Change Description

Kunpeng BoostKit 25.2.RC2 Confidential Computing mainly introduces updates to virtCCA-related features.

**Table 1** New features of BoostKit-virtCCA_1.5.0
Feature	Change Description
Batch service capability and TEE license configuration	Confidential computing can be deployed in batches using the Computing ToolKit. XML files are added to the TMM firmware and iTrustee firmware packages. Confidential computing supports customer TEE license.
Hot swap of confidential virtual machine (cVM) devices (virtual NICs and drives) for device scaling	When a paravirtualized drive is inserted or removed when a cVM is running, the VM and device can still run properly. When a paravirtualized NIC is inserted or removed when a cVM is running, the VM and device can still run properly.
PCIPC for VM VF passthrough to RoCE	PCIPC for VM VF passthrough to RoCE.
Enhanced confidential container capability and serviceability	The kernel of Kata confidential containers can be simplified and optimized. The tool for generating the confidential computing base value now supports confidential containers. One-click deployment scripts are available for confidential containers. Kubernetes supports device passthrough to confidential containers.
Kunpeng Cryptographic-computing Acceleration Library (KCAL)	It supports SM3 and SM4 random number derivation and hash functions. KCAL operators support confidential computing environment verification. It adapts to the middleware of privacy computing platforms.

Parent topic: V1.5.0