github/kata-containers
1
0
Fork 1
mirror of https://github.com/kata-containers/kata-containers.git synced 2025-07-18 09:23:10 +00:00
Code Issues Projects Releases Wiki Activity

vc: hypervisor: qemu: Add rng device.

Browse Source 
Kata Containers does not have provide a good entropy level,
make use of a paravirtual rng device to solve this problem.

Fixes: #445

Signed-off-by: Jose Carlos Venegas Munoz <jose.carlos.venegas.munoz@intel.com>
This commit is contained in:
Jose Carlos Venegas Munoz 2018-09-10 13:16:50 -05:00
parent f1829d078a
commit bf7fd2bcd7
3 changed files with 25 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
virtcontainers/device/config/config.go
View File

@ -117,6 +117,12 @@ type VFIODev struct {
BDF string BDF string
} }
// RNGDev represents a random number generator device
type RNGDev struct {
// ID is used to identify the device in the hypervisor options.
ID string
}
// VhostUserDeviceAttrs represents data shared by most vhost-user devices // VhostUserDeviceAttrs represents data shared by most vhost-user devices
type VhostUserDeviceAttrs struct { type VhostUserDeviceAttrs struct {
DevID string DevID string

6
virtcontainers/qemu.go
View File

@ -81,6 +81,7 @@ const (
qmpExecCatCmd = "exec:cat" qmpExecCatCmd = "exec:cat"
scsiControllerID = "scsi0" scsiControllerID = "scsi0"
rngID = "rng0"
) )
var qemuMajorVersion int var qemuMajorVersion int
@ -488,6 +489,11 @@ func (q *qemu) createSandbox() error {
if ioThread != nil { if ioThread != nil {
qemuConfig.IOThreads = []govmmQemu.IOThread{*ioThread} qemuConfig.IOThreads = []govmmQemu.IOThread{*ioThread}
} }
// Add RNG device to hypervisor
rngDev := config.RNGDev{
ID: rngID,
}
qemuConfig.Devices = q.arch.appendRNGDevice(qemuConfig.Devices, rngDev)
q.qemuConfig = qemuConfig q.qemuConfig = qemuConfig

13
virtcontainers/qemu_arch_base.go
View File

@ -82,6 +82,9 @@ type qemuArch interface {
// appendVFIODevice appends a VFIO device to devices // appendVFIODevice appends a VFIO device to devices
appendVFIODevice(devices []govmmQemu.Device, vfioDevice config.VFIODev) []govmmQemu.Device appendVFIODevice(devices []govmmQemu.Device, vfioDevice config.VFIODev) []govmmQemu.Device
// appendRNGDevice appends a RNG device to devices
appendRNGDevice(devices []govmmQemu.Device, rngDevice config.RNGDev) []govmmQemu.Device
// handleImagePath handles the Hypervisor Config image path // handleImagePath handles the Hypervisor Config image path
handleImagePath(config HypervisorConfig) handleImagePath(config HypervisorConfig)
} }
@ -505,6 +508,16 @@ func (q *qemuArchBase) appendVFIODevice(devices []govmmQemu.Device, vfioDev conf
return devices return devices
} }
func (q *qemuArchBase) appendRNGDevice(devices []govmmQemu.Device, rngDev config.RNGDev) []govmmQemu.Device {
devices = append(devices,
govmmQemu.RngDevice{
ID: rngDev.ID,
},
)
return devices
}
func (q *qemuArchBase) handleImagePath(config HypervisorConfig) { func (q *qemuArchBase) handleImagePath(config HypervisorConfig) {
if config.ImagePath != "" { if config.ImagePath != "" {
q.kernelParams = append(q.kernelParams, kernelRootParams...) q.kernelParams = append(q.kernelParams, kernelRootParams...)