qemu-devel
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Qemu-devel] [PATCH v5 1/4] Provide support for the CUSE TPM

From: Stefan Berger
Subject: Re: [Qemu-devel] [PATCH v5 1/4] Provide support for the CUSE TPM
Date: Wed, 1 Mar 2017 07:25:28 -0500
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:45.0) Gecko/20100101 Thunderbird/45.4.0 
On 06/16/2016 04:25 AM, Daniel P. Berrange wrote:

On Thu, Jun 16, 2016 at 09:05:20AM +0100, Dr. David Alan Gilbert wrote:

* Stefan Berger (address@hidden) wrote:

On 06/15/2016 03:30 PM, Dr. David Alan Gilbert wrote:

<snip>


So what was the multi-instance vTPM proxy driver patch set about?

That's for containers.

Why have the two mechanisms? Can you explain how the multi-instance
proxy works; my brief reading when I saw your patch series seemed
to suggest it could be used instead of CUSE for the non-container case.

One of the key things that was/is not appealing about this CUSE approach
is that it basically invents a new ioctl() mechanism for talking to
a TPM chardev. With in-kernel vTPM support, QEMU probably doesn't need
to have any changes at all - its existing driver for talking to TPM
We still need the control channel with the vTPM to reset it upon VM reset, for getting and setting the state of the vTPM upon snapshot/suspend/resume, changing locality, etc. 

   Stefan
reply via email to
[Prev in Thread] Current Thread [Next in Thread]