On 7/11/19 4:59 AM, Dr. David Alan Gilbert wrote: > * Singh, Brijesh (brijesh.si...@amd.com) wrote: >> AMD SEV encrypts the memory of VMs and because this encryption is done using >> an address tweak, the hypervisor will not be able to simply copy ciphertext >> between machines to migrate a VM. Instead the AMD SEV Key Management API >> provides a set of functions which the hypervisor can use to package a >> guest encrypted pages for migration, while maintaining the confidentiality >> provided by AMD SEV. >> >> The patch series add the support required in Qemu to perform the SEV >> guest live migration. Before initiating the live migration a user >> should use newly added 'migrate-set-sev-info' command to pass the >> target machines certificate chain. See the docs/amd-memory-encryption.txt >> for further details. > > Note the two patchew errors: > a) Mostly formatting; 80 char lines, /* comments etc - you should > check your patches using scripts/checkpatch.pl to get rid of that > lot. > > b) There are some build errors on non-x86 softmmu builds. >
Dave, thanks for reviews. I will fix these in next version.