git.maquefel.me Git - qemu.git/commit

author	Anthony Harivel <aharivel@redhat.com>
	Wed, 22 May 2024 15:34:51 +0000 (17:34 +0200)
committer	Paolo Bonzini <pbonzini@redhat.com>
	Mon, 22 Jul 2024 11:50:21 +0000 (13:50 +0200)
commit	84369d762127157137006e29a971bb08a1bd17cd
tree	654190e4c83f42542f2c5e069c9b7000478f0b66	tree \| snapshot
parent	95fa0c79a04f3ebebb9f3b68cc05b4b8082b5444	commit \| diff

tools: build qemu-vmsr-helper

Introduce a privileged helper to access RAPL MSR.

The privileged helper tool, qemu-vmsr-helper, is designed to provide
virtual machines with the ability to read specific RAPL (Running Average
Power Limit) MSRs without requiring CAP_SYS_RAWIO privileges or relying
on external, out-of-tree patches.

The helper tool leverages Unix permissions and SO_PEERCRED socket
options to enforce access control, ensuring that only processes
explicitly requesting read access via readmsr() from a valid Thread ID
can access these MSRs.

The list of RAPL MSRs that are allowed to be read by the helper tool is
defined in rapl-msr-index.h. This list corresponds to the RAPL MSRs that
will be supported in the next commit titled "Add support for RAPL MSRs
in KVM/QEMU."

The tool is intentionally designed to run on the Linux x86 platform.
This initial implementation is tailored for Intel CPUs but can be
extended to support AMD CPUs in the future.

Signed-off-by: Anthony Harivel <aharivel@redhat.com>
Link: https://lore.kernel.org/r/20240522153453.1230389-3-aharivel@redhat.com
Signed-off-by: Paolo Bonzini <pbonzini@redhat.com>

MAINTAINERS		diff \| blob \| history
contrib/systemd/qemu-vmsr-helper.service	[new file with mode: 0644]	blob
contrib/systemd/qemu-vmsr-helper.socket	[new file with mode: 0644]	blob
docs/tools/index.rst		diff \| blob \| history
docs/tools/qemu-vmsr-helper.rst	[new file with mode: 0644]	blob
meson.build		diff \| blob \| history
tools/i386/qemu-vmsr-helper.c	[new file with mode: 0644]	blob
tools/i386/rapl-msr-index.h	[new file with mode: 0644]	blob