Re: feature - native softraid-crypto for VMM virtio disk
On Thu, Feb 15, 2018 at 12:05:31PM -0800, Mike Larkin wrote: > On Thu, Feb 15, 2018 at 09:50:19AM -0500, Jiri B wrote: > > > > Hi, > > > > one cannot boot vmm-bios if not having newer hw than Westmere CPU. > > And booting host kernel for a VM which has FDE does not work, that's clear. > > > > What about a feature to support somehow softraid-crypto (or similar) for > > vmctl create? > > > > A variation for native LUKS support in QEMU: > > > > qemu ... -object secret,id=sec0,data='secretpass' \ > > -drive driver=luks,key-secret=sec0,file=diskfile > > > > The use case here is not to have plain VMM disk file on > > host (I'm using softraid-crypto for underlying device now). > > > > Jiri > > > > while that might be interesting and I'd be receptive to seeing a diff to do > that, I think a better use of time would be to port x86emu into vmm and > let that do that bios part for CPUs < westmere. Plus, that will be needed > for SMP bringup eventually anyway. > > -ml > That should have read "port x86emu into vmd" not "vmm". No reason to run that goop in the kernel if we don't have to (yes, I know we use it in the kernel for VGA post after un-zzz on some rare machines, but I'd prefer to not do that for this scenario if not absolutely needed).
Re: feature - native softraid-crypto for VMM virtio disk
On Thu, Feb 15, 2018 at 09:50:19AM -0500, Jiri B wrote: > > Hi, > > one cannot boot vmm-bios if not having newer hw than Westmere CPU. > And booting host kernel for a VM which has FDE does not work, that's clear. > > What about a feature to support somehow softraid-crypto (or similar) for > vmctl create? > > A variation for native LUKS support in QEMU: > > qemu ... -object secret,id=sec0,data='secretpass' \ > -drive driver=luks,key-secret=sec0,file=diskfile > > The use case here is not to have plain VMM disk file on > host (I'm using softraid-crypto for underlying device now). > > Jiri > while that might be interesting and I'd be receptive to seeing a diff to do that, I think a better use of time would be to port x86emu into vmm and let that do that bios part for CPUs < westmere. Plus, that will be needed for SMP bringup eventually anyway. -ml
feature - native softraid-crypto for VMM virtio disk
Hi, one cannot boot vmm-bios if not having newer hw than Westmere CPU. And booting host kernel for a VM which has FDE does not work, that's clear. What about a feature to support somehow softraid-crypto (or similar) for vmctl create? A variation for native LUKS support in QEMU: qemu ... -object secret,id=sec0,data='secretpass' \ -drive driver=luks,key-secret=sec0,file=diskfile The use case here is not to have plain VMM disk file on host (I'm using softraid-crypto for underlying device now). Jiri
