igvm: Pass machine state to IGVM file processing

author Oliver Steffen <osteffen@redhat.com>

Fri, 30 Jan 2026 05:47:12 +0000 (06:47 +0100)

committer Gerd Hoffmann <kraxel@redhat.com>

Tue, 3 Feb 2026 07:32:33 +0000 (08:32 +0100)
author Oliver Steffen <osteffen@redhat.com>
Fri, 30 Jan 2026 05:47:12 +0000 (06:47 +0100)
committer Gerd Hoffmann <kraxel@redhat.com>
Tue, 3 Feb 2026 07:32:33 +0000 (08:32 +0100)
diff --git a/backends/igvm-cfg.c b/backends/igvm-cfg.c

index f236b523df3b0639b93e6fa76b93def138788dd4..64589ca34f24fd5b54f9a4cd4db1c234b7a38fa1 100644 (file)
--- a/backends/igvm-cfg.c
+++ b/backends/igvm-cfg.c
@@ -52,7 +52,7 @@ static void igvm_reset_hold(Object *obj, ResetType type)
  
      trace_igvm_reset_hold(type);
  
-    qigvm_process_file(igvm, ms->cgs, false, &error_fatal);
+    qigvm_process_file(igvm, ms, false, &error_fatal);
  }
  
  static void igvm_reset_exit(Object *obj, ResetType type)
diff --git a/backends/igvm.c b/backends/igvm.c

index ffd1c325b6618c088ac9d8aa9673aae6d306ce0d..3e7c0ea41d143c02b3f8b92ac10ceba2c5a4cbb3 100644 (file)
--- a/backends/igvm.c
+++ b/backends/igvm.c
@@ -202,7 +202,8 @@ static void *qigvm_prepare_memory(QIgvm *ctx, uint64_t addr, uint64_t size,
          g_autofree char *region_name =
              g_strdup_printf("igvm.%X", region_identifier);
          igvm_pages = g_new0(MemoryRegion, 1);
-        if (ctx->cgs && ctx->cgs->require_guest_memfd) {
+        if (ctx->machine_state->cgs &&
+            ctx->machine_state->cgs->require_guest_memfd) {
              if (!memory_region_init_ram_guest_memfd(igvm_pages, NULL,
                                                      region_name, size, errp)) {
                  return NULL;
@@ -322,7 +323,7 @@ static int qigvm_process_mem_region(QIgvm *ctx, unsigned start_index,
       * If a confidential guest support object is provided then use it to set the
       * guest state.
       */
-    if (ctx->cgs) {
+    if (ctx->machine_state->cgs) {
          cgs_page_type =
              qigvm_type_to_cgs_type(page_type, flags->unmeasured, zero);
          if (cgs_page_type < 0) {
@@ -424,7 +425,7 @@ static int qigvm_directive_vp_context(QIgvm *ctx, const uint8_t *header_data,
  
      data = (uint8_t *)igvm_get_buffer(ctx->file, data_handle);
  
-    if (ctx->cgs) {
+    if (ctx->machine_state->cgs) {
          result = ctx->cgsc->set_guest_state(
              vp_context->gpa, data, igvm_get_buffer_size(ctx->file, data_handle),
              CGS_PAGE_TYPE_VMSA, vp_context->vp_index, errp);
@@ -494,7 +495,7 @@ static int qigvm_directive_parameter_insert(QIgvm *ctx,
       * If a confidential guest support object is provided then use it to
       * set the guest state.
       */
-    if (ctx->cgs) {
+    if (ctx->machine_state->cgs) {
          result = ctx->cgsc->set_guest_state(param->gpa, region,
                                              param_entry->size,
                                              CGS_PAGE_TYPE_UNMEASURED, 0,
@@ -535,7 +536,7 @@ static int qigvm_directive_memory_map(QIgvm *ctx, const uint8_t *header_data,
      ConfidentialGuestMemoryMapEntry cgmm_entry;
      int retval = 0;
  
