OpenE2K/qemu-e2k
13
4
Fork 0
Code Issues 4 Pull Requests Projects 2 Releases Activity

confidential guest support: Rework the "memory-encryption" property

Browse Source 
Currently the "memory-encryption" property is only looked at once we
get to kvm_init().  Although protection of guest memory from the
hypervisor isn't something that could really ever work with TCG, it's
not conceptually tied to the KVM accelerator.

In addition, the way the string property is resolved to an object is
almost identical to how a QOM link property is handled.

So, create a new "confidential-guest-support" link property which sets
this QOM interface link directly in the machine.  For compatibility we
keep the "memory-encryption" property, but now implemented in terms of
the new property.

Signed-off-by: David Gibson <david@gibson.dropbear.id.au>
Reviewed-by: Greg Kurz <groug@kaod.org>
Reviewed-by: Cornelia Huck <cohuck@redhat.com>
This commit is contained in:
David Gibson 2020-12-04 12:51:51 +11:00
parent 6e6a6ca7d9
commit e0292d7c62
6 changed files with 47 additions and 42 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
accel/kvm/kvm-all.c
View File

@ -2184,8 +2184,9 @@ static int kvm_init(MachineState *ms)
* if memory encryption object is specified then initialize the memory * if memory encryption object is specified then initialize the memory
* encryption context. * encryption context.
*/ */
if (ms->memory_encryption) { if (ms->cgs) {
ret = sev_guest_init(ms->memory_encryption); /* FIXME handle mechanisms other than SEV */
ret = sev_kvm_init(ms->cgs);
if (ret < 0) { if (ret < 0) {
goto err; goto err;
} }

5
accel/kvm/sev-stub.c
View File

@ -15,7 +15,8 @@
#include "qemu-common.h" #include "qemu-common.h"
#include "sysemu/sev.h" #include "sysemu/sev.h"
int sev_guest_init(const char *id) int sev_kvm_init(ConfidentialGuestSupport *cgs)
{ {
return -1; /* SEV can't be selected if it's not compiled */
g_assert_not_reached();
} }

43
hw/core/machine.c
View File

@ -32,6 +32,7 @@
#include "hw/mem/nvdimm.h" #include "hw/mem/nvdimm.h"
#include "migration/global_state.h" #include "migration/global_state.h"
#include "migration/vmstate.h" #include "migration/vmstate.h"
#include "exec/confidential-guest-support.h"
GlobalProperty hw_compat_5_2[] = {}; GlobalProperty hw_compat_5_2[] = {};
const size_t hw_compat_5_2_len = G_N_ELEMENTS(hw_compat_5_2); const size_t hw_compat_5_2_len = G_N_ELEMENTS(hw_compat_5_2);
@ -427,16 +428,37 @@ static char *machine_get_memory_encryption(Object *obj, Error **errp)
{ {
MachineState *ms = MACHINE(obj); MachineState *ms = MACHINE(obj);
return g_strdup(ms->memory_encryption); if (ms->cgs) {
return g_strdup(object_get_canonical_path_component(OBJECT(ms->cgs)));
}
return NULL;
} }
static void machine_set_memory_encryption(Object *obj, const char *value, static void machine_set_memory_encryption(Object *obj, const char *value,
Error **errp) Error **errp)
{ {
MachineState *ms = MACHINE(obj); Object *cgs =
object_resolve_path_component(object_get_objects_root(), value);
g_free(ms->memory_encryption); if (!cgs) {
ms->memory_encryption = g_strdup(value); error_setg(errp, "No such memory encryption object '%s'", value);
return;
}
object_property_set_link(obj, "confidential-guest-support", cgs, errp);
}
static void machine_check_confidential_guest_support(const Object *obj,
const char *name,
Object *new_target,
Error **errp)
{
/*
* So far the only constraint is that the target has the
* TYPE_CONFIDENTIAL_GUEST_SUPPORT interface, and that's checked
* by the QOM core
*/
} }
static bool machine_get_nvdimm(Object *obj, Error **errp) static bool machine_get_nvdimm(Object *obj, Error **errp)
@ -836,6 +858,15 @@ static void machine_class_init(ObjectClass *oc, void *data)
object_class_property_set_description(oc, "suppress-vmdesc", object_class_property_set_description(oc, "suppress-vmdesc",
"Set on to disable self-describing migration"); "Set on to disable self-describing migration");
object_class_property_add_link(oc, "confidential-guest-support",
TYPE_CONFIDENTIAL_GUEST_SUPPORT,
offsetof(MachineState, cgs),
machine_check_confidential_guest_support,
OBJ_PROP_LINK_STRONG);
object_class_property_set_description(oc, "confidential-guest-support",
"Set confidential guest scheme to support");
/* For compatibility */
object_class_property_add_str(oc, "memory-encryption", object_class_property_add_str(oc, "memory-encryption",
machine_get_memory_encryption, machine_set_memory_encryption); machine_get_memory_encryption, machine_set_memory_encryption);
object_class_property_set_description(oc, "memory-encryption", object_class_property_set_description(oc, "memory-encryption",
@ -1158,9 +1189,9 @@ void machine_run_board_init(MachineState *machine)
cc->deprecation_note); cc->deprecation_note);
} }
if (machine->memory_encryption) { if (machine->cgs) {
/* /*
* With memory encryption, the host can't see the real * With confidential guests, the host can't see the real
* contents of RAM, so there's no point in it trying to merge * contents of RAM, so there's no point in it trying to merge
* areas. * areas.
*/ */

