Re: [PATCH v5 0/2] KVM: SEV: Add support for the ALLOWED_SEV_FEATURES feature

From: Sean Christopherson
Date: Fri Apr 25 2025 - 19:24:33 EST

Next message: Sean Christopherson: "Re: [PATCH v2] KVM: SVM: Fix SNP AP destroy race with VMRUN"
Previous message: Sean Christopherson: "Re: [PATCH 0/5] Provide SEV-ES/SEV-SNP support for decrypting the VMSA"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, 10 Mar 2025 15:16:01 -0500, Kim Phillips wrote:
> AMD EPYC 5th generation processors have introduced a feature that allows
> the hypervisor to control the SEV_FEATURES that are set for, or by, a
> guest [1]. ALLOWED_SEV_FEATURES can be used by the hypervisor to enforce
> that SEV-ES and SEV-SNP guests cannot enable features that the
> hypervisor does not want to be enabled.
>
> Patch 1/2 adds support to detect the feature.
>
> [...]

Applied to kvm-x86 svm, thanks!

[1/2] x86/cpufeatures: Add "Allowed SEV Features" Feature
https://github.com/kvm-x86/linux/commit/67e672eb2e89
[2/2] KVM: SEV: Configure "ALLOWED_SEV_FEATURES" VMCB Field
https://github.com/kvm-x86/linux/commit/51c4b387555d

--
https://github.com/kvm-x86/linux/tree/next

Next message: Sean Christopherson: "Re: [PATCH v2] KVM: SVM: Fix SNP AP destroy race with VMRUN"
Previous message: Sean Christopherson: "Re: [PATCH 0/5] Provide SEV-ES/SEV-SNP support for decrypting the VMSA"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]