[PATCH RFC v9 23/51] KVM: SEV: Select CONFIG_KVM_PROTECTED_VM when CONFIG_KVM_AMD_SEV=y

From: Michael Roth
Date: Mon Jun 12 2023 - 00:36:27 EST

Next message: Michael Roth: "[PATCH RFC v9 24/51] KVM: SVM: Add support to handle AP reset MSR protocol"
Previous message: Michael Roth: "[PATCH RFC v9 22/51] crypto: ccp: Add the SNP_PLATFORM_STATUS command"
In reply to: Michael Roth: "[PATCH RFC v9 22/51] crypto: ccp: Add the SNP_PLATFORM_STATUS command"
Next in thread: Michael Roth: "[PATCH RFC v9 24/51] KVM: SVM: Add support to handle AP reset MSR protocol"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

AMD SEV relies on the restricted/protected memory support to run guests
in some cases (such as SEV lazy-pinning), so make sure to enable that
support with the CONFIG_KVM_PROTECTED_VM build option.

Signed-off-by: Michael Roth <michael.roth@xxxxxxx>
---
arch/x86/kvm/Kconfig | 1 +
1 file changed, 1 insertion(+)

diff --git a/arch/x86/kvm/Kconfig b/arch/x86/kvm/Kconfig
index 718010600956..638679a4e5dc 100644
--- a/arch/x86/kvm/Kconfig
+++ b/arch/x86/kvm/Kconfig
@@ -126,6 +126,7 @@ config KVM_AMD_SEV
bool "AMD Secure Encrypted Virtualization (SEV) support"
depends on KVM_AMD && X86_64
depends on CRYPTO_DEV_SP_PSP && !(KVM_AMD=y && CRYPTO_DEV_CCP_DD=m)
+ select KVM_PROTECTED_VM
help
Provides support for launching Encrypted VMs (SEV) and Encrypted VMs
with Encrypted State (SEV-ES) on AMD processors.
--
2.25.1

Next message: Michael Roth: "[PATCH RFC v9 24/51] KVM: SVM: Add support to handle AP reset MSR protocol"
Previous message: Michael Roth: "[PATCH RFC v9 22/51] crypto: ccp: Add the SNP_PLATFORM_STATUS command"
In reply to: Michael Roth: "[PATCH RFC v9 22/51] crypto: ccp: Add the SNP_PLATFORM_STATUS command"
Next in thread: Michael Roth: "[PATCH RFC v9 24/51] KVM: SVM: Add support to handle AP reset MSR protocol"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]