2
include/hw/boards.h
View File

@ -270,7 +270,7 @@ struct MachineState {
bool iommu; bool iommu;
bool suppress_vmdesc; bool suppress_vmdesc;
bool enable_graphics; bool enable_graphics;
char *memory_encryption; ConfidentialGuestSupport *cgs;
char *ram_memdev_id; char *ram_memdev_id;
/* /*
* convenience alias to ram_memdev_id backend memory region * convenience alias to ram_memdev_id backend memory region

2
include/sysemu/sev.h
View File

@ -16,7 +16,7 @@
#include "sysemu/kvm.h" #include "sysemu/kvm.h"
int sev_guest_init(const char *id); int sev_kvm_init(ConfidentialGuestSupport *cgs);
int sev_encrypt_flash(uint8_t *ptr, uint64_t len, Error **errp); int sev_encrypt_flash(uint8_t *ptr, uint64_t len, Error **errp);
int sev_inject_launch_secret(const char *hdr, const char *secret, int sev_inject_launch_secret(const char *hdr, const char *secret,
uint64_t gpa, Error **errp); uint64_t gpa, Error **errp);

32
target/i386/sev.c
View File

@ -335,26 +335,6 @@ static const TypeInfo sev_guest_info = {
} }
}; };
static SevGuestState *
lookup_sev_guest_info(const char *id)
{
Object *obj;
SevGuestState *info;
obj = object_resolve_path_component(object_get_objects_root(), id);
if (!obj) {
return NULL;
}
info = (SevGuestState *)
object_dynamic_cast(obj, TYPE_SEV_GUEST);
if (!info) {
return NULL;
}
return info;
}
bool bool
sev_enabled(void) sev_enabled(void)
{ {
@ -682,10 +662,9 @@ sev_vm_state_change(void *opaque, int running, RunState state)
} }
} }
int int sev_kvm_init(ConfidentialGuestSupport *cgs)
sev_guest_init(const char *id)
{ {
SevGuestState *sev; SevGuestState *sev = SEV_GUEST(cgs);
char *devname; char *devname;
int ret, fw_error; int ret, fw_error;
uint32_t ebx; uint32_t ebx;
@ -698,13 +677,6 @@ sev_guest_init(const char *id)
return -1; return -1;
} }
sev = lookup_sev_guest_info(id);
if (!sev) {
error_report("%s: '%s' is not a valid '%s' object",
__func__, id, TYPE_SEV_GUEST);
goto err;
}
sev_guest = sev; sev_guest = sev;
sev->state = SEV_STATE_UNINIT; sev->state = SEV_STATE_UNINIT;