From: "Dr. David Alan Gilbert" <dgilbert@redhat.com>
To: Brijesh Singh <brijesh.singh@amd.com>
Cc: qemu-devel@nongnu.org,
Alistair Francis <alistair.francis@xilinx.com>,
Christian Borntraeger <borntraeger@de.ibm.com>,
Cornelia Huck <cornelia.huck@de.ibm.com>,
"Daniel P . Berrange" <berrange@redhat.com>,
"Michael S. Tsirkin" <mst@redhat.com>,
"Edgar E. Iglesias" <edgar.iglesias@xilinx.com>,
Eduardo Habkost <ehabkost@redhat.com>,
Eric Blake <eblake@redhat.com>,
kvm@vger.kernel.org, Marcel Apfelbaum <marcel@redhat.com>,
Markus Armbruster <armbru@redhat.com>,
Paolo Bonzini <pbonzini@redhat.com>,
Peter Crosthwaite <crosthwaite.peter@gmail.com>,
Peter Maydell <peter.maydell@linaro.org>,
Richard Henderson <richard.henderson@linaro.org>,
Stefan Hajnoczi <stefanha@gmail.com>,
Thomas Lendacky <Thomas.Lendacky@amd.com>,
Borislav Petkov <bp@suse.de>, Alexander Graf <agraf@suse.de>,
Bruce Rogers <brogers@suse.com>,
Richard Henderson <rth@twiddle.net>
Subject: Re: [Qemu-devel] [PATCH v9 16/29] sev/i386: add command to encrypt guest memory region
Date: Fri, 16 Feb 2018 15:47:02 +0000 [thread overview]
Message-ID: <20180216154702.GC2308@work-vm> (raw)
In-Reply-To: <20180215153955.3253-17-brijesh.singh@amd.com>
* Brijesh Singh (brijesh.singh@amd.com) wrote:
> The KVM_SEV_LAUNCH_UPDATE_DATA command is used to encrypt a guest memory
> region using the VM Encryption Key created using LAUNCH_START.
>
> Cc: Paolo Bonzini <pbonzini@redhat.com>
> Cc: Richard Henderson <rth@twiddle.net>
> Cc: Eduardo Habkost <ehabkost@redhat.com>
> Signed-off-by: Brijesh Singh <brijesh.singh@amd.com>
> ---
> accel/kvm/kvm-all.c | 2 ++
> include/sysemu/sev.h | 1 +
> stubs/sev.c | 5 +++++
> target/i386/sev.c | 49 ++++++++++++++++++++++++++++++++++++++++++++++++
> target/i386/trace-events | 1 +
> 5 files changed, 58 insertions(+)
>
> diff --git a/accel/kvm/kvm-all.c b/accel/kvm/kvm-all.c
> index 4468c8fe002c..4974c00c46fb 100644
> --- a/accel/kvm/kvm-all.c
> +++ b/accel/kvm/kvm-all.c
> @@ -1679,6 +1679,8 @@ static int kvm_init(MachineState *ms)
> if (!kvm_state->memcrypt_handle) {
> goto err;
> }
> +
> + kvm_state->memcrypt_encrypt_data = sev_encrypt_data;
> }
>
> ret = kvm_arch_init(ms, s);
> diff --git a/include/sysemu/sev.h b/include/sysemu/sev.h
> index 5c8c549b68ec..c16102b05ec4 100644
> --- a/include/sysemu/sev.h
> +++ b/include/sysemu/sev.h
> @@ -69,5 +69,6 @@ struct SEVState {
> typedef struct SEVState SEVState;
>
> void *sev_guest_init(const char *id);
> +int sev_encrypt_data(void *handle, uint8_t *ptr, uint64_t len);
>
> #endif
> diff --git a/stubs/sev.c b/stubs/sev.c
> index 24c7b0c3e04d..74182bb545e2 100644
> --- a/stubs/sev.c
> +++ b/stubs/sev.c
> @@ -15,6 +15,11 @@
> #include "qemu-common.h"
> #include "sysemu/sev.h"
>
> +int sev_encrypt_data(void *handle, uint8_t *ptr, uint64_t len)
> +{
> + return 1;
> +}
> +
> SevState sev_get_current_state(void)
> {
> return SEV_STATE_UNINIT;
> diff --git a/target/i386/sev.c b/target/i386/sev.c
> index 6f767084fd57..04a64b5bc61d 100644
> --- a/target/i386/sev.c
> +++ b/target/i386/sev.c
> @@ -90,6 +90,12 @@ fw_error_to_str(int code)
> return sev_fw_errlist[code];
> }
>
> +static bool
> +sev_check_state(SevState state)
> +{
> + return current_sev_guest_state == state ? true : false;
> +}
> +
> static void
> sev_set_guest_state(SevState new_state)
> {
> @@ -466,6 +472,36 @@ sev_launch_start(SEVState *s)
> return 0;
> }
>
> +static int
> +sev_launch_update_data(uint8_t *addr, uint64_t len)
> +{
> + int ret, fw_error;
> + struct kvm_sev_launch_update_data *update;
> +
> + if (addr == NULL || len <= 0) {
> + return 1;
> + }
> +
> + update = g_malloc0(sizeof(*update));
> + if (!update) {
> + return 1;
> + }
>
Keep checking for the g_malloc0 use - it will never return NULL;
if you want it to be safe from running out of memory use g_try_malloc0
otherwise you can just remove the !update check.
