This series adds support for enabling VMSA SEV features for SEV-ES and SEV-SNP guests through the Qemu command line. This is already supported for IGVM files, so some of that code has been generalized and reused.
Debug-swap is already supported in KVM today, while patches for enabling Secure TSC have been accepted for the upcoming kernel release. I have tested this with a simple IGVM file generated by the buildigvm tool, and it did not show any issues with IGVM compatibility. - Naveen --- v2: http://lore.kernel.org/r/[email protected] Changes since v2: - Clarify that debug-swap property only works for SEV-ES/SEV-SNP guests, and update commit log to clarify the same (Markus) - Update commit log to clarify need for a new tsc-frequency property and its interaction with the one on the cpu object (Tom) Naveen N Rao (AMD) (9): target/i386: SEV: Generalize handling of SVM_SEV_FEAT_SNP_ACTIVE target/i386: SEV: Ensure SEV features are only set through qemu cli or IGVM target/i386: SEV: Consolidate SEV feature validation to common init path target/i386: SEV: Validate that SEV-ES is enabled when VMSA features are used target/i386: SEV: Enable use of KVM_SEV_INIT2 for SEV-ES guests target/i386: SEV: Add support for enabling debug-swap SEV feature target/i386: SEV: Add support for enabling Secure TSC SEV feature target/i386: SEV: Add support for setting TSC frequency for Secure TSC target/i386: SEV: Refactor check_sev_features() target/i386/sev.h | 4 +- target/i386/sev.c | 171 +++++++++++++++++++++++++++++++++++++--------- qapi/qom.json | 17 ++++- 3 files changed, 157 insertions(+), 35 deletions(-) base-commit: 36076d24f04ea9dc3357c0fbe7bb14917375819c -- 2.51.0
