Comment 14 for bug 1456228

I concur with Doug. This is not a bug but expected behavior. Another example to illustrate: Boot a node into the trusted pool. This node is later compromised while it is running several VMs and afterward continues to receive newly launched VMs. The attestation is attesting to the node booting up with known software not that it will remain uncompromised.