docs: tpm: Clarify omission or removal of active_pcr_banks node

Add a sentence to the active_pcr_banks node documentation that clarifies
that when the active_pcr_banks node is removed from the XML or when it
is omitted that the set of active PCR banks is not changed anymore.

Resolves: https://bugzilla.redhat.com/show_bug.cgi?id=2039246
Signed-off-by: Stefan Berger <stefanb@linux.ibm.com>
Reviewed-by: Jiri Denemark <jdenemar@redhat.com>

diff --git a/docs/formatdomain.rst b/docs/formatdomain.rst
index 69e02e0135e2ec40d99fbe8bf5509f8927a13661..8128e43da418b779878289a7b06f6be9186da0c7 100644 (file)
--- a/docs/formatdomain.rst
+++ b/docs/formatdomain.rst
@@ -7640,6 +7640,8 @@ Example: usage of the TPM Emulator
    of a TPM 2.0 to activate. Valid names are for example sha1, sha256, sha384,
    and sha512. If this node is provided, the set of PCR banks are activated
    before every start of a VM and this step is logged in the swtpm's log.
+   If this node is removed or omitted then libvirt will not modify the
+   active PCR banks upon VM start but leave them at their last configuration.
    This attribute requires that swtpm_setup v0.7 or later is installed
    and may not have any effect otherwise. The selection of PCR banks only works
    with the ``emulator`` backend. since:`Since 7.10.0`