[PATCH] KVM: x86: support CONFIG_KVM_AMD=y with CONFIG_CRYPTO_DEV_CCP_DD=m

From: Paolo Bonzini
Date: Tue Oct 09 2018 - 12:39:34 EST

Next message: Reinette Chatre: "Re: [PATCH v2 01/11] arch/x86: Start renaming the rdt files to more generic names"
Previous message: kbuild test robot: "Re: [PATCH v2] arm64: dts: qcom: sdm845: Add qspi (quad SPI) node"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

SEV requires access to the AMD cryptographic device APIs, and this
does not work when KVM is builtin and the crypto driver is a module.
Actually the Kconfig conditions for CONFIG_KVM_AMD_SEV try to disable
SEV in that case, but it does not work because the actual crypto
calls are not culled, only sev_hardware_setup() is.

This patch adds two CONFIG_KVM_AMD_SEV checks that gate all the remaining
SEV code; it fixes this particular configuration, and drops 5 KiB of
code when CONFIG_KVM_AMD_SEV=n.

Reported-by: Guenter Roeck <linux@xxxxxxxxxxxx>
Signed-off-by: Paolo Bonzini <pbonzini@xxxxxxxxxx>
---
arch/x86/kvm/svm.c | 6 +++++-
1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/arch/x86/kvm/svm.c b/arch/x86/kvm/svm.c
index d96092b35936..61ccfb13899e 100644
--- a/arch/x86/kvm/svm.c
+++ b/arch/x86/kvm/svm.c
@@ -436,14 +436,18 @@ static inline struct kvm_svm *to_kvm_svm(struct kvm *kvm)

static inline bool svm_sev_enabled(void)
{
- return max_sev_asid;
+ return IS_ENABLED(CONFIG_KVM_AMD_SEV) ? max_sev_asid : 0;
}

static inline bool sev_guest(struct kvm *kvm)
{
+#ifdef CONFIG_KVM_AMD_SEV
struct kvm_sev_info *sev = &to_kvm_svm(kvm)->sev_info;

return sev->active;
+#else
+ return false;
+#endif
}

static inline int sev_get_asid(struct kvm *kvm)
--
1.8.3.1

Next message: Reinette Chatre: "Re: [PATCH v2 01/11] arch/x86: Start renaming the rdt files to more generic names"
Previous message: kbuild test robot: "Re: [PATCH v2] arm64: dts: qcom: sdm845: Add qspi (quad SPI) node"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]