Skip to content

Reproducibility of MRSEAM for Intel TDX #5

New issue
New issue
Open
Open
Reproducibility of MRSEAM for Intel TDX#5
@a-s-m-asadujjaman

Description

@a-s-m-asadujjaman
a-s-m-asadujjaman
opened on Nov 11, 2024

Currently, the parameters BUILD_DATE, BUILD_NUM, and UPDATE_VERSION are not accessible to guest VMs according to the global_metadata.json file published by Intel (we have verified this lack of access using Intel ABI on a TDX guest VM).

However, these parameters are mandatory for reproducible builds of MRSEAM. The only certain way for users of CVMs to know these parameters is by obtaining them through a guest CVM.

So, why is it that these parameters are designed to be inaccessible by the guest VM?

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions