libvirt driver launcing VMs with stateless firmware
Since v8.6.0, libvirt supports disabling NVRAM used by uefi bootloder
https:/
```
loader
... In some cases, however, it may be desirable for the loader to run without any NVRAM, discarding any config changes on shutdown. The stateless flag (Since 8.6.0) can be used to control this behaviour, when set to yes NVRAM will never be created.
```
This is specifically useful in case we attempt to measure boot chain with SEV encrypted guests to avoid undermining the trust of the secure guest.
https:/
```
If intending to attest the boot measurement, it is required to use a firmware binary that is stateless, as persistent NVRAM can undermine the trust of the secure guest. This is achieved by telling libvirt that a stateless binary is required
```
However this option is not configurable in the guest VMs launched by Nova.
This works aims to allow users to use the stateless firmware, by a new image property (eg. hw_firmware_
Blueprint information
- Status:
- Started
- Approver:
- sean mooney
- Priority:
- Undefined
- Drafter:
- Takashi Kajinami
- Direction:
- Approved
- Assignee:
- Takashi Kajinami
- Definition:
- Approved
- Series goal:
- Accepted for 2024.2
- Implementation:
- Needs Code Review
- Milestone target:
- None
- Started by
- Sylvain Bauza
- Completed by
Related branches
Related bugs
Sprints
Whiteboard
Gerrit topic: https:/
Addressed by: https:/
libvirt: Stateless firmware support
Addressed by: https:/
Report availability of stateless firmware support
Addressed by: https:/
libvirt: Launch instances with stateless firmware
[20240717 bauzas] Spec approved for the Dalmatian release