On Tue, Mar 12, 2024 at 03:44:32PM +0800, Xiaoyao Li <[email protected]> wrote:
> On 3/11/2024 5:27 PM, Daniel P. Berrangé wrote: > > On Thu, Feb 29, 2024 at 01:37:10AM -0500, Xiaoyao Li wrote: > > > From: Isaku Yamahata <[email protected]> > > > > > > Add property "quote-generation-socket" to tdx-guest, which is a property > > > of type SocketAddress to specify Quote Generation Service(QGS). > > > > > > On request of GetQuote, it connects to the QGS socket, read request > > > data from shared guest memory, send the request data to the QGS, > > > and store the response into shared guest memory, at last notify > > > TD guest by interrupt. > > > > > > command line example: > > > qemu-system-x86_64 \ > > > -object > > > '{"qom-type":"tdx-guest","id":"tdx0","quote-generation-socket":{"type": > > > "vsock", "cid":"1","port":"1234"}}' \ > > > > Can you illustrate this with 'unix' sockets, not 'vsock'. > > Are you suggesting only updating the commit message to an example of unix > socket? Or you want the code to test with some unix socket QGS? > > (It seems the QGS I got for testing, only supports vsock socket. Because at > the time when it got developed, it was supposed to communicate with drivers > inside TD guest directly not via VMM (KVM+QEMU). Anyway, I will talk to > internal folks to see if any plan to support unix socket.) You can use small utility to proxy sockets for testing purpose. The famous one is socat or nmap ncat. They support vsock. At least their latest version does. QGS <-vsock-> socat <-unix domain-> qemu -- Isaku Yamahata <[email protected]>
