From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org X-Spam-Level: X-Spam-Status: No, score=-13.8 required=3.0 tests=BAYES_00, HEADER_FROM_DIFFERENT_DOMAINS,INCLUDES_CR_TRAILER,MAILING_LIST_MULTI, MENTIONS_GIT_HOSTING,SPF_HELO_NONE,SPF_PASS,URIBL_BLOCKED autolearn=unavailable autolearn_force=no version=3.4.0 Received: from mail.kernel.org (mail.kernel.org [198.145.29.99]) by smtp.lore.kernel.org (Postfix) with ESMTP id 6F031C433E1 for ; Sun, 28 Mar 2021 21:02:59 +0000 (UTC) Received: from vger.kernel.org (vger.kernel.org [23.128.96.18]) by mail.kernel.org (Postfix) with ESMTP id 4A6EC61953 for ; Sun, 28 Mar 2021 21:02:59 +0000 (UTC) Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S230526AbhC1VCZ convert rfc822-to-8bit (ORCPT ); Sun, 28 Mar 2021 17:02:25 -0400 Received: from mga17.intel.com ([192.55.52.151]:37800 "EHLO mga17.intel.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S229655AbhC1VBr (ORCPT ); Sun, 28 Mar 2021 17:01:47 -0400 IronPort-SDR: 6IbJqmHAFKur6l2NrVxtdhybd0atGZOkZ+9ZM41Pw+ZEX0eeLmbJwgVgOGJBGlOPaLBnLNnDA9 Fvm7ozhe/eNQ== X-IronPort-AV: E=McAfee;i="6000,8403,9937"; a="171447948" X-IronPort-AV: E=Sophos;i="5.81,285,1610438400"; d="scan'208";a="171447948" Received: from orsmga006.jf.intel.com ([10.7.209.51]) by fmsmga107.fm.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 28 Mar 2021 14:01:40 -0700 IronPort-SDR: lEwi1YVQSVb9U1ij2bqtVGQALYSGjmRqDsu/8GWxCEgpBM6CM/xFRxRkZr7SU/KQXrjpz9UOeL KgbKo9xo92iw== X-ExtLoop1: 1 X-IronPort-AV: E=Sophos;i="5.81,285,1610438400"; d="scan'208";a="377894121" Received: from orsmsx603.amr.corp.intel.com ([10.22.229.16]) by orsmga006.jf.intel.com with ESMTP; 28 Mar 2021 14:01:39 -0700 Received: from orsmsx610.amr.corp.intel.com (10.22.229.23) by ORSMSX603.amr.corp.intel.com (10.22.229.16) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2106.2; Sun, 28 Mar 2021 14:01:39 -0700 Received: from orsmsx602.amr.corp.intel.com (10.22.229.15) by ORSMSX610.amr.corp.intel.com (10.22.229.23) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2106.2; Sun, 28 Mar 2021 14:01:38 -0700 Received: from orsmsx602.amr.corp.intel.com ([10.22.229.15]) by ORSMSX602.amr.corp.intel.com ([10.22.229.15]) with mapi id 15.01.2106.013; Sun, 28 Mar 2021 14:01:38 -0700 From: "Huang, Kai" To: Jarkko Sakkinen CC: "kvm@vger.kernel.org" , "x86@kernel.org" , "linux-sgx@vger.kernel.org" , "linux-kernel@vger.kernel.org" , "seanjc@google.com" , "luto@kernel.org" , "Hansen, Dave" , "Edgecombe, Rick P" , "Huang, Haitao" , "pbonzini@redhat.com" , "bp@alien8.de" , "tglx@linutronix.de" , "mingo@redhat.com" , "hpa@zytor.com" , "jethro@fortanix.com" , "b.thiel@posteo.de" , "jmattson@google.com" , "joro@8bytes.org" , "vkuznets@redhat.com" , "wanpengli@tencent.com" , "corbet@lwn.net" Subject: RE: [PATCH v3 00/25] KVM SGX virtualization support Thread-Topic: [PATCH v3 00/25] KVM SGX virtualization support Thread-Index: AQHXHJBeg1b5qDv1gUCeHjk8YQMXCaqXX9wAgAKReqA= Date: Sun, 28 Mar 2021 21:01:38 +0000 Message-ID: <490103d033674dbeb812def2def69543@intel.com> References: In-Reply-To: Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: dlp-version: 11.5.1.3 dlp-product: dlpe-windows dlp-reaction: no-action x-originating-ip: [10.108.32.68] Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 8BIT MIME-Version: 1.0 Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org > On Fri, Mar 19, 2021 at 08:29:27PM +1300, Kai Huang wrote: > > This series adds KVM SGX virtualization support. The first 14 patches > > starting with x86/sgx or x86/cpu.. are necessary changes to x86 and > > SGX core/driver to support KVM SGX virtualization, while the rest are patches > to KVM subsystem. > > > > This series is based against latest tip/x86/sgx, which has Jarkko's > > NUMA allocation support. > > > > You can also get the code from upstream branch of kvm-sgx repo on github: > > > > https://github.com/intel/kvm-sgx.git upstream > > > > It also requires Qemu changes to create VM with SGX support. You can > > find Qemu repo here: > > > > https://github.com/intel/qemu-sgx.git upstream > > > > Please refer to README.md of above qemu-sgx repo for detail on how to > > create guest with SGX support. At meantime, for your quick reference > > you can use below command to create SGX guest: > > > > #qemu-system-x86_64 -smp 4 -m 2G -drive > file=,if=virtio \ > > -cpu host,+sgx_provisionkey \ > > -sgx-epc id=epc1,memdev=mem1 \ > > -object memory-backend-epc,id=mem1,size=64M,prealloc > > > > Please note that the SGX relevant part is: > > > > -cpu host,+sgx_provisionkey \ > > -sgx-epc id=epc1,memdev=mem1 \ > > -object memory-backend-epc,id=mem1,size=64M,prealloc > > > > And you can change other parameters of your qemu command based on your > needs. > > Please also put tested-by from me to all patches (including pure KVM > patches): > > Tested-by: Jarkko Sakkinen > > I did the basic test, i.e. run selftest in a VM. I think that is sufficient at this point. > Thanks Jarkko for doing the test!