Re: [for-5.2 v4 08/10] spapr: PEF: block migration

qemu-ppc

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [for-5.2 v4 08/10] spapr: PEF: block migration

From:	Dr. David Alan Gilbert
Subject:	Re: [for-5.2 v4 08/10] spapr: PEF: block migration
Date:	Mon, 27 Jul 2020 16:01:57 +0100
User-agent:	Mutt/1.14.5 (2020-06-23)

* David Gibson (david@gibson.dropbear.id.au) wrote:
> We haven't yet implemented the fairly involved handshaking that will be
> needed to migrate PEF protected guests.  For now, just use a migration
> blocker so we get a meaningful error if someone attempts this (this is the
> same approach used by AMD SEV).
> 
> Signed-off-by: David Gibson <david@gibson.dropbear.id.au>
> ---
>  target/ppc/pef.c | 6 ++++++
>  1 file changed, 6 insertions(+)
> 
> diff --git a/target/ppc/pef.c b/target/ppc/pef.c
> index 53a6af0347..6a50efd580 100644
> --- a/target/ppc/pef.c
> +++ b/target/ppc/pef.c
> @@ -36,6 +36,8 @@ struct PefGuestState {
>      Object parent_obj;
>  };
>  
> +static Error *pef_mig_blocker;
> +
>  static int pef_kvm_init(HostTrustLimitation *gmpo, Error **errp)
>  {
>      if (!kvm_check_extension(kvm_state, KVM_CAP_PPC_SECURE_GUEST)) {
> @@ -52,6 +54,10 @@ static int pef_kvm_init(HostTrustLimitation *gmpo, Error 
> **errp)
>          }
>      }
>  
> +    /* add migration blocker */
> +    error_setg(&pef_mig_blocker, "PEF: Migration is not implemented");
> +    migrate_add_blocker(pef_mig_blocker, &error_abort);
> +

Reviewed-by: Dr. David Alan Gilbert <dgilbert@redhat.com>

You might want that to be &error_fatal rather than error_abort; I think
someone could trigger it just by using --only-migratable together with
your pef device?

(I previously asked whether this would trigger with -cpu host; I hadn't
noticed this was based on the device rather than the CPU flag that said
whether you had the feature)

Dave

>      return 0;
>  }
>  
> -- 
> 2.26.2
> 
--
Dr. David Alan Gilbert / dgilbert@redhat.com / Manchester, UK

[Prev in Thread]

Current Thread

[Next in Thread]

[for-5.2 v4 00/10] Generalize memory encryption models, David Gibson, 2020/07/23
- [for-5.2 v4 04/10] host trust limitation: Rework the "memory-encryption" property, David Gibson, 2020/07/23
- [for-5.2 v4 02/10] host trust limitation: Handle memory encryption via interface, David Gibson, 2020/07/23
- [for-5.2 v4 03/10] host trust limitation: Move side effect out of machine_set_memory_encryption(), David Gibson, 2020/07/23
- [for-5.2 v4 06/10] host trust limitation: Add Error ** to HostTrustLimitation::kvm_init, David Gibson, 2020/07/23
- [for-5.2 v4 08/10] spapr: PEF: block migration, David Gibson, 2020/07/23
  - Re: [for-5.2 v4 08/10] spapr: PEF: block migration, Dr. David Alan Gilbert <=
- [for-5.2 v4 01/10] host trust limitation: Introduce new host trust limitation interface, David Gibson, 2020/07/23
- [for-5.2 v4 07/10] spapr: Add PEF based host trust limitation, David Gibson, 2020/07/23
- [for-5.2 v4 10/10] s390: Recognize host-trust-limitation option, David Gibson, 2020/07/23
  - Re: [for-5.2 v4 10/10] s390: Recognize host-trust-limitation option, Cornelia Huck, 2020/07/27
- [for-5.2 v4 09/10] host trust limitation: Alter virtio default properties for protected guests, David Gibson, 2020/07/23
  - Re: [for-5.2 v4 09/10] host trust limitation: Alter virtio default properties for protected guests, Dr. David Alan Gilbert, 2020/07/27
- [for-5.2 v4 05/10] host trust limitation: Decouple kvm_memcrypt_*() helpers from KVM, David Gibson, 2020/07/23

Prev by Date: Re: [PATCH v3 3/8] ppc/spapr: Use start-powered-off CPUState property
Next by Date: Re: [for-5.2 v4 09/10] host trust limitation: Alter virtio default properties for protected guests
Previous by thread: [for-5.2 v4 08/10] spapr: PEF: block migration
Next by thread: [for-5.2 v4 01/10] host trust limitation: Introduce new host trust limitation interface
Index(es):
- Date
- Thread