[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Qemu-devel] [PATCH v2 00/13] Add SEV guest live migration support
From: |
Singh, Brijesh |
Subject: |
Re: [Qemu-devel] [PATCH v2 00/13] Add SEV guest live migration support |
Date: |
Thu, 11 Jul 2019 19:44:46 +0000 |
On 7/11/19 4:59 AM, Dr. David Alan Gilbert wrote:
> * Singh, Brijesh (address@hidden) wrote:
>> AMD SEV encrypts the memory of VMs and because this encryption is done using
>> an address tweak, the hypervisor will not be able to simply copy ciphertext
>> between machines to migrate a VM. Instead the AMD SEV Key Management API
>> provides a set of functions which the hypervisor can use to package a
>> guest encrypted pages for migration, while maintaining the confidentiality
>> provided by AMD SEV.
>>
>> The patch series add the support required in Qemu to perform the SEV
>> guest live migration. Before initiating the live migration a user
>> should use newly added 'migrate-set-sev-info' command to pass the
>> target machines certificate chain. See the docs/amd-memory-encryption.txt
>> for further details.
>
> Note the two patchew errors:
> a) Mostly formatting; 80 char lines, /* comments etc - you should
> check your patches using scripts/checkpatch.pl to get rid of that
> lot.
>
> b) There are some build errors on non-x86 softmmu builds.
>
Dave, thanks for reviews. I will fix these in next version.
- [Qemu-devel] [PATCH v2 07/13] target/i386: sev: do not create launch context for an incoming guest, (continued)
- [Qemu-devel] [PATCH v2 07/13] target/i386: sev: do not create launch context for an incoming guest, Singh, Brijesh, 2019/07/10
- [Qemu-devel] [PATCH v2 08/13] misc.json: add migrate-set-sev-info command, Singh, Brijesh, 2019/07/10
- [Qemu-devel] [PATCH v2 09/13] target/i386: sev: add support to encrypt the outgoing page, Singh, Brijesh, 2019/07/10
- [Qemu-devel] [PATCH v2 13/13] target/i386: sev: remove migration blocker, Singh, Brijesh, 2019/07/10
- [Qemu-devel] [PATCH v2 10/13] target/i386: sev: add support to load incoming encrypted page, Singh, Brijesh, 2019/07/10
- [Qemu-devel] [PATCH v2 12/13] migration: add support to migrate page encryption bitmap, Singh, Brijesh, 2019/07/10
- [Qemu-devel] [PATCH v2 11/13] kvm: introduce high-level API to migrate the page encryption bitmap, Singh, Brijesh, 2019/07/10
- Re: [Qemu-devel] [PATCH v2 00/13] Add SEV guest live migration support, no-reply, 2019/07/10
- Re: [Qemu-devel] [PATCH v2 00/13] Add SEV guest live migration support, no-reply, 2019/07/10
- Re: [Qemu-devel] [PATCH v2 00/13] Add SEV guest live migration support, Dr. David Alan Gilbert, 2019/07/11
- Re: [Qemu-devel] [PATCH v2 00/13] Add SEV guest live migration support,
Singh, Brijesh <=