Re: [PATCH v11 03/16] s390x: protvirt: Support unpack facility

2020-03-23 Thread Janosch Frank
On 3/23/20 8:37 AM, Christian Borntraeger wrote: > > > On 23.03.20 08:15, Christian Borntraeger wrote: >> [...] >> +int s390_ipl_prepare_pv_header(void) +{ +IplParameterBlock *ipib = s390_ipl_get_iplb_pv(); +IPLBlockPV *ipib_pv = >pv; +void *hdr =

Re: [PATCH v11 03/16] s390x: protvirt: Support unpack facility

2020-03-23 Thread Christian Borntraeger
On 23.03.20 08:15, Christian Borntraeger wrote: > [...] > >>> +int s390_ipl_prepare_pv_header(void) >>> +{ >>> +IplParameterBlock *ipib = s390_ipl_get_iplb_pv(); >>> +IPLBlockPV *ipib_pv = >pv; >>> +void *hdr = g_malloc(ipib_pv->pv_header_len); >>> +int rc; >>> + >>> +

Re: [PATCH v11 03/16] s390x: protvirt: Support unpack facility

2020-03-23 Thread Christian Borntraeger
[...] >> +int s390_ipl_prepare_pv_header(void) >> +{ >> +IplParameterBlock *ipib = s390_ipl_get_iplb_pv(); >> +IPLBlockPV *ipib_pv = >pv; >> +void *hdr = g_malloc(ipib_pv->pv_header_len); >> +int rc; >> + >> +cpu_physical_memory_read(ipib_pv->pv_header_addr, hdr, >> +

Re: [PATCH v11 03/16] s390x: protvirt: Support unpack facility

2020-03-20 Thread Bruce Rogers
On Thu, 2020-03-19 at 09:19 -0400, Janosch Frank wrote: > The unpack facility provides the means to setup a protected guest. A > protected guest cannot be introspected by the hypervisor or any > user/administrator of the machine it is running on. > > Protected guests are encrypted at rest and

[PATCH v11 03/16] s390x: protvirt: Support unpack facility

2020-03-19 Thread Janosch Frank
The unpack facility provides the means to setup a protected guest. A protected guest cannot be introspected by the hypervisor or any user/administrator of the machine it is running on. Protected guests are encrypted at rest and need a special boot mechanism via diag308 subcode 8 and 10. Code 8