Also it's better to use the g_new0 macro (or g_try_new0) - it's neater
and avoids the whole sizeof thing.
(You have that in a bunch of the patches)
Dave
> + update->uaddr = (__u64)addr;
> + update->len = len;
> + trace_kvm_sev_launch_update_data(addr, len);
> + ret = sev_ioctl(KVM_SEV_LAUNCH_UPDATE_DATA, update, &fw_error);
> + if (ret) {
> + error_report("%s: LAUNCH_UPDATE ret=%d fw_error=%d '%s'",
> + __func__, ret, fw_error, fw_error_to_str(fw_error));
> + goto err;
> + }
> +
> +err:
> + g_free(update);
> + return ret;
> +}
> +
> void *
> sev_guest_init(const char *id)
> {
> @@ -540,6 +576,19 @@ err:
> return NULL;
> }
>
> +int
> +sev_encrypt_data(void *handle, uint8_t *ptr, uint64_t len)
> +{
> + assert(handle);
> +
> + /* if SEV is in update state then encrypt the data else do nothing */
> + if (sev_check_state(SEV_STATE_LUPDATE)) {
> + return sev_launch_update_data(ptr, len);
> + }
> +
> + return 0;
> +}
> +
> static void
> sev_register_types(void)
> {
> diff --git a/target/i386/trace-events b/target/i386/trace-events
> index 9402251e9991..c0cd8e93217f 100644
> --- a/target/i386/trace-events
> +++ b/target/i386/trace-events
> @@ -12,3 +12,4 @@ kvm_memcrypt_register_region(void *addr, size_t len) "addr %p len 0x%lu"
> kvm_memcrypt_unregister_region(void *addr, size_t len) "addr %p len 0x%lu"
> kvm_sev_change_state(const char *old, const char *new) "%s -> %s"
> kvm_sev_launch_start(int policy, void *session, void *pdh) "policy 0x%x session %p pdh %p"
> +kvm_sev_launch_update_data(void *addr, uint64_t len) "addr %p len 0x%" PRIu64
> --
> 2.14.3
>
--
Dr. David Alan Gilbert / dgilbert@redhat.com / Manchester, UK
next prev parent reply other threads:[~2018-02-16 15:47 UTC|newest]
Thread overview: 34+ messages / expand[flat|nested] mbox.gz Atom feed top
2018-02-15 15:39 [Qemu-devel] [PATCH v9 00/29] x86: Secure Encrypted Virtualization (AMD) Brijesh Singh
2018-02-15 15:39 ` [Qemu-devel] [PATCH v9 01/29] memattrs: add debug attribute Brijesh Singh
2018-02-15 15:39 ` [Qemu-devel] [PATCH v9 02/29] exec: add ram_debug_ops support Brijesh Singh
2018-02-15 15:39 ` [Qemu-devel] [PATCH v9 03/29] exec: add debug version of physical memory read and write API Brijesh Singh
2018-02-15 15:39 ` [Qemu-devel] [PATCH v9 04/29] monitor/i386: use debug APIs when accessing guest memory Brijesh Singh
2018-02-16 16:01 ` Dr. David Alan Gilbert
2018-02-15 15:39 ` [Qemu-devel] [PATCH v9 05/29] machine: add -memory-encryption property Brijesh Singh
2018-02-15 15:39 ` [Qemu-devel] [PATCH v9 06/29] kvm: update kvm.h to include memory encryption ioctls Brijesh Singh
2018-02-15 15:39 ` [Qemu-devel] [PATCH v9 07/29] docs: add AMD Secure Encrypted Virtualization (SEV) Brijesh Singh
2018-02-15 15:39 ` [Qemu-devel] [PATCH v9 08/29] target/i386: add Secure Encrypted Virtulization (SEV) object Brijesh Singh
2018-02-15 15:39 ` [Qemu-devel] [PATCH v9 09/29] qmp: add query-sev command Brijesh Singh
2018-02-15 15:39 ` [Qemu-devel] [PATCH v9 10/29] sev/i386: add command to initialize the memory encryption context Brijesh Singh