-    if (ctx->cgs && ctx->cgsc->get_mem_map_entry) {
+    if (ctx->machine_state->cgs && ctx->cgsc->get_mem_map_entry) {
          get_mem_map_entry = ctx->cgsc->get_mem_map_entry;
  
      } else if (target_arch() == SYS_EMU_TARGET_X86_64) {
@@ -661,7 +662,7 @@ static int qigvm_directive_required_memory(QIgvm *ctx,
      if (!region) {
          return -1;
      }
-    if (ctx->cgs) {
+    if (ctx->machine_state->cgs) {
          result =
              ctx->cgsc->set_guest_state(mem->gpa, region, mem->number_of_bytes,
                                         CGS_PAGE_TYPE_REQUIRED_MEMORY, 0, errp);
@@ -779,14 +780,14 @@ static int qigvm_supported_platform_compat_mask(QIgvm *ctx, Error **errp)
                                                  sizeof(
                                                      IGVM_VHS_VARIABLE_HEADER));
              if ((platform->platform_type == IGVM_PLATFORM_TYPE_SEV_ES) &&
-                ctx->cgs) {
+                ctx->machine_state->cgs) {
                  if (ctx->cgsc->check_support(
                          CGS_PLATFORM_SEV_ES, platform->platform_version,
                          platform->highest_vtl, platform->shared_gpa_boundary)) {
                      compatibility_mask_sev_es = platform->compatibility_mask;
                  }
              } else if ((platform->platform_type == IGVM_PLATFORM_TYPE_SEV) &&
-                       ctx->cgs) {
+                       ctx->machine_state->cgs) {
                  if (ctx->cgsc->check_support(
                          CGS_PLATFORM_SEV, platform->platform_version,
                          platform->highest_vtl, platform->shared_gpa_boundary)) {
@@ -794,7 +795,7 @@ static int qigvm_supported_platform_compat_mask(QIgvm *ctx, Error **errp)
                  }
              } else if ((platform->platform_type ==
                          IGVM_PLATFORM_TYPE_SEV_SNP) &&
-                       ctx->cgs) {
+                       ctx->machine_state->cgs) {
                  if (ctx->cgsc->check_support(
                          CGS_PLATFORM_SEV_SNP, platform->platform_version,
                          platform->highest_vtl, platform->shared_gpa_boundary)) {
@@ -867,7 +868,7 @@ IgvmHandle qigvm_file_init(char *filename, Error **errp)
      return igvm;
  }
  
-int qigvm_process_file(IgvmCfg *cfg, ConfidentialGuestSupport *cgs,
+int qigvm_process_file(IgvmCfg *cfg, MachineState *machine_state,
                         bool onlyVpContext, Error **errp)
  {
      int32_t header_count;
@@ -883,13 +884,16 @@ int qigvm_process_file(IgvmCfg *cfg, ConfidentialGuestSupport *cgs,
      ctx.file = cfg->file;
      trace_igvm_process_file(cfg->file, onlyVpContext);
  
+    ctx.machine_state = machine_state;
+
      /*
       * The ConfidentialGuestSupport object is optional and allows a confidential
       * guest platform to perform extra processing, such as page measurement, on
       * IGVM directives.
       */
-    ctx.cgs = cgs;
-    ctx.cgsc = cgs ? CONFIDENTIAL_GUEST_SUPPORT_GET_CLASS(cgs) : NULL;
+    ctx.cgsc = machine_state->cgs ?
+                   CONFIDENTIAL_GUEST_SUPPORT_GET_CLASS(machine_state->cgs) :
+                   NULL;
  
      /*
       * Check that the IGVM file provides configuration for the current
diff --git a/include/system/igvm-cfg.h b/include/system/igvm-cfg.h

index 6c07f3084082ac20cac3f3b789c8e4a8a539c5ac..e06d611f7446a40a11104e9a92ba42571800e78d 100644 (file)
--- a/include/system/igvm-cfg.h
+++ b/include/system/igvm-cfg.h
@@ -12,6 +12,7 @@
  #ifndef QEMU_IGVM_CFG_H
  #define QEMU_IGVM_CFG_H
  
