-
Notifications
You must be signed in to change notification settings - Fork 28
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
The 1st TDX test case for basic check: 1. Check if platform host support TDX 2. Boot one TDVM 3. Check TDX cpu flag in TDVM Signed-off-by: Xudong Hao <[email protected]>
- Loading branch information
Showing
3 changed files
with
275 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,203 @@ | ||
| # This program is free software; you can redistribute it and/or modify | ||
| # it under the terms of the GNU General Public License as published by | ||
| # the Free Software Foundation; specifically version 2 of the License. | ||
| # | ||
| # This program is distributed in the hope that it will be useful, | ||
| # but WITHOUT ANY WARRANTY; without even the implied warranty of | ||
| # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. | ||
| # | ||
| # See LICENSE for more details. | ||
| # | ||
| # Copyright: Red Hat (c) 2023 and Avocado contributors | ||
| # Copy from tp-qemu | ||
|
|
||
| import re | ||
| import logging | ||
|
|
||
| from avocado.utils import process | ||
|
|
||
| from virttest import utils_misc | ||
| from virttest.utils_test import VMStress, StressError | ||
| from virttest.utils_version import VersionInterval | ||
|
|
||
| LOG_JOB = logging.getLogger('avocado.test') | ||
|
|
||
|
|
||
| class VMStressBinding(VMStress): | ||
| """ | ||
| Run stress tool on VMs, and bind the process to the specified cpu | ||
| """ | ||
|
|
||
| def __init__(self, vm, params, stress_args=""): | ||
| super(VMStressBinding, self).__init__(vm, "stress", params, | ||
| stress_args=stress_args) | ||
| self.install() | ||
|
|
||
| def load_stress_tool(self, cpu_id): | ||
| """ | ||
| Load the stress tool and bind it to the specified CPU | ||
| :param cpu_id: CPU id you want to bind | ||
| """ | ||
| cmd = "setsid taskset -c {} {} {} > /dev/null".format(cpu_id, | ||
| self.stress_cmds, | ||
| self.stress_args) | ||
| LOG_JOB.info("Launch stress with command: %s", cmd) | ||
| self.cmd_launch(cmd) | ||
| # wait for stress to start and then check, if not raise StressError | ||
| if not utils_misc.wait_for(self.app_running, | ||
| self.stress_wait_for_timeout, | ||
| first=2.0, step=1.0, | ||
| text="wait for stress app to start"): | ||
| raise StressError("Stress does not running as expected.") | ||
|
|
||
|
|
||
| def get_guest_cpu_ids(session, os_type): | ||
| """ | ||
| Get the ids of all CPUs of the guest | ||
| :param session: ShellSession object of VM | ||
| :param os_type: guest os type, windows or linux | ||
| :return: list of cpu id | ||
| """ | ||
| if os_type == "windows": | ||
| # Windows can not get each core id of socket, so this function is | ||
| # meaningless, directly returns an empty set | ||
| return set() | ||
| cmd = "grep processor /proc/cpuinfo" | ||
| output = session.cmd_output(cmd) | ||
| return set(map(int, re.findall(r"processor\s+(?::\s)?(\d+)", | ||
| output, re.M))) | ||
|
|
||
|
|
||
| def check_if_vm_vcpu_topology_match(session, os_type, cpuinfo, test, devices=None): | ||
| """ | ||
| check the cpu topology of the guest. | ||
| :param session: session Object | ||
| :param os_type: guest os type, windows or linux | ||
| :param cpuinfo: virt_vm.CpuInfo Object | ||
| :param test: QEMU test object | ||
| :param devices: qcontainer.DevContainer Object | ||
| :return: True if guest topology is same as we expected | ||
| """ | ||
| if os_type == "linux": | ||
| out = session.cmd_output_safe("lscpu") | ||
| cpu_info = dict(re.findall(r"([A-Z].+):\s+(.+)", out, re.M)) | ||
| if str(cpu_info["Architecture"]) == 's390x': | ||
