Sep 20 – 24, 2021
US/Pacific timezone

Live Migration of Confidential VMs

Sep 21, 2021, 7:30 AM
Microconference2/Virtual-Room (LPC Virtual)


LPC Virtual

Confidential Computing MC Confidential Computing MC


Ashish Kalra


Discussion on Live Migration of AMD SEV encrypted VMs.

Link to the latest posted (KVM) patch for SEV live migration :

Discussions on Guest APIs, specifically if the APIs can cover both
AMD SEV and Intel TDX platforms and exploring common interfaces
which can be re-used for both the above platforms, for example,
exploring a common hypercall API interface, with reference
to the posted KVM patch-set.

Link to related discussion on the same topic:

SEV Live Migration Acceleration uses an alternative migration
approach relying on a Migration Helper (MH) running in guest
context. The fast migration for encrypted virtual
machines typically use a Migration Handler that lives in OVMF.

As part of this microconference, we can have additional
discussions on the design and development of the MH, especially,
the suggested approach to use KVM/Qemu Mirror VM concept to
run the MH in a Mirror VM/vCPU which runs in parallel to the
primary encrypted VM in the same Qemu process context.

Links to posting for the above on KVM and Qemu development
lists :

I agree to abide by the anti-harassment policy I agree

Primary author

Ashish Kalra

Presentation materials

Diamond Sponsor

Platinum Sponsor

Gold Sponsors

Silver Sponsors

Speaker Gift Sponsor

T-Shirt Sponsor

Conference Services provided by