[PATCH 0/6] Add RMPOPT support.

Next message: Ashish Kalra: "[PATCH 3/6] x86/sev: add support for RMPOPT instruction"
Previous message: Kairui Song via B4 Relay: "[PATCH v3 06/12] mm, swap: implement helpers for reserving data in the swap table"
Next in thread: Ashish Kalra: "[PATCH 3/6] x86/sev: add support for RMPOPT instruction"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: Ashish Kalra

Date: Tue Feb 17 2026 - 15:10:29 EST

From: Ashish Kalra <ashish.kalra@xxxxxxx>

In the SEV-SNP architecture, hypervisor and non-SNP guests are subject
to RMP checks on writes to provide integrity of SEV-SNP guest memory.

The RMPOPT architecture enables optimizations whereby the RMP checks
can be skipped if 1GB regions of memory are known to not contain any
SNP guest memory.

RMPOPT is a new instruction designed to minimize the performance
overhead of RMP checks for the hypervisor and non-SNP guests.

As SNP is enabled by default the hypervisor and non-SNP guests are
subject to RMP write checks to provide integrity of SNP guest memory.

This patch series add support to enable RMPOPT optimizations globally
for all system RAM, and allow RMPUPDATE to disable those optimizations
as SNP guests are launched.

Additionally add a configfs interface to re-enable RMP optimizations at
runtime and debugfs interface to report per-CPU RMPOPT status across
all system RAM.

Ashish Kalra (6):
x86/cpufeatures: Add X86_FEATURE_AMD_RMPOPT feature flag
x86/sev: add support for enabling RMPOPT
x86/sev: add support for RMPOPT instruction
x86/sev: Add interface to re-enable RMP optimizations.
x86/sev: Use configfs to re-enable RMP optimizations.
x86/sev: Add debugfs support for RMPOPT

arch/x86/include/asm/cpufeatures.h | 2 +-
arch/x86/include/asm/msr-index.h | 3 +
arch/x86/include/asm/sev.h | 2 +
arch/x86/kernel/cpu/scattered.c | 1 +
arch/x86/kvm/Kconfig | 1 +
arch/x86/virt/svm/sev.c | 471 +++++++++++++++++++++++++++++
drivers/crypto/ccp/sev-dev.c | 4 +
7 files changed, 483 insertions(+), 1 deletion(-)

--
2.43.0