Skip to content

Commit

Permalink
ibmse: update readme to reflect initdata change
Browse files Browse the repository at this point in the history
Update readme for initdata and se.user_data field in attestation policy

Signed-off-by: Qi Feng Huo <[email protected]>
  • Loading branch information
Qi Feng Huo committed Aug 13, 2024
1 parent 81f904f commit 34f7614
Showing 1 changed file with 2 additions and 2 deletions.
4 changes: 2 additions & 2 deletions deps/verifier/src/se/README.md
Original file line number Diff line number Diff line change
Expand Up @@ -241,13 +241,13 @@ allow if {
input["se.attestation_phkh"] == "xxx"
input["se.image_phkh"] == "xxx"
input["se.tag"] == "xxx"
input["se.user_data"] == "00"
input["se.user_data"] == "xxx"
converted_version == "256"
}
EOF
```

Where the values come from [retrive-the-rvps-field-for-an-ibm-se-image](#retrive-the-rvps-field-for-an-ibm-se-image)
Where the values `se.version`, `se.attestation_phkh`, `se.image_phkh` and `se.tag` come from [retrive-the-rvps-field-for-an-ibm-se-image](#retrive-the-rvps-field-for-an-ibm-se-image). The value `se.user_data` comes from [initdata](https://github.com/confidential-containers/cloud-api-adaptor/blob/main/src/cloud-api-adaptor/docs/initdata.md). Please remove `input["se.user_data"] == "xxx"` if `initdata` is not used.

#### Set the attestation policy
```bash
Expand Down

0 comments on commit 34f7614

Please sign in to comment.