+#include "hw/core/boards.h"
  #include "qemu/typedefs.h"
  #include "qom/object.h"
  
@@ -27,7 +28,7 @@ typedef struct IgvmCfgClass {
       *
       * Returns 0 for ok and -1 on error.
       */
-    int (*process)(IgvmCfg *cfg, ConfidentialGuestSupport *cgs,
+    int (*process)(IgvmCfg *cfg, MachineState *machine_state,
                     bool onlyVpContext, Error **errp);
  
  } IgvmCfgClass;
diff --git a/include/system/igvm-internal.h b/include/system/igvm-internal.h

index 019f95e866157775daf288cdeecc9c0e2c8372e8..1d36519ab082c02e27461e94850a1ccf6b583e66 100644 (file)
--- a/include/system/igvm-internal.h
+++ b/include/system/igvm-internal.h
@@ -12,6 +12,7 @@
  #include "qemu/queue.h"
  #include "qemu/typedefs.h"
  #include "qom/object.h"
+#include "hw/core/boards.h"
  #include "hw/core/resettable.h"
  
  #include "system/confidential-guest-support.h"
@@ -43,7 +44,7 @@ typedef struct QIgvmParameterData {
   */
  typedef struct QIgvm {
      IgvmHandle file;
-    ConfidentialGuestSupport *cgs;
+    MachineState *machine_state;
      ConfidentialGuestSupportClass *cgsc;
      uint32_t compatibility_mask;
      unsigned current_header_index;
diff --git a/include/system/igvm.h b/include/system/igvm.h

index 8355e54e95fce5b4aedb477a4f20f19f9110e047..5573a6111ae754e2de49ba72a354b36c4b6fe747 100644 (file)
--- a/include/system/igvm.h
+++ b/include/system/igvm.h
@@ -12,12 +12,13 @@
  #ifndef BACKENDS_IGVM_H
  #define BACKENDS_IGVM_H
  
+#include "hw/core/boards.h"
  #include "qemu/typedefs.h"
  #include "system/confidential-guest-support.h"
  #include "qapi/error.h"
  
-int qigvm_process_file(IgvmCfg *igvm, ConfidentialGuestSupport *cgs,
-                      bool onlyVpContext, Error **errp);
+int qigvm_process_file(IgvmCfg *igvm, MachineState *machine_state,
+                       bool onlyVpContext, Error **errp);
  
  /* x86 native */
  int qigvm_x86_get_mem_map_entry(int index,
diff --git a/target/i386/sev.c b/target/i386/sev.c

index fef9f441c61ea6586ca382c0c120310721fefcc8..acdcb9c4e68184abfcd455a6ee661f622110db22 100644 (file)
--- a/target/i386/sev.c
+++ b/target/i386/sev.c
@@ -1892,8 +1892,7 @@ static int sev_common_kvm_init(ConfidentialGuestSupport *cgs, Error **errp)
           */
          if (x86machine->igvm) {
              if (IGVM_CFG_GET_CLASS(x86machine->igvm)
-                    ->process(x86machine->igvm, machine->cgs, true, errp) ==
-                -1) {
+                    ->process(x86machine->igvm, machine, true, errp) == -1) {
                  return -1;
              }
              /*
author	Oliver Steffen <osteffen@redhat.com>
	Fri, 30 Jan 2026 05:47:12 +0000 (06:47 +0100)
committer	Gerd Hoffmann <kraxel@redhat.com>
	Tue, 3 Feb 2026 07:32:33 +0000 (08:32 +0100)
backends/igvm-cfg.c		patch \| blob \| blame \| history
backends/igvm.c		patch \| blob \| blame \| history
include/system/igvm-cfg.h		patch \| blob \| blame \| history
include/system/igvm-internal.h		patch \| blob \| blame \| history
include/system/igvm.h		patch \| blob \| blame \| history
target/i386/sev.c		patch \| blob \| blame \| history