Re: [RFC PATCH 5/6] i386/sev: add support to encrypt BIOS when SEV-SNP i

qemu-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [RFC PATCH 5/6] i386/sev: add support to encrypt BIOS when SEV-SNP i

From:	Connor Kuehl
Subject:	Re: [RFC PATCH 5/6] i386/sev: add support to encrypt BIOS when SEV-SNP is enabled
Date:	Wed, 14 Jul 2021 11:08:21 -0600
User-agent:	Mozilla/5.0 (X11; Linux x86_64; rv:78.0) Gecko/20100101 Thunderbird/78.11.0

On 7/9/21 3:55 PM, Brijesh Singh wrote:
> The KVM_SEV_SNP_LAUNCH_UPDATE command is used for encrypting the bios
> image used for booting the SEV-SNP guest.
> 
> Signed-off-by: Brijesh Singh <brijesh.singh@amd.com>
> ---
>  target/i386/sev.c        | 33 ++++++++++++++++++++++++++++++++-
>  target/i386/trace-events |  1 +
>  2 files changed, 33 insertions(+), 1 deletion(-)
> 
> diff --git a/target/i386/sev.c b/target/i386/sev.c
> index 259408a8f1..41dcb084d1 100644
> --- a/target/i386/sev.c
> +++ b/target/i386/sev.c
> @@ -883,6 +883,30 @@ out:
>      return ret;
>  }
>  
> +static int
> +sev_snp_launch_update(SevGuestState *sev, uint8_t *addr, uint64_t len, int 
> type)
> +{
> +    int ret, fw_error;
> +    struct kvm_sev_snp_launch_update update = {};
> +
> +    if (!addr || !len) {
> +        return 1;

Should this be a -1? It looks like the caller checks if this function
returns < 0, but doesn't check for res == 1.

Alternatively, invoking error_report might provide more useful
information that the preconditions to this function were violated.

Connor

[Prev in Thread]

Current Thread

[Next in Thread]

Re: [RFC PATCH 2/6] i386/sev: extend sev-guest property to include SEV-SNP, (continued)
- [RFC PATCH 3/6] i386/sev: initialize SNP context, Brijesh Singh, 2021/07/09
  - Re: [RFC PATCH 3/6] i386/sev: initialize SNP context, Dov Murik, 2021/07/15
    - Re: [RFC PATCH 3/6] i386/sev: initialize SNP context, Brijesh Singh, 2021/07/15
- [RFC PATCH 4/6] i386/sev: add the SNP launch start context, Brijesh Singh, 2021/07/09
  - Re: [RFC PATCH 4/6] i386/sev: add the SNP launch start context, Dov Murik, 2021/07/19
- [RFC PATCH 5/6] i386/sev: add support to encrypt BIOS when SEV-SNP is enabled, Brijesh Singh, 2021/07/09
  - Re: [RFC PATCH 5/6] i386/sev: add support to encrypt BIOS when SEV-SNP is enabled, Connor Kuehl <=
    - Re: [RFC PATCH 5/6] i386/sev: add support to encrypt BIOS when SEV-SNP is enabled, Brijesh Singh, 2021/07/14
    - Re: [RFC PATCH 5/6] i386/sev: add support to encrypt BIOS when SEV-SNP is enabled, Dov Murik, 2021/07/15
  - Re: [RFC PATCH 5/6] i386/sev: add support to encrypt BIOS when SEV-SNP is enabled, Dov Murik, 2021/07/19
- [RFC PATCH 6/6] i386/sev: populate secrets and cpuid page and finalize the SNP launch, Brijesh Singh, 2021/07/09
  - Re: [RFC PATCH 6/6] i386/sev: populate secrets and cpuid page and finalize the SNP launch, Dr. David Alan Gilbert, 2021/07/14
    - Re: [RFC PATCH 6/6] i386/sev: populate secrets and cpuid page and finalize the SNP launch, Brijesh Singh, 2021/07/14
  - Re: [RFC PATCH 6/6] i386/sev: populate secrets and cpuid page and finalize the SNP launch, Dov Murik, 2021/07/19
    - Re: [RFC PATCH 6/6] i386/sev: populate secrets and cpuid page and finalize the SNP launch, Brijesh Singh, 2021/07/19
- Re: [RFC PATCH 0/6] Add AMD Secure Nested Paging (SEV-SNP) support, Tom Lendacky, 2021/07/12
- Re: [RFC PATCH 0/6] Add AMD Secure Nested Paging (SEV-SNP) support, Dov Murik, 2021/07/13

Prev by Date: Re: [PATCH v5 4/5] block/nbd: drop connection_co
Next by Date: Re: [PULL 0/1] qemu-ga patch queue for soft-freeze
Previous by thread: [RFC PATCH 5/6] i386/sev: add support to encrypt BIOS when SEV-SNP is enabled
Next by thread: Re: [RFC PATCH 5/6] i386/sev: add support to encrypt BIOS when SEV-SNP is enabled
Index(es):
- Date
- Thread