[v3,23/49] i386/sev: Add a sev_snp_enabled() helper

Message ID	20240320083945.991426-24-michael.roth@amd.com (mailing list archive)
State	New, archived
Headers	show Received: from NAM04-DM6-obe.outbound.protection.outlook.com (mail-dm6nam04on2073.outbound.protection.outlook.com [40.107.102.73]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id 0D8A53FB94 for <kvm@vger.kernel.org>; Wed, 20 Mar 2024 08:46:48 +0000 (UTC) Received-SPF: Pass (protection.outlook.com: domain of amd.com designates 165.204.84.17 as permitted sender) receiver=protection.outlook.com; client-ip=165.204.84.17; helo=SATLEXMB04.amd.com; pr=C From: Michael Roth <michael.roth@amd.com> To: <qemu-devel@nongnu.org> CC: <kvm@vger.kernel.org>, Tom Lendacky <thomas.lendacky@amd.com>, "Paolo Bonzini" <pbonzini@redhat.com>, =?utf-8?q?Daniel_P_=2E_Berrang=C3=A9?= <berrange@redhat.com>, Markus Armbruster <armbru@redhat.com>, Pankaj Gupta <pankaj.gupta@amd.com>, Xiaoyao Li <xiaoyao.li@intel.com>, Isaku Yamahata <isaku.yamahata@linux.intel.com> Subject: [PATCH v3 23/49] i386/sev: Add a sev_snp_enabled() helper Date: Wed, 20 Mar 2024 03:39:19 -0500 Message-ID: <20240320083945.991426-24-michael.roth@amd.com> In-Reply-To: <20240320083945.991426-1-michael.roth@amd.com> References: <20240320083945.991426-1-michael.roth@amd.com> Precedence: bulk MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Content-Type: text/plain
Series	Add AMD Secure Nested Paging (SEV-SNP) support \| expand [RFC,v3,00/49] Add AMD Secure Nested Paging (SEV-SNP) support [v3,01/49] Revert "linux-headers hack" from sevinit2 base tree [v3,02/49] scripts/update-linux-headers: Add setup_data.h to import list [v3,03/49] scripts/update-linux-headers: Add bits.h to file imports [v3,04/49,HACK] linux-headers: Update headers for 6.8 + kvm-coco-queue + SNP [v3,05/49,TEMP] hw/i386: Remove redeclaration of struct setup_data [v3,06/49] RAMBlock: Add support of KVM private guest memfd [v3,07/49] HostMem: Add mechanism to opt in kvm guest memfd via MachineState [v3,08/49] trace/kvm: Split address space and slot id in trace_kvm_set_user_memory() [v3,09/49] kvm: Enable KVM_SET_USER_MEMORY_REGION2 for memslot [v3,10/49] kvm: Introduce support for memory_attributes [v3,11/49] physmem: Introduce ram_block_discard_guest_memfd_range() [v3,12/49] kvm: handle KVM_EXIT_MEMORY_FAULT [v3,13/49,FIXUP] "kvm: handle KVM_EXIT_MEMORY_FAULT": drop qemu_host_page_size [v3,14/49] trace/kvm: Add trace for page convertion between shared and private [v3,15/49] kvm/memory: Make memory type private by default if it has guest memfd backend [v3,16/49] memory: Introduce memory_region_init_ram_guest_memfd() [v3,17/49] pci-host/q35: Move PAM initialization above SMRAM initialization [v3,18/49] q35: Introduce smm_ranges property for q35-pci-host [v3,19/49] kvm: Make kvm_convert_memory() obey ram_block_discard_is_enabled() [v3,20/49] trace/kvm: Add trace for KVM_EXIT_MEMORY_FAULT [v3,21/49] i386/sev: Introduce "sev-common" type to encapsulate common SEV state [v3,22/49] i386/sev: Introduce 'sev-snp-guest' object [v3,23/49] i386/sev: Add a sev_snp_enabled() helper [v3,24/49] target/i386: Add handling for KVM_X86_SNP_VM VM type [v3,25/49] i386/sev: Skip RAMBlock notifiers for SNP [v3,26/49] i386/sev: Skip machine-init-done notifiers for SNP [v3,27/49] i386/sev: Set ms->require_guest_memfd for SNP [v3,28/49] i386/sev: Disable SMM for SNP [v3,29/49] i386/sev: Don't disable block discarding for SNP [v3,30/49] i386/cpu: Set SEV-SNP CPUID bit when SNP enabled [v3,31/49] i386/sev: Update query-sev QAPI format to handle SEV-SNP [v3,32/49] i386/sev: Don't return launch measurements for SEV-SNP guests [v3,33/49] kvm: Make kvm_convert_memory() non-static [v3,34/49] i386/sev: Add KVM_EXIT_VMGEXIT handling for Page State Changes [v3,35/49] i386/sev: Add KVM_EXIT_VMGEXIT handling for Page State Changes (MSR-based) [v3,36/49] i386/sev: Add KVM_EXIT_VMGEXIT handling for Extended Guest Requests [v3,37/49] i386/sev: Add the SNP launch start context [v3,38/49] i386/sev: Add handling to encrypt/finalize guest launch data [v3,39/49] i386/sev: Set CPU state to protected once SNP guest payload is finalized [v3,40/49] hw/i386/sev: Add function to get SEV metadata from OVMF header [v3,41/49] i386/sev: Add support for populating OVMF metadata pages [v3,42/49] i386/sev: Add support for SNP CPUID validation [v3,43/49] qapi, i386: Move kernel-hashes to SevCommonProperties [v3,44/49] i386/sev: Extract build_kernel_loader_hashes [v3,45/49] i386/sev: Reorder struct declarations [v3,46/49] i386/sev: Allow measured direct kernel boot on SNP [v3,47/49] hw/i386/sev: Add support to encrypt BIOS when SEV-SNP is enabled [v3,48/49] hw/i386/sev: Use guest_memfd for legacy ROMs [v3,49/49] hw/i386: Add support for loading BIOS using guest_memfd

