Re: [PATCH v3 0/7] KVM: SEV: Don't advertise unusable VM types

Next message: Rosen Penev: "[PATCH] spi: omap2-mcspi: Use of_device_get_match_data()"
Previous message: Sean Christopherson: "Re: [PATCH v2] KVM: TDX: Fix x2APIC MSR handling in tdx_has_emulated_msr()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: Sean Christopherson

Date: Mon May 18 2026 - 20:47:04 EST

On Thu, 16 Apr 2026 16:23:22 -0700, Sean Christopherson wrote:
> My preference would be to take this through the KVM tree, with acks on the
> crypto patches. I'd also be a-ok with a stable branch/tag of the crypto
> changes.
>
> In the words of Tycho:
>
> Recent SEV firmware [1] does not support SEV-ES VMs when SNP is enabled.
> Expose this by revoking VM-types that are not supported by the current
> configurations either from firmware restrictions or ASID configuration.
>
> [...]

Applied to kvm-x86 sev, thanks! Holler if anyone needs a stable tag.

[1/7] crypto/ccp: hoist kernel part of SNP_PLATFORM_STATUS
https://github.com/kvm-x86/linux/commit/acf4d11a35d8
[2/7] crypto/ccp: export firmware supported vm types
https://github.com/kvm-x86/linux/commit/4b28f0846ef6
[3/7] KVM: SEV: Set supported SEV+ VM types during sev_hardware_setup()
https://github.com/kvm-x86/linux/commit/c2a02db765af
[4/7] KVM: SEV: Consolidate logic for printing state of SEV{,-ES,-SNP} enabling
https://github.com/kvm-x86/linux/commit/82bf8282444c
[5/7] KVM: SEV: Don't advertise support for unusable VM types
https://github.com/kvm-x86/linux/commit/93d1a486e1d4
[6/7] KVM: SEV: Don't advertise VM types that are disabled by firmware
https://github.com/kvm-x86/linux/commit/d8355a92df1f
[7/7] KVM: selftests: Teach sev_*_test about revoking VM types
https://github.com/kvm-x86/linux/commit/accb7f3a6384

--
https://github.com/kvm-x86/linux/tree/next