Claudio Carvalho

You seem to be running an old skiboot version. The opal log says that it found ibm,secureboot-v1, but latest is v2. Skiboot doesn't expect images to be signed if secure-mode...

`log=0xffffffffffff8160`means that the hardware key hash test failed. At runtime, the secure ROM code reads the three hw keys form the container, concatenate them and calculate a hash. The hash...

In `ibm,secureboot-v2` skiboot always try to verify images retrieved from PNOR, but enforce only when secure-mode is ON. 4 and 5 are working as expected for me. In 4, secure...

One of the github tests is failing because it uses the system glibc to build the code.

@tlendacky @Zildj1an we don't necessarily need to merge this PR into main. If you create a vtpm feature branch we could just merge this PR into it; @dubek could also...

I moved all the openssl calls to a new crate called crypto and marked the crate to be built only when the test feature is not set. With that, all...

`svsm-report-ossl-preview` branch updated: - Call bindgen in the Makefile rather than having a build script (build.rs). The build.rs does not support checking if we are building for tests. In `cargo...

Hi @drasko, I started porting the vTPM [proof-of-concept](https://github.com/svsm-vtpm/linux-svsm) to both the AMDESE/linux-svsm.git and coconut-svsm/svsm.git, but that's not complete. Do you have any specific use case for it?

Once https://github.com/confidential-containers/guest-components/pull/634 is merged, I can update this PR and remove its draft label.

Feedback applied, thanks @fitzthum I also updated the guest-components revision in the `Cargo.toml` to point to latest, which includes the query string support required by this PR.