Message ID

20240320083945.991426-24-michael.roth@amd.com (mailing list archive)

State

New, archived

Headers

Received-SPF: Pass (protection.outlook.com: domain of amd.com designates
 165.204.84.17 as permitted sender) receiver=protection.outlook.com;
 client-ip=165.204.84.17; helo=SATLEXMB04.amd.com; pr=C
From: Michael Roth <michael.roth@amd.com>
To: <qemu-devel@nongnu.org>
CC: <kvm@vger.kernel.org>, Tom Lendacky <thomas.lendacky@amd.com>,
 "Paolo Bonzini" <pbonzini@redhat.com>,
 =?utf-8?q?Daniel_P_=2E_Berrang=C3=A9?= <berrange@redhat.com>,
 Markus Armbruster <armbru@redhat.com>, Pankaj Gupta <pankaj.gupta@amd.com>,
 Xiaoyao Li <xiaoyao.li@intel.com>,
 Isaku Yamahata <isaku.yamahata@linux.intel.com>
Subject: [PATCH v3 23/49] i386/sev: Add a sev_snp_enabled() helper
Date: Wed, 20 Mar 2024 03:39:19 -0500
Message-ID: <20240320083945.991426-24-michael.roth@amd.com>
In-Reply-To: <20240320083945.991426-1-michael.roth@amd.com>
References: <20240320083945.991426-1-michael.roth@amd.com>
Precedence: bulk
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
Content-Type: text/plain
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 20 Mar 2024 08:46:44.3142
 (UTC)
X-MS-Exchange-CrossTenant-Network-Message-Id: 
 ae25f0f3-f6cf-45e0-1bc1-08dc48ba455c
X-MS-Exchange-CrossTenant-Id: 3dd8961f-e488-4e60-8e11-a82d994e183d
X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: 
 TenantId=3dd8961f-e488-4e60-8e11-a82d994e183d;Ip=[165.204.84.17];Helo=[SATLEXMB04.amd.com]
X-MS-Exchange-CrossTenant-AuthSource: 
	MWH0EPF000A6730.namprd04.prod.outlook.com
X-MS-Exchange-CrossTenant-AuthAs: Anonymous
X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem
X-MS-Exchange-Transport-CrossTenantHeadersStamped: PH7PR12MB6763

Series

Add AMD Secure Nested Paging (SEV-SNP) support | expand

Commit Message

Michael Roth March 20, 2024, 8:39 a.m. UTC

Add a simple helper to check if the current guest type is SNP. Also have
SNP-enabled imply that SEV-ES is enabled as well, and fix up any places
where the sev_es_enabled() check is expecting a pure/non-SNP guest.

Signed-off-by: Michael Roth <michael.roth@amd.com>
---
 target/i386/sev.c | 13 ++++++++++++-
 target/i386/sev.h |  2 ++
 2 files changed, 14 insertions(+), 1 deletion(-)

Comments

Daniel P. Berrangé March 20, 2024, 12:35 p.m. UTC | #1

On Wed, Mar 20, 2024 at 03:39:19AM -0500, Michael Roth wrote:
> Add a simple helper to check if the current guest type is SNP. Also have
> SNP-enabled imply that SEV-ES is enabled as well, and fix up any places
> where the sev_es_enabled() check is expecting a pure/non-SNP guest.
> 
> Signed-off-by: Michael Roth <michael.roth@amd.com>
> ---
>  target/i386/sev.c | 13 ++++++++++++-
>  target/i386/sev.h |  2 ++
>  2 files changed, 14 insertions(+), 1 deletion(-)
> 
> diff --git a/target/i386/sev.c b/target/i386/sev.c
> index 7e6dab642a..2eb13ba639 100644
> --- a/target/i386/sev.c
> +++ b/target/i386/sev.c


> @@ -933,7 +942,9 @@ static int sev_kvm_init(ConfidentialGuestSupport *cgs, Error **errp)
>                           __func__);
>              goto err;
>          }
> +    }
>  
> +    if (sev_es_enabled() && !sev_snp_enabled()) {
>          if (!(status.flags & SEV_STATUS_FLAGS_CONFIG_ES)) {
>              error_report("%s: guest policy requires SEV-ES, but "
>                           "host SEV-ES support unavailable",

Opps, pre-existing bug here - this method has an 'Error **errp'
parameter, so should be using 'error_report'.

