From: Jean-Philippe Brucker <jean-philippe@linaro.org>
To: Richard Henderson <richard.henderson@linaro.org>
Cc: peter.maydell@linaro.org, qemu-devel@nongnu.org,
qemu-arm@nongnu.org, pbonzini@redhat.com, eblake@redhat.com,
armbru@redhat.com, berrange@redhat.com, eduardo@habkost.net,
alex.bennee@linaro.org
Subject: Re: [RFC PATCH 04/16] hw/arm/virt: Add support for Arm RME
Date: Wed, 8 Feb 2023 12:08:23 +0000 [thread overview]
Message-ID: <Y+OQt1r2f9hATsMQ@myrica> (raw)
In-Reply-To: <6b7d1132-9274-c019-440a-8deb84189b21@linaro.org>
On Fri, Jan 27, 2023 at 11:07:35AM -1000, Richard Henderson wrote:
> > + /*
> > + * Since the devicetree is included in the initial measurement, it must
> > + * not contain random data.
> > + */
> > + if (virt_machine_is_confidential(vms)) {
> > + vms->dtb_randomness = false;
> > + }
>
> This property is default off, and the only way it can be on is user
> argument. This should be an error, not a silent disable.
This one seems to default to true in virt_instance_init(), and I did need
to disable it in order to get deterministic measurements. Maybe I could
throw an error only when the user attempts to explicitly enables it.
> > + if (virt_machine_is_confidential(vms)) {
> > + /*
> > + * The host cannot write into a confidential guest's memory until the
> > + * guest shares it. Since the host writes the pvtime region before the
> > + * guest gets a chance to set it up, disable pvtime.
> > + */
> > + steal_time = false;
> > + }
>
> This property is default on since 5.2, so falls into a different category.
> Since 5.2 it is auto-on for 64-bit guests. Since it's auto-off for 32-bit
> guests, I don't see a problem with it being auto-off for RME guests.
>
> I do wonder if we should change it to an OnOffAuto property, just to catch silly usage.
I'll look into that
Thanks,
Jean
next prev parent reply other threads:[~2023-02-08 12:08 UTC|newest]
Thread overview: 39+ messages / expand[flat|nested] mbox.gz Atom feed top
2023-01-27 15:07 [RFC PATCH 00/16] arm: Run Arm CCA VMs with KVM Jean-Philippe Brucker
2023-01-27 15:07 ` [RFC PATCH 01/16] NOMERGE: Add KVM Arm RME definitions to Linux headers Jean-Philippe Brucker
2023-01-27 15:07 ` [RFC PATCH 02/16] target/arm: Add confidential guest support Jean-Philippe Brucker
2023-01-27 19:50 ` Richard Henderson
2023-01-28 0:03 ` Philippe Mathieu-Daudé
2023-01-27 15:07 ` [RFC PATCH 03/16] target/arm/kvm-rme: Initialize realm Jean-Philippe Brucker
2023-01-27 20:37 ` Richard Henderson
2023-02-08 12:07 ` Jean-Philippe Brucker
2023-01-27 15:07 ` [RFC PATCH 04/16] hw/arm/virt: Add support for Arm RME Jean-Philippe Brucker
2023-01-27 21:07 ` Richard Henderson
2023-02-08 12:08 ` Jean-Philippe Brucker [this message]
2023-01-27 15:07 ` [RFC PATCH 05/16] target/arm/kvm: Split kvm_arch_get/put_registers Jean-Philippe Brucker
2023-01-27 22:16 ` Richard Henderson
2023-01-27 15:07 ` [RFC PATCH 06/16] target/arm/kvm-rme: Initialize vCPU Jean-Philippe Brucker
2023-01-27 22:19 ` Richard Henderson
2023-01-27 22:37 ` Richard Henderson
2023-02-08 12:09 ` Jean-Philippe Brucker
2023-01-27 23:04 ` Richard Henderson
2023-01-27 15:07 ` [RFC PATCH 07/16] target/arm/kvm: Select RME VM type for the scratch VM Jean-Philippe Brucker
2023-01-27 22:39 ` Richard Henderson
2023-01-27 15:07 ` [RFC PATCH 08/16] target/arm/kvm-rme: Populate the realm with boot images Jean-Philippe Brucker
2023-01-27 23:54 ` Richard Henderson
2023-02-08 12:10 ` Jean-Philippe Brucker
2023-01-27 15:07 ` [RFC PATCH 09/16] hw/arm/boot: Populate realm memory " Jean-Philippe Brucker
2023-01-27 15:07 ` [RFC PATCH 10/16] target/arm/kvm-rme: Add measurement algorithm property Jean-Philippe Brucker
2023-01-28 0:04 ` Richard Henderson
2023-01-27 15:07 ` [RFC PATCH 11/16] target/arm/kvm-rme: Add Realm Personalization Value parameter Jean-Philippe Brucker
2023-01-28 0:07 ` Richard Henderson
2023-01-27 15:07 ` [RFC PATCH 12/16] target/arm/kvm-rme: Add Realm SVE vector length Jean-Philippe Brucker
2023-01-28 0:22 ` Richard Henderson
2023-01-28 0:31 ` Richard Henderson
2023-01-27 15:07 ` [RFC PATCH 13/16] target/arm/kvm-rme: Add breakpoints and watchpoints parameters Jean-Philippe Brucker
2023-01-28 0:33 ` Richard Henderson
2023-01-27 15:07 ` [RFC PATCH 14/16] target/arm/kvm-rme: Add PMU num counters parameters Jean-Philippe Brucker
2023-01-28 0:34 ` Richard Henderson
2023-01-27 15:07 ` [RFC PATCH 15/16] target/arm/kvm: Disable Realm reboot Jean-Philippe Brucker
2023-01-28 0:35 ` Richard Henderson
2023-01-27 15:07 ` [RFC PATCH 16/16] target/arm/kvm-rme: Disable readonly mappings Jean-Philippe Brucker
2023-01-28 0:54 ` Richard Henderson
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=Y+OQt1r2f9hATsMQ@myrica \
--to=jean-philippe@linaro.org \
--cc=alex.bennee@linaro.org \
--cc=armbru@redhat.com \
--cc=berrange@redhat.com \
--cc=eblake@redhat.com \
--cc=eduardo@habkost.net \
--cc=pbonzini@redhat.com \
--cc=peter.maydell@linaro.org \
--cc=qemu-arm@nongnu.org \
--cc=qemu-devel@nongnu.org \
--cc=richard.henderson@linaro.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).