• Tom Lendacky's avatar
    KVM: SVM: Add support for EFER write traps for an SEV-ES guest · 2985afbc
    Tom Lendacky authored
    For SEV-ES guests, the interception of EFER write access is not
    recommended. EFER interception occurs prior to EFER being modified and
    the hypervisor is unable to modify EFER itself because the register is
    located in the encrypted register state.
    
    SEV-ES support introduces a new EFER write trap. This trap provides
    intercept support of an EFER write after it has been modified. The new
    EFER value is provided in the VMCB EXITINFO1 field, allowing the
    hypervisor to track the setting of the guest EFER.
    
    Add support to track the value of the guest EFER value using the EFER
    write trap so that the hypervisor understands the guest operating mode.
    Signed-off-by: default avatarTom Lendacky <thomas.lendacky@amd.com>
    Message-Id: <8993149352a3a87cd0625b3b61bfd31ab28977e1.1607620209.git.thomas.lendacky@amd.com>
    Signed-off-by: default avatarPaolo Bonzini <pbonzini@redhat.com>
    2985afbc
svm.c 117 KB