| sockets = int(cpu_info["Socket(s) per book"]) | ||
| else: | ||
| sockets = int(cpu_info["Socket(s)"]) | ||
| cores = int(cpu_info["Core(s) per socket"]) | ||
| threads = int(cpu_info["Thread(s) per core"]) | ||
| threads_matched = cpuinfo.threads == threads | ||
| else: | ||
| cmd = ('powershell "Get-WmiObject Win32_processor | Format-List ' | ||
| 'NumberOfCores,ThreadCount"') | ||
| out = session.cmd_output_safe(cmd).strip() | ||
| try: | ||
| cpu_info = [dict(re.findall(r"(\w+)\s+:\s(\d+)", cpu_out, re.M)) | ||
| for cpu_out in out.split("\n\n")] | ||
| sockets = len(cpu_info) | ||
| cores = int(cpu_info[0]["NumberOfCores"]) | ||
| threads = int(cpu_info[0]["ThreadCount"]) | ||
| except KeyError: | ||
| LOG_JOB.warning("Attempt to get output via 'powershell' failed, " | ||
| "output returned by guest:\n%s", out) | ||
| LOG_JOB.info("Try again via 'wmic'") | ||
| cmd = 'wmic CPU get NumberOfCores,ThreadCount /Format:list' | ||
| out = session.cmd_output_safe(cmd).strip() | ||
| try: | ||
| cpu_info = [dict(re.findall(r"(\w+)=(\d+)", cpu_out, re.M)) | ||
| for cpu_out in out.split("\n\n")] | ||
| sockets = len(cpu_info) | ||
| cores = int(cpu_info[0]["NumberOfCores"]) | ||
| threads = int(cpu_info[0]["ThreadCount"]) | ||
| except KeyError: | ||
| LOG_JOB.error("Attempt to get output via 'wmic' failed, output" | ||
| " returned by guest:\n%s", out) | ||
| return False | ||
| if devices: | ||
| # Until QEMU 8.1 there was a different behaviour for thread count in case | ||
| # of Windows guests. It represented number of threads per single core, not | ||
| # the total number of threads available for all cores in socket. Therefore | ||
| # we disable check for older QEMU versions and adjust for newer versions. | ||
| if devices.qemu_version in VersionInterval("[, 8.1.0)"): | ||
| LOG_JOB.warning("ThreadCount is disabled for Windows guests") | ||
| threads_matched = True | ||
| else: | ||
| threads_matched = threads//cores == cpuinfo.threads | ||
| else: | ||
| test.fail("Variable 'devices' must be defined for Windows guest.") | ||
|
|
||
| is_matched = (cpuinfo.sockets == sockets and cpuinfo.cores == cores and | ||
| threads_matched) | ||
|
|
||
| if not is_matched: | ||
| LOG_JOB.debug("CPU infomation of guest:\n%s", out) | ||
|
|
||
| return is_matched | ||
|
|
||
|
|
||
| def check_cpu_flags(params, flags, test, session=None): | ||
| """ | ||
| Check cpu flags on host or guest.(only for Linux now) | ||
| :param params: Dictionary with the test parameters | ||
| :param flags: checked flags | ||
| :param test: QEMU test object | ||
| :param session: guest session | ||
| """ | ||
| cmd = "lscpu | grep Flags | awk -F ':' '{print $2}'" | ||
| func = process.getoutput | ||
| if session: | ||
| func = session.cmd_output | ||
| out = func(cmd).split() | ||
| missing = [f for f in flags.split() if f not in out] | ||
| if session: | ||
| LOG_JOB.info("Check cpu flags inside guest") | ||
| if missing: | ||
| test.fail("Flag %s not in guest" % missing) | ||
| no_flags = params.get("no_flags") | ||
| if no_flags: | ||
| err_flags = [f for f in no_flags.split() if f in out] | ||
| if err_flags: | ||
| test.fail("Flag %s should not be present in guest" % err_flags) | ||
| else: | ||
| LOG_JOB.info("Check cpu flags on host") | ||
| if missing: | ||
| test.cancel("This host doesn't support flag %s" % missing) | ||
|
|
||
|
|
||
| # Copied from unstable module "virttest/cpu.py" | ||
| def check_if_vm_vcpu_match(vcpu_desire, vm): | ||
| """ | ||
| This checks whether the VM vCPU quantity matches the value desired. | ||
| :param vcpu_desire: vcpu value to be checked | ||
