* Peter Maydell ([email protected]) wrote: > On Mon, 16 Nov 2020 at 19:28, Ashish Kalra <[email protected]> wrote: > > > > From: Brijesh Singh <[email protected]> > > > > From: Brijesh Singh <[email protected]> > > > > Extend the MemTxAttrs to include a 'debug' flag. The flag can be used as > > general indicator that operation was triggered by the debugger. > > > > A subsequent patch will set the debug=1 when issuing a memory access > > from the gdbstub or HMP commands. This is a prerequisite to support > > debugging an encrypted guest. When a request with debug=1 is seen, the > > encryption APIs will be used to access the guest memory. > > So, what counts as "debug" here, and why are debug requests > special? If "debug=1" means "can actually get at the guest memory", > why wouldn't every device model want to use it?
SEV has a flag that the guest-owner can set on a VM to enable debug; it's rare for it to be enabled; so it's not suitable for use by normal devices. It's only there for debug if the guest owner allows you to. Dave > thanks > -- PMM > -- Dr. David Alan Gilbert / [email protected] / Manchester, UK
