20/22] x86/boot: Add Confidential Computing address to setup_header"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Fri, Jun 25, 2021 at 10:24:01AM -0500, Brijesh Singh wrote:
> In the case of EFI, the CC blob structure is dynamically allocated
> and passed through the EFI configuration table. The grub will not
> know what value to pass in the cmdline unless we improve it to read
> the EFI configuration table and rebuild the cmdline.

Or simply parse the EFI table.

To repeat my question: why do you need the CC blob in the boot kernel?

Then, how does it work then in the !EFI case?

The script glue that starts the lightweight container goes and
"prepares" that blob and passes it to guest kernel? In which case
setup_data should do the job, methinks.

--
Regards/Gruss,
Boris.

https://people.kernel.org/tglx/notes-about-netiquette

Next message: John Garry: "[PATCH] scsi: Delete scsi_{get,free}_host_dev()"
Previous message: James Bottomley: "Re: linux-mm@xxxxxxxxx - limping on a backup"
In reply to: Brijesh Singh: "Re: [PATCH Part1 RFC v3 20/22] x86/boot: Add Confidential Computing address to setup_header"
Next in thread: Michael Roth: "Re: [PATCH Part1 RFC v3 20/22] x86/boot: Add Confidential Computing address to setup_header"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]