target/i386: add Secure Encrypted Virtualization (SEV) object
Add a new memory encryption object 'sev-guest'. The object will be used
to create encrypted VMs on AMD EPYC CPU. The object provides the properties
to pass guest owner's public Diffie-hellman key, guest policy and session
information required to create the memory encryption context within the
SEV firmware.
e.g to launch SEV guest
# $QEMU \
-object sev-guest,id=sev0 \
-machine ....,memory-encryption=sev0
Cc: Paolo Bonzini <pbonzini@redhat.com>
Cc: Richard Henderson <rth@twiddle.net>
Cc: Eduardo Habkost <ehabkost@redhat.com>
Signed-off-by: 
Brijesh Singh <brijesh.singh@amd.com>
Signed-off-by: Paolo Bonzini <pbonzini@redhat.com>
Showing
- default-configs/i386-softmmu.mak 1 addition, 0 deletionsdefault-configs/i386-softmmu.mak
- default-configs/x86_64-softmmu.mak 1 addition, 0 deletionsdefault-configs/x86_64-softmmu.mak
- docs/amd-memory-encryption.txt 17 additions, 0 deletionsdocs/amd-memory-encryption.txt
- qemu-options.hx 44 additions, 0 deletionsqemu-options.hx
- target/i386/Makefile.objs 1 addition, 0 deletionstarget/i386/Makefile.objs
- target/i386/sev.c 228 additions, 0 deletionstarget/i386/sev.c
- target/i386/sev_i386.h 61 additions, 0 deletionstarget/i386/sev_i386.h
Loading
Please register or sign in to comment