There are several more examples of this in this method that
predate your patch series.  Can you put a patch at the start
of this series that fixes them before introducing SNP.


With regards,
Daniel

Michael Roth March 20, 2024, 10:11 p.m. UTC | #2

On Wed, Mar 20, 2024 at 12:35:09PM +0000, Daniel P. Berrangé wrote:
> On Wed, Mar 20, 2024 at 03:39:19AM -0500, Michael Roth wrote:
> > Add a simple helper to check if the current guest type is SNP. Also have
> > SNP-enabled imply that SEV-ES is enabled as well, and fix up any places
> > where the sev_es_enabled() check is expecting a pure/non-SNP guest.
> > 
> > Signed-off-by: Michael Roth <michael.roth@amd.com>
> > ---
> >  target/i386/sev.c | 13 ++++++++++++-
> >  target/i386/sev.h |  2 ++
> >  2 files changed, 14 insertions(+), 1 deletion(-)
> > 
> > diff --git a/target/i386/sev.c b/target/i386/sev.c
> > index 7e6dab642a..2eb13ba639 100644
> > --- a/target/i386/sev.c
> > +++ b/target/i386/sev.c
> 
> 
> > @@ -933,7 +942,9 @@ static int sev_kvm_init(ConfidentialGuestSupport *cgs, Error **errp)
> >                           __func__);
> >              goto err;
> >          }
> > +    }
> >  
> > +    if (sev_es_enabled() && !sev_snp_enabled()) {
> >          if (!(status.flags & SEV_STATUS_FLAGS_CONFIG_ES)) {
> >              error_report("%s: guest policy requires SEV-ES, but "
> >                           "host SEV-ES support unavailable",
> 
> Opps, pre-existing bug here - this method has an 'Error **errp'
> parameter, so should be using 'error_report'.
> 
> There are several more examples of this in this method that
> predate your patch series.  Can you put a patch at the start
> of this series that fixes them before introducing SNP.

Sure, will add a pre-patch to fix up all the pre-existing issues
you've noted.

-Mike

> 
> 
> With regards,
> Daniel
> -- 
> |: https://berrange.com      -o-    https://www.flickr.com/photos/dberrange :|
> |: https://libvirt.org         -o-            https://fstop138.berrange.com :|
> |: https://entangle-photo.org    -o-    https://www.instagram.com/dberrange :|
>

diff --git a/target/i386/sev.c b/target/i386/sev.c
index 7e6dab642a..2eb13ba639 100644
--- a/target/i386/sev.c
+++ b/target/i386/sev.c
@@ -316,12 +316,21 @@  sev_enabled(void)
     return !!object_dynamic_cast(OBJECT(cgs), TYPE_SEV_COMMON);
 }
 
+bool
+sev_snp_enabled(void)
+{
+    ConfidentialGuestSupport *cgs = MACHINE(qdev_get_machine())->cgs;
+
+    return !!object_dynamic_cast(OBJECT(cgs), TYPE_SEV_SNP_GUEST);
+}
+
 bool
 sev_es_enabled(void)
 {
     ConfidentialGuestSupport *cgs = MACHINE(qdev_get_machine())->cgs;
 
-    return sev_enabled() && (SEV_GUEST(cgs)->policy & SEV_POLICY_ES);
+    return sev_snp_enabled() ||
+            (sev_enabled() && SEV_GUEST(cgs)->policy & SEV_POLICY_ES);
 }
 
 uint32_t
@@ -933,7 +942,9 @@  static int sev_kvm_init(ConfidentialGuestSupport *cgs, Error **errp)
                          __func__);
             goto err;
         }
+    }
 
+    if (sev_es_enabled() && !sev_snp_enabled()) {
         if (!(status.flags & SEV_STATUS_FLAGS_CONFIG_ES)) {
             error_report("%s: guest policy requires SEV-ES, but "
                          "host SEV-ES support unavailable",
diff --git a/target/i386/sev.h b/target/i386/sev.h
index bedc667eeb..94295ee74f 100644
--- a/target/i386/sev.h
+++ b/target/i386/sev.h
@@ -45,9 +45,11 @@  typedef struct SevKernelLoaderContext {
 #ifdef CONFIG_SEV
 bool sev_enabled(void);
 bool sev_es_enabled(void);
+bool sev_snp_enabled(void);
 #else
 #define sev_enabled() 0
 #define sev_es_enabled() 0
+#define sev_snp_enabled() 0
 #endif
 
 uint32_t sev_get_cbit_position(void);

[v3,23/49] i386/sev: Add a sev_snp_enabled() helper

Commit Message

Comments

Patch