| :param vm: VM Object | ||
| :return: Boolean, True if actual vcpu value matches with vcpu_desire | ||
| """ | ||
| vcpu_actual = vm.get_cpu_count("cpu_chk_cmd") | ||
| if isinstance(vcpu_desire, str) and vcpu_desire.isdigit(): | ||
| vcpu_desire = int(vcpu_desire) | ||
| if vcpu_desire != vcpu_actual: | ||
| LOG_JOB.debug("CPU quantity mismatched !!! guest said it got %s " | ||
| "but we assigned %s", vcpu_actual, vcpu_desire) | ||
| return False | ||
| LOG_JOB.info("CPU quantity matched: %s", vcpu_actual) | ||
| return True | ||
|
|
||
|
|
||
| def check_if_vm_vcpus_match_qemu(vm): | ||
| vcpus_count = vm.params.get_numeric("vcpus_count", 1) | ||
| vcpu_devices = vm.params.objects("vcpu_devices") | ||
| enabled_vcpu_devices = [] | ||
|
|
||
| for vcpu_device in vcpu_devices: | ||
| vcpu_params = vm.params.object_params(vcpu_device) | ||
| if vcpu_params.get_boolean("vcpu_enable"): | ||
| enabled_vcpu_devices.append(vcpu_device) | ||
| enabled_count = vm.cpuinfo.smp + (len(enabled_vcpu_devices) * vcpus_count) | ||
|
|
||
| return check_if_vm_vcpu_match(enabled_count, vm) |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,22 @@ | ||
| - tdx_basic: | ||
| type = tdx_basic | ||
| virt_test_type = qemu | ||
| vm_accelerator = kvm | ||
| machine_type_extra_params = "kernel-irqchip=split" | ||
| vm_secure_guest_type = tdx | ||
| # Don't create/remove guest images | ||
| force_create_image = no | ||
| remove_image = no | ||
| # Automatically start VM | ||
| start_vm = yes | ||
| # Stop VM after testing | ||
| kill_vm = yes | ||
| shell_prompt = "^\[.*\][\#\$]\s*$" | ||
| vga = std | ||
| auto_cpu_model = "no" | ||
| cpu_model = host | ||
| check_host_flags = yes | ||
| flags = "tdx_host_platform" | ||
| guest_flags = "tdx_guest" | ||
| read_cmd = "cat /sys/module/kvm_intel/parameters/%s" | ||
| rdmsr_cmd = "rdmsr 0xfe --bitfield 15:15" |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,50 @@ | ||
| #!/usr/bin/python3 | ||
|
|
||
| # SPDX-License-Identifier: GPL-2.0-only | ||
| # Copyright (c) 2024 Intel Corporation | ||
|
|
||
| # Author: Xudong Hao <[email protected]> | ||
| # | ||
| # History: May. 2024 - Xudong Hao - creation | ||
|
|
||
| from avocado.utils import process, cpu | ||
| from virttest import error_context | ||
| from provider.cpu_utils import check_cpu_flags | ||
|
|
||
| @error_context.context_aware | ||
| def run(test, params, env): | ||
| """ | ||
| TDX basic test: | ||
| 1. Check host TDX capability | ||
| 2. Boot TDVM | ||
| 3. Verify TDX enabled in guest | ||
| :param test: QEMU test object | ||
| :param params: Dictionary with the test parameters | ||
| :param env: Dictionary with test environment. | ||
| """ | ||
| if cpu.get_cpu_vendor_name() != 'intel': | ||
| test.cancel("This test is supposed to run on Intel host") | ||
|
|
||
| rdmsr_cmd = params["rdmsr_cmd"] | ||
| if process.getoutput(rdmsr_cmd) != "1": | ||
| test.fail("Platform does not support TDX-SEAM") | ||
|
|
||
| flags = params["flags"] | ||
| check_host_flags = params.get_boolean("check_host_flags") | ||
| if check_host_flags: | ||
| check_cpu_flags(params, flags, test) | ||
|
|
||
| read_cmd = params["read_cmd"] | ||
| tdx_value = process.getoutput(read_cmd % "tdx") | ||
| if tdx_value != "Y": | ||
| test.fail("TDX is not supported in KVM") | ||
|
|
||
| vm = env.get_vm(params["main_vm"]) | ||
| vm.verify_alive() | ||
| timeout = params.get_numeric("login_timeout", 240) | ||
| session = vm.wait_for_login(timeout=timeout) | ||
| if params.get("guest_flags"): | ||
| flags = params["guest_flags"] | ||
| check_cpu_flags(params, flags, test, session) | ||
| session.close() |