diff options
| author | Brijesh Singh <[email protected]> | 2024-05-01 03:51:54 -0500 |
|---|---|---|
| committer | Paolo Bonzini <[email protected]> | 2024-05-12 04:09:28 -0400 |
| commit | 1dfe571c12cf99244b933208fb77f29471ded677 (patch) | |
| tree | 84e45353f5140b4fdc49cb2dce34c75dc2cade6c /lib/test_fortify/write_overflow-strncpy-src.c | |
| parent | a8e31983335554193c2cb373161d08880230abfd (diff) | |
KVM: SEV: Add initial SEV-SNP support
SEV-SNP builds upon existing SEV and SEV-ES functionality while adding
new hardware-based security protection. SEV-SNP adds strong memory
encryption and integrity protection to help prevent malicious
hypervisor-based attacks such as data replay, memory re-mapping, and
more, to create an isolated execution environment.
Define a new KVM_X86_SNP_VM type which makes use of these capabilities
and extend the KVM_SEV_INIT2 ioctl to support it. Also add a basic
helper to check whether SNP is enabled and set PFERR_PRIVATE_ACCESS for
private #NPFs so they are handled appropriately by KVM MMU.
Signed-off-by: Brijesh Singh <[email protected]>
Co-developed-by: Michael Roth <[email protected]>
Signed-off-by: Michael Roth <[email protected]>
Signed-off-by: Ashish Kalra <[email protected]>
Reviewed-by: Paolo Bonzini <[email protected]>
Message-ID: <[email protected]>
Signed-off-by: Paolo Bonzini <[email protected]>
Diffstat (limited to 'lib/test_fortify/write_overflow-strncpy-src.c')
0 files changed, 0 insertions, 0 deletions