[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [PATCH v3 0/9] Generalize memory encryption models
|
From: |
David Hildenbrand |
|
Subject: |
Re: [PATCH v3 0/9] Generalize memory encryption models |
|
Date: |
Fri, 19 Jun 2020 12:10:13 +0200 |
|
User-agent: |
Mozilla/5.0 (X11; Linux x86_64; rv:68.0) Gecko/20100101 Thunderbird/68.8.0 |
On 19.06.20 12:05, Cornelia Huck wrote:
> On Fri, 19 Jun 2020 11:56:49 +0200
> David Hildenbrand <david@redhat.com> wrote:
>
>>>>> For now this series covers just AMD SEV and POWER PEF. I'm hoping it
>>>>> can be extended to cover the Intel and s390 mechanisms as well,
>>>>> though.
>>>>
>>>> The only approach on s390x to not glue command line properties to the
>>>> cpu model would be to remove the CPU model feature and replace it by the
>>>> command line parameter. But that would, of course, be an incompatible
>>>> break.
>>>
>>> Yuck.
>>>
>>> We still need to provide the cpu feature to the *guest* in any case, no?
>>
>> Yeah, but that could be wired up internally. Wouldn't consider it clean,
>> though (I second the "overengineered" above).
>
> Could an internally wired-up cpu feature be introspected? Also, what
Nope. It would just be e.g., a "machine feature" indicated to the guest
via the STFL interface/instruction. I was tackling the introspect part
when asking David how to sense from upper layers. It would have to be
sense via a different interface as it would not longer be modeled as
part of CPU features in QEMU.
> happens if new cpu features are introduced that have a dependency on or
> a conflict with this one?
Conflict: bail out in QEMU when incompatible options are specified.
Dependency: warn and continue/fixup (e.g., mask off?)
Not clean I think.
--
Thanks,
David / dhildenb
- Re: [PATCH v3 9/9] host trust limitation: Alter virtio default properties for protected guests, (continued)
[PATCH v3 5/9] host trust limitation: Decouple kvm_memcrypt_*() helpers from KVM, David Gibson, 2020/06/18
[PATCH v3 6/9] host trust limitation: Add Error ** to HostTrustLimitation::kvm_init, David Gibson, 2020/06/18
[PATCH v3 7/9] spapr: Add PEF based host trust limitation, David Gibson, 2020/06/18
Re: [PATCH v3 0/9] Generalize memory encryption models, no-reply, 2020/06/18
Re: [PATCH v3 0/9] Generalize memory encryption models, David Hildenbrand, 2020/06/19
- Re: [PATCH v3 0/9] Generalize memory encryption models, Cornelia Huck, 2020/06/19
- Re: [PATCH v3 0/9] Generalize memory encryption models, David Hildenbrand, 2020/06/19
- Re: [PATCH v3 0/9] Generalize memory encryption models, Cornelia Huck, 2020/06/19
- Re: [PATCH v3 0/9] Generalize memory encryption models,
David Hildenbrand <=
- Re: [PATCH v3 0/9] Generalize memory encryption models, Cornelia Huck, 2020/06/22
- Re: [PATCH v3 0/9] Generalize memory encryption models, David Gibson, 2020/06/25
- Re: [PATCH v3 0/9] Generalize memory encryption models, David Hildenbrand, 2020/06/25
- Re: [PATCH v3 0/9] Generalize memory encryption models, David Gibson, 2020/06/26
- Re: [PATCH v3 0/9] Generalize memory encryption models, David Hildenbrand, 2020/06/26
- Re: [PATCH v3 0/9] Generalize memory encryption models, Janosch Frank, 2020/06/26
- Re: [PATCH v3 0/9] Generalize memory encryption models, Daniel P . Berrangé, 2020/06/26
- Re: [PATCH v3 0/9] Generalize memory encryption models, Janosch Frank, 2020/06/26
- Re: [PATCH v3 0/9] Generalize memory encryption models, Dr. David Alan Gilbert, 2020/06/26
- Re: [PATCH v3 0/9] Generalize memory encryption models, Daniel P . Berrangé, 2020/06/26