amdsev: Replace implementation ioctls with sev library equivalents

containers / libkrun

A dynamic library providing Virtualization-based process isolation capabilities

Apache License 2.0

901 stars 74 forks source link

amdsev: Replace implementation ioctls with sev library equivalents #81

Closed tylerfanelli closed 2 years ago

tylerfanelli commented 2 years ago

This relies on changes from the sev library and an update to 1.0. There will also be an upcoming SNP implementation.

tylerfanelli commented 2 years ago

Blocked by: https://github.com/virtee/sev/issues/27

tylerfanelli commented 2 years ago

cc @slp

I will be fixing the code quality issues once the sev library is updated. Also LAUNCH_UPDATE still must be updated.

I've fully tested on virtlab.

tylerfanelli commented 2 years ago

@slp This PR is now ready for review. Only the LAUNCH_UPDATE ioctl has been kept in (as we previously discussed). I only need to update the sev library to 1.0.0 (planning to do within the next couple of days). I will address UPDATE's usage (plus attestation needs) in the SNP patches.

tylerfanelli commented 2 years ago

Closing and grouping these commits with the AMD SEV-SNP patches PR.