Re: [PATCH] x86: Don't add RNG seed to Linux cmdline for SEV guests

qemu-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [PATCH] x86: Don't add RNG seed to Linux cmdline for SEV guests

From:	Jason A. Donenfeld
Subject:	Re: [PATCH] x86: Don't add RNG seed to Linux cmdline for SEV guests
Date:	Wed, 8 Feb 2023 12:51:40 -0300

On Wed, Feb 8, 2023 at 12:49 PM Dov Murik <dovmurik@linux.ibm.com> wrote:
> Even if the DTB itself doesn't change and the Guest Owner could somehow add
> it to the expected cmdline to calculate the hash, the current implementation
> adds both the SetupData entry and the dtb itself to the cmdline.  The 
> SetupData
> entry contains pointers which may be harder to predict (even though currently
> I assume that .next=0 and the rest are known, so it should be possible (but 
> ugly)).

No, setup_data isn't even hooked up under SEV. That part is skipped already.

[Prev in Thread]

Current Thread

[Next in Thread]

Re: [PATCH] x86: Don't add RNG seed to Linux cmdline for SEV guests, (continued)
- Re: [PATCH] x86: Don't add RNG seed to Linux cmdline for SEV guests, Daniel P . Berrangé, 2023/02/08
  - Re: [PATCH] x86: Don't add RNG seed to Linux cmdline for SEV guests, Dov Murik, 2023/02/08

Prev by Date: Re: [PATCH] x86: Don't add RNG seed to Linux cmdline for SEV guests
Next by Date: Re: [PATCH] x86: Don't add RNG seed to Linux cmdline for SEV guests
Previous by thread: Re: [PATCH] x86: Don't add RNG seed to Linux cmdline for SEV guests
Next by thread: Re: [PATCH] x86: Don't add RNG seed to Linux cmdline for SEV guests
Index(es):
- Date
- Thread