2018-02-15 15:39 ` [Qemu-devel] [PATCH v9 11/29] qmp: populate SevInfo fields with SEV guest information Brijesh Singh
2018-02-15 15:39 ` [Qemu-devel] [PATCH v9 12/29] sev/i386: register the guest memory range which may contain encrypted data Brijesh Singh
2018-02-15 15:39 ` [Qemu-devel] [PATCH v9 13/29] kvm: introduce memory encryption APIs Brijesh Singh
2018-02-15 15:39 ` [Qemu-devel] [PATCH v9 14/29] hmp: add 'info sev' command Brijesh Singh
2018-02-16 17:01 ` Dr. David Alan Gilbert
2018-02-15 15:39 ` [Qemu-devel] [PATCH v9 15/29] sev/i386: add command to create launch memory encryption context Brijesh Singh
2018-02-15 15:39 ` [Qemu-devel] [PATCH v9 16/29] sev/i386: add command to encrypt guest memory region Brijesh Singh
2018-02-16 15:47 ` Dr. David Alan Gilbert [this message]
2018-02-16 23:54 ` Brijesh Singh
2018-02-27 15:44 ` Dr. David Alan Gilbert
2018-02-15 15:39 ` [Qemu-devel] [PATCH v9 17/29] target/i386: encrypt bios rom Brijesh Singh
2018-02-15 15:39 ` [Qemu-devel] [PATCH v9 18/29] sev/i386: add support to LAUNCH_MEASURE command Brijesh Singh
2018-02-15 15:39 ` [Qemu-devel] [PATCH v9 19/29] sev/i386: finalize the SEV guest launch flow Brijesh Singh
2018-02-15 15:39 ` [Qemu-devel] [PATCH v9 20/29] hw/i386: set ram_debug_ops when memory encryption is enabled Brijesh Singh
2018-02-15 15:39 ` [Qemu-devel] [PATCH v9 21/29] sev/i386: add debug encrypt and decrypt commands Brijesh Singh
2018-02-15 15:39 ` [Qemu-devel] [PATCH v9 22/29] target/i386: clear C-bit when walking SEV guest page table Brijesh Singh
2018-02-15 15:39 ` [Qemu-devel] [PATCH v9 23/29] include: add psp-sev.h header file Brijesh Singh
2018-02-15 15:39 ` [Qemu-devel] [PATCH v9 25/29] sev/i386: add support to KVM_SEV_GUEST_STATUS Brijesh Singh
2018-02-15 15:39 ` [Qemu-devel] [PATCH v9 26/29] qmp: add query-sev-launch-measure command Brijesh Singh
2018-02-15 15:39 ` [Qemu-devel] [PATCH v9 27/29] tests/qmp-test: blacklist " Brijesh Singh
2018-02-15 15:39 ` [Qemu-devel] [PATCH v9 28/29] sev/i386: add migration blocker Brijesh Singh
2018-02-15 15:39 ` [Qemu-devel] [PATCH v9 29/29] cpu/i386: populate CPUID 0x8000_001F when SEV is active Brijesh Singh
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20180216154702.GC2308@work-vm \
--to=dgilbert@redhat.com \
--cc=Thomas.Lendacky@amd.com \
--cc=agraf@suse.de \
--cc=alistair.francis@xilinx.com \
--cc=armbru@redhat.com \
--cc=berrange@redhat.com \
--cc=borntraeger@de.ibm.com \
--cc=bp@suse.de \
--cc=brijesh.singh@amd.com \
--cc=brogers@suse.com \
--cc=cornelia.huck@de.ibm.com \
--cc=crosthwaite.peter@gmail.com \
--cc=eblake@redhat.com \
--cc=edgar.iglesias@xilinx.com \
--cc=ehabkost@redhat.com \
--cc=kvm@vger.kernel.org \
--cc=marcel@redhat.com \
--cc=mst@redhat.com \
--cc=pbonzini@redhat.com \
--cc=peter.maydell@linaro.org \
--cc=qemu-devel@nongnu.org \
--cc=richard.henderson@linaro.org \
--cc=rth@twiddle.net \
--cc=stefanha@gmail.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).