[GIT PULL] x86/sev for v7.1-rc1

[Borislav Petkov]

Hi Linus,

please pull the x86/sev lineup for v7.1-rc1.

Thx.

---

The following changes since commit 1f318b96cc84d7c2ab792fcc0bfd42a7ca890681:

  Linux 7.0-rc3 (2026-03-08 16:56:54 -0700)

are available in the Git repository at:

  ssh://git@xxxxxxxxxxxxxxxxxxx/pub/scm/linux/kernel/git/tip/tip tags/x86_sev_for_v7.1_rc1

for you to fetch changes up to c3aa64ab6a5ea553ee70526579908936a3ff9392:

  crypto/ccp: Update HV_FIXED page states to allow freeing of memory (2026-03-30 12:10:05 +0200)

----------------------------------------------------------------
- Change the SEV host code handling of when SNP gets enabled in order to allow
  the machine to claim SNP-related resources only when SNP guests are really
  going to be launched. The user requests this by loading the ccp module and
  thus it controls when SNP initialization is done

  So export an API which module code can call and do the necessary SNP setup
  only when really needed

- Drop an unnecessary write-back and invalidate operation that was being
  performed too early, since the ccp driver already issues its own at the
  correct point in the initialization sequence

— Drop the hotplug callbacks for enabling SNP on newly onlined CPUs, which
  were both architecturally unsound (the firmware rejects initialization if any
  CPU lacks the required configuration) and buggy (the MFDM SYSCFG MSR bit was
  not being set)

- Code refactoring and cleanups to accomplish the above

----------------------------------------------------------------
Kim Phillips (1):
      x86/sev: Rename SNP_FEATURES_PRESENT to SNP_FEATURES_IMPL

Tom Lendacky (3):
      x86/virt/sev: Keep the RMP table bookkeeping area mapped
      x86/sev: Create a function to clear/zero the RMP
      crypto/ccp: Update HV_FIXED page states to allow freeing of memory

Tycho Andersen (AMD) (7):
      x86/virt/sev: Drop support for SNP hotplug
      x86/virt/sev: Drop WBINVD before setting MSR_AMD64_SYSCFG_SNP_EN
      x86/sev: Create snp_prepare()
      x86/sev: Create snp_shutdown()
      x86/sev, crypto/ccp: Move SNP init to ccp driver
      x86/sev, crypto/ccp: Move HSAVE_PA setup to arch/x86/
      crypto/ccp: Implement SNP x86 shutdown

 arch/x86/boot/compressed/sev.c |   6 +-
 arch/x86/include/asm/sev.h     |   4 +
 arch/x86/virt/svm/sev.c        | 163 ++++++++++++++++++++++-------------------
 drivers/crypto/ccp/sev-dev.c   |  62 +++++++++-------
 include/linux/psp-sev.h        |   5 +-
 5 files changed, 135 insertions(+), 105 deletions(-)


-- 
Regards/Gruss,
    Boris.

https://people.kernel.org/tglx/notes-about-netiquette