[24.10 FEAT] [VS2009] KVM: Secure IPL Simulation - libvirt part
Bug #2049701 reported by
bugproxy
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Ubuntu on IBM z Systems |
Incomplete
|
High
|
Skipper Bug Screeners | ||
libvirt (Ubuntu) |
Incomplete
|
Undecided
|
Frank Heimes |
Bug Description
This item will allow to verify the secure IPL process without the need to have a specific hardware or firmware level. QEMU must be modified to allow to specify one or more certificates used for kernel signing. Further, QEMU must allow to request signature checking during IPL. The QEMU BIOS must be extended to do the certificate checking, which requires a way to pass the certificates to the BIOS. And finally, libvirt must be extended in support of the QEMU changes.
tags: | added: architecture-s39064 bugnameltc-204721 severity-high targetmilestone-inin2404 |
Changed in ubuntu: | |
assignee: | nobody → Skipper Bug Screeners (skipper-screen-team) |
affects: | ubuntu → linux (Ubuntu) |
tags: | added: libvirt-24.04 |
information type: | Private → Public |
To post a comment you must log in.
Thx for the heads-up. Very interesting feature!
Do you already know the upstream libvirt version that will have this functionality included?