"kernel/initrd/cmdline not provided but kernel "
"measurement is enabled")
- def load_domain(self, uri, id_name_uuid, secure, ignore_config):
+ def load_domain(self, uri, id_name_uuid, build_vmsa, secure, ignore_config):
self.conn = libvirt.open(uri)
remote = socket.getfqdn() != self.conn.getHostname()
capsxml = self.conn.getCapabilities()
capsdoc = etree.fromstring(capsxml)
- if self.is_sev_es() and self.vmsa_cpu0 is None:
+ if self.is_sev_es() and build_vmsa:
if secure:
raise InsecureUsageException(
"Using CPU SKU from capabilities is not secure")
if args.vmsa_cpu1 is not None:
cvm.load_vmsa_cpu1(args.vmsa_cpu1)
- if args.cpu_family is not None:
- cvm.build_vmsas(args.cpu_family,
- args.cpu_model,
- args.cpu_stepping)
-
if args.domain is not None:
+ build_vmsa = args.vmsa_cpu0 is None and args.cpu_family is None
cvm.load_domain(args.connect,
args.domain,
+ build_vmsa,
not args.insecure,
args.ignore_config)
+ if args.cpu_family is not None:
+ cvm.build_vmsas(args.cpu_family,
+ args.cpu_model,
+ args.cpu_stepping)
+
cvm.attest()
if not args.quiet:
print("OK: Looks good to me")
projects / libvirt.git / commitdiff