From: Tycho Andersen <tycho@kernel.org>
To: Sean Christopherson <seanjc@google.com>
Cc: Ashish Kalra <ashish.kalra@amd.com>,
Tom Lendacky <thomas.lendacky@amd.com>,
John Allen <john.allen@amd.com>,
Herbert Xu <herbert@gondor.apana.org.au>,
Paolo Bonzini <pbonzini@redhat.com>,
Shuah Khan <shuah@kernel.org>,
"David S. Miller" <davem@davemloft.net>,
linux-crypto@vger.kernel.org, linux-kernel@vger.kernel.org,
kvm@vger.kernel.org, linux-kselftest@vger.kernel.org
Subject: Re: [PATCH 2/4] selftests/kvm: check that SEV-ES VMs are allowed in SEV-SNP mode
Date: Mon, 23 Feb 2026 15:12:27 -0700 [thread overview]
Message-ID: <aZzQy7c8VqCaZ_fE@tycho.pizza> (raw)
In-Reply-To: <aZyLIWtffvEnmtYh@google.com>
On Mon, Feb 23, 2026 at 09:15:13AM -0800, Sean Christopherson wrote:
> On Mon, Feb 23, 2026, Tycho Andersen wrote:
> > > > + /*
> > > > + * In some cases when SEV-SNP is enabled, firmware disallows starting
> > > > + * an SEV-ES VM. When SEV-SNP is enabled try to launch an SEV-ES, and
> > > > + * check the underlying firmware error for this case.
> > > > + */
> > > > + vm = vm_sev_create_with_one_vcpu(KVM_X86_SEV_ES_VM, guest_sev_es_code,
> > > > + &vcpu);
> > >
> > > If there's a legimate reason why an SEV-ES VM can't be created, then that needs
> > > to be explicitly enumerated in some way by the kernel. E.g. is this due to lack
> > > of ASIDs due to CipherTextHiding or something?
> >
> > Newer firmware that fixes CVE-2025-48514 won't allow SEV-ES VMs to be
> > started with SNP enabled, there is a footnote (2) about it here:
> >
> > https://www.amd.com/en/resources/product-security/bulletin/amd-sb-3023.html
> >
> > Probably should have included this in the patch, sorry.
> >
> > > Throwing a noodle to see if it sticks is not an option.
> >
> > Sure, we could do some firmware version test to see if it's fixed
> > instead? Or do this same test in the kernel and export that as an
> > ioctl?
>
> Uh, no idea what would be ideal, but there absolutely needs to be some way to
> communicate lack of effective SEV-ES support to userspace, and in a way that
> doesn't break userspace.
Just to clarify, by "doesn't break userspace" here you mean that we
shouldn't revoke the SEV_ES bit from the list of supported VM types
once we've exposed it? Or you mean preserving the current behavior of
CPU supports it => bit is set?
> Hrm, I think we also neglected to communicate when SEV and SEV-ES are effectively
> unusable, e.g. due to CipherTextHiding, so maybe we can kill two birds with one
> stone? IIRC, we didn't bother enumerating the limitation with CipherTextHiding
> because making SEV-ES unusable would require a deliberate act from the admin.
We know these parameters at module load time so we could unset the
supported bit, but...
> "Update firmware" is also an deliberate act, but the side effect of SEV-ES being
> disabled, not so much.
since this could be a runtime thing via DOWNLOAD_FIRMWARE_EX at some
point, I guess we need a new RUNTIME_STATUS ioctl or similar. Then the
question is: does it live in /dev/sev, or /dev/kvm?
Tycho
next prev parent reply other threads:[~2026-02-23 22:12 UTC|newest]
Thread overview: 18+ messages / expand[flat|nested] mbox.gz Atom feed top
2026-02-23 16:28 [PATCH 0/4] Allow setting RAPL_DIS during SNP_INIT_EX Tycho Andersen
2026-02-23 16:28 ` [PATCH 1/4] selftests/kvm: allow retrieving underlying SEV firmware error Tycho Andersen
2026-02-23 16:28 ` [PATCH 2/4] selftests/kvm: check that SEV-ES VMs are allowed in SEV-SNP mode Tycho Andersen
2026-02-23 16:36 ` Sean Christopherson
2026-02-23 16:48 ` Tycho Andersen
2026-02-23 17:15 ` Sean Christopherson
2026-02-23 22:12 ` Tycho Andersen [this message]
2026-02-24 18:02 ` Sean Christopherson
2026-02-25 17:29 ` Tycho Andersen
2026-02-25 17:44 ` Sean Christopherson
2026-02-26 20:59 ` Tycho Andersen
2026-02-26 22:28 ` Sean Christopherson
2026-02-23 16:28 ` [PATCH 3/4] crypto/ccp: support setting RAPL_DIS in SNP_INIT_EX Tycho Andersen
2026-02-23 16:40 ` Sean Christopherson
2026-02-23 22:14 ` Tycho Andersen
2026-02-24 17:50 ` Sean Christopherson
2026-02-25 18:05 ` Tycho Andersen
2026-02-23 16:29 ` [PATCH 4/4] selftests/kvm: smoke test support for RAPL_DIS Tycho Andersen
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=aZzQy7c8VqCaZ_fE@tycho.pizza \
--to=tycho@kernel.org \
--cc=ashish.kalra@amd.com \
--cc=davem@davemloft.net \
--cc=herbert@gondor.apana.org.au \
--cc=john.allen@amd.com \
--cc=kvm@vger.kernel.org \
--cc=linux-crypto@vger.kernel.org \
--cc=linux-kernel@vger.kernel.org \
--cc=linux-kselftest@vger.kernel.org \
--cc=pbonzini@redhat.com \
--cc=seanjc@google.com \
--cc=shuah@kernel.org \
--cc=thomas.lendacky@amd.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox