Dumps for KVM guests in IBM Secure Execution mode

Dumps for KVM guests in IBM Secure Execution mode require protection from unauthorized inspection.

This protection is given for kdump, because the kdump kernel that has access to the dump also runs in IBM Secure Execution mode on the same KVM virtual server.

For secure guests that are enabled for encrypted dumps, you can also use virsh dump to create an encrypted dump file. With the required key, you can then access the file with zgetdump, see Working with dumps of KVM guests in IBM Secure Execution mode.