Re: [PATCH 4/4] kvm: svm: Support KVM_SEV_SNP_PAGE_TYPE_VMSA at SNP_LAUNCH_UPDATE

Next message: Yu Peng: "[RFC] arm64: early_ioremap fails to map ACPI MADT on 64K pages"
Previous message: Alexandre Courbot: "[PATCH v2 2/3] gpu: nova-core: move GPU static information acquisition to a GSP method"
In reply to: Sean Christopherson: "Re: [PATCH 4/4] kvm: svm: Support KVM_SEV_SNP_PAGE_TYPE_VMSA at SNP_LAUNCH_UPDATE"
Next in thread: Sean Christopherson: "Re: [PATCH 4/4] kvm: svm: Support KVM_SEV_SNP_PAGE_TYPE_VMSA at SNP_LAUNCH_UPDATE"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: Jörg Rödel

Date: Wed Jun 17 2026 - 02:47:38 EST

On Tue, Jun 16, 2026 at 10:55:28AM -0700, Sean Christopherson wrote:
> Isn't this essentially the same thing as hot-plugging vCPUs after launch? I
> have yet to review it in depth (sorry Jethro), but it looks a *lot* simpler.

Replacing the VMSA after launch (as supported with the AP_CREATE GHCB call) is
different because this has no influence on the launch measurement.

The point of providing an initial VMSA is to get a predictable launch
measurement which is independent of the number of VCPUs the guest has.

With the current code KVM will create its own VMSA for each created VCPU and
measure it into the guests initial image. This makes predicting the initial
launch measurement difficult (as it depends on KVM internals) and fragile because
KVM-internal changes always carry a risk to change the launch measurement
(which has happened a couple of times already).

-Joerg