[PATCH 00/11] Move SEV-SNP initialization to ccp driver

Next message: Tycho Andersen: "[PATCH 01/11] x86/snp: drop support for SNP hotplug"
Previous message: Alexey Suchkov: "[PATCH] mm: initialize 'seq' in gup_fast to remove -Wmaybe-uninitialized warning"
Next in thread: Tycho Andersen: "[PATCH 04/11] x86/snp: drop WBINVD before setting SNPEn"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: Tycho Andersen

Date: Mon Mar 02 2026 - 14:17:37 EST

From: "Tycho Andersen (AMD)" <tycho@xxxxxxxxxx>

The SEV firmware has support for disabling SNP when doing a
SNP_SHUTDOWN_EX, which will turn off the SNPEn bit. If setting SNPEn is
also delayed until module load, this means that we can control the
lifecycle of SNP enablement with module load and unload. This way, the
SNP checks are only done while the module is actually loaded.

Tom Lendacky (3):
x86/snp: Keep the RMP table bookkeeping area mapped
x86/snp: Create a function to clear/zero the RMP
crypto: ccp - Update HV_FIXED page states to allow freeing of memory

Tycho Andersen (AMD) (8):
x86/snp: drop support for SNP hotplug
x86/snp: drop WBINVD before setting SNPEn
x86/snp: create snp_prepare_for_snp_init()
x86/snp, crypto: move SNP init to ccp driver
x86/snp, crypto: move HSAVE_PA setup to arch/
x86/snp: allow disabling MFDM
x86/snp: create snp_x86_shutdown()
crypto: ccp - implement SNP x86 shutdown

arch/x86/include/asm/sev.h | 4 +
arch/x86/virt/svm/sev.c | 148 +++++++++++++++++++----------------
drivers/crypto/ccp/sev-dev.c | 65 ++++++++-------
include/linux/psp-sev.h | 4 +-
4 files changed, 125 insertions(+), 96 deletions(-)

base-commit: 11439c4635edd669ae435eec308f4ab8a0804808
--
2.53.0