| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20250120151413.GAZ45oRULeAhusKOyX@fat_crate.local>
Date: Mon, 20 Jan 2025 16:14:13 +0100
From: Borislav Petkov <bp@...en8.de>
To: Linus Torvalds <torvalds@...ux-foundation.org>
Cc: x86-ml <x86@...nel.org>, lkml <linux-kernel@...r.kernel.org>
Subject: [GIT PULL] x86/sev for v6.14-rc1
Hi Linus,
please pull the x86/sev lineup for v6.14-rc1.
Thx.
---
The following changes since commit fac04efc5c793dccbd07e2d59af9f90b7fc0dca4:
Linux 6.13-rc2 (2024-12-08 14:03:39 -0800)
are available in the Git repository at:
git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip x86_sev_for_v6.14_rc1
for you to fetch changes up to 0563ee35ae2c9cfb0c6a7b2c0ddf7d9372bb8a98:
x86/sev: Add the Secure TSC feature for SNP guests (2025-01-09 10:21:56 +0100)
----------------------------------------------------------------
- A segmented Reverse Map table (RMP) is a across-nodes distributed
table of sorts which contains per-node descriptors of each node-local
4K page, denoting its ownership (hypervisor, guest, etc) in the realm
of confidential computing. Add support for such a table in order to
improve referential locality when accessing or modifying RMP table
entries
- Add support for reading the TSC in SNP guests by removing any
interference or influence the hypervisor might have, with the goal of
making a confidential guest even more independent from the hypervisor
----------------------------------------------------------------
Nikunj A Dadhania (11):
virt: sev-guest: Remove is_vmpck_empty() helper
virt: sev-guest: Replace GFP_KERNEL_ACCOUNT with GFP_KERNEL
x86/sev: Carve out and export SNP guest messaging init routines
x86/sev: Relocate SNP guest messaging routines to common code
x86/sev: Add Secure TSC support for SNP guests
x86/sev: Change TSC MSR behavior for Secure TSC enabled guests
x86/sev: Prevent GUEST_TSC_FREQ MSR interception for Secure TSC enabled guests
x86/sev: Prevent RDTSC/RDTSCP interception for Secure TSC enabled guests
x86/sev: Mark the TSC in a secure TSC guest as reliable
x86/tsc: Init the TSC for Secure TSC guests
x86/sev: Add the Secure TSC feature for SNP guests
Tom Lendacky (8):
x86/sev: Prepare for using the RMPREAD instruction to access the RMP
x86/sev: Add support for the RMPREAD instruction
x86/sev: Require the RMPREAD instruction after Zen4
x86/sev: Move the SNP probe routine out of the way
x86/sev: Map only the RMP table entries instead of the full RMP range
x86/sev: Treat the contiguous RMP table as a single RMP segment
x86/sev: Add full support for a segmented RMP table
x86/sev/docs: Document the SNP Reverse Map Table (RMP)
Documentation/arch/x86/amd-memory-encryption.rst | 118 ++++
arch/x86/Kconfig | 1 +
arch/x86/boot/compressed/sev.c | 3 +-
arch/x86/coco/core.c | 4 +-
arch/x86/coco/sev/core.c | 652 +++++++++++++++++++++-
arch/x86/coco/sev/shared.c | 10 +
arch/x86/include/asm/cpufeatures.h | 2 +
arch/x86/include/asm/msr-index.h | 9 +-
arch/x86/include/asm/sev-common.h | 1 +
arch/x86/include/asm/sev.h | 48 +-
arch/x86/include/asm/svm.h | 6 +-
arch/x86/kernel/cpu/amd.c | 9 +-
arch/x86/kernel/tsc.c | 4 +
arch/x86/mm/mem_encrypt.c | 2 +
arch/x86/mm/mem_encrypt_amd.c | 3 +
arch/x86/virt/svm/sev.c | 661 +++++++++++++++++++----
drivers/virt/coco/sev-guest/Kconfig | 1 -
drivers/virt/coco/sev-guest/sev-guest.c | 485 +----------------
include/linux/cc_platform.h | 8 +
19 files changed, 1438 insertions(+), 589 deletions(-)
--
Regards/Gruss,
Boris.
https://people.kernel.org/tglx/notes-about-netiquette
Powered by blists - more mailing lists