[v3] sev: enable secret injection to a self described area in OVMF

[PATCH v3 0/2] sev: enable secret injection to a self described area in OVMF

James Bottomley posted 2 patches 3 years, 3 months ago

Diff against v2
Download series mbox

Test checkpatch passed

Patches applied successfully (tree, apply log)
git fetch https://github.com/patchew-project/qemu tags/patchew/20210204193939.16617-1-jejb@linux.ibm.com

Maintainers: Richard Henderson <richard.henderson@linaro.org>, Eduardo Habkost <ehabkost@redhat.com>, Marcel Apfelbaum <marcel.apfelbaum@gmail.com>, "Michael S. Tsirkin" <mst@redhat.com>, Markus Armbruster <armbru@redhat.com>, Paolo Bonzini <pbonzini@redhat.com>, Eric Blake <eblake@redhat.com>

hw/i386/pc_sysfw.c    | 112 ++++++++++++++++++++++++++++++++++++++++++
include/hw/i386/pc.h  |   4 ++
qapi/misc-target.json |   2 +-
target/i386/monitor.c |  23 ++++++++-
4 files changed, 139 insertions(+), 2 deletions(-)

Expand all Fold all

[PATCH v3 0/2] sev: enable secret injection to a self described area in OVMF

Posted by James Bottomley 3 years, 3 months ago

v3: add bounds checking and remove misleading comment

v2: fix build issues and update comments.  Also drop the first patch
    which is now merged upstream

The two patches introduce a parser for the optional OVMF description
table which is placed just below the reset vector (the format of the
table is described in the patch itself) and also adds a hook to pull
out the description of the SEV secret area location and use it in
place of the sev-inject-launch-secret gpa.

James

---

James Bottomley (2):
  pc: add parser for OVMF reset block
  sev: update sev-inject-launch-secret to make gpa optional

 hw/i386/pc_sysfw.c    | 112 ++++++++++++++++++++++++++++++++++++++++++
 include/hw/i386/pc.h  |   4 ++
 qapi/misc-target.json |   2 +-
 target/i386/monitor.c |  23 ++++++++-
 4 files changed, 139 insertions(+), 2 deletions(-)

-- 
2.26.2

Re: [PATCH v3 0/2] sev: enable secret injection to a self described area in OVMF

Posted by Paolo Bonzini 3 years, 3 months ago

On 04/02/21 20:39, James Bottomley wrote:
> v3: add bounds checking and remove misleading comment
> 
> v2: fix build issues and update comments.  Also drop the first patch
>      which is now merged upstream
> 
> The two patches introduce a parser for the optional OVMF description
> table which is placed just below the reset vector (the format of the
> table is described in the patch itself) and also adds a hook to pull
> out the description of the SEV secret area location and use it in
> place of the sev-inject-launch-secret gpa.
> 
> James
> 
> ---
> 
> James Bottomley (2):
>    pc: add parser for OVMF reset block
>    sev: update sev-inject-launch-secret to make gpa optional
> 
>   hw/i386/pc_sysfw.c    | 112 ++++++++++++++++++++++++++++++++++++++++++
>   include/hw/i386/pc.h  |   4 ++
>   qapi/misc-target.json |   2 +-
>   target/i386/monitor.c |  23 ++++++++-
>   4 files changed, 139 insertions(+), 2 deletions(-)
> 

Queued, thanks.

Paolo