<?xml version="1.0" encoding="UTF-8" standalone="yes"?> <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>LKML: Kim Phillips: Re: [PATCH 0/5] Provide SEV-ES/SEV-SNP support for decrypting the VMSA</title><link href="/css/message.css" rel="stylesheet" type="text/css" /><link href="/css/wrap.css" rel="alternate stylesheet" type="text/css" title="wrap" /><link href="/css/nowrap.css" rel="stylesheet" type="text/css" title="nowrap" /><link href="/favicon.ico" rel="shortcut icon" /><script src="/js/simple-calendar.js" type="text/javascript"></script><script src="/js/styleswitcher.js" type="text/javascript"></script><link rel="alternate" type="application/rss+xml" title="lkml.org : last 100 messages" href="/rss.php" /><link rel="alternate" type="application/rss+xml" title="lkml.org : last messages by Kim Phillips" href="/groupie.php?aid=" /><!--Matomo--><script> var _paq = window._paq = window._paq || []; /* tracker methods like "setCustomDimension" should be called before "trackPageView" */ _paq.push(["setDoNotTrack", true]); _paq.push(["disableCookies"]); _paq.push(['trackPageView']); _paq.push(['enableLinkTracking']); (function() { var u="//m.lkml.org/"; _paq.push(['setTrackerUrl', u+'matomo.php']); _paq.push(['setSiteId', '1']); var d=document, g=d.createElement('script'), s=d.getElementsByTagName('script')[0]; g.async=true; g.src=u+'matomo.js'; s.parentNode.insertBefore(g,s); })(); </script><!--End Matomo Code--></head><body onload="es.jasper.simpleCalendar.init();" itemscope="itemscope" itemtype="http://schema.org/BlogPosting"><table border="0" cellpadding="0" cellspacing="0"><tr><td width="180" align="center"><a href="/"><img style="border:0;width:135px;height:32px" src="/images/toprowlk.gif" alt="lkml.org" /></a></td><td width="32">聽</td><td class="nb"><div><a class="nb" href="/lkml"> [lkml]</a> 聽 <a class="nb" href="/lkml/2025"> [2025]</a> 聽 <a class="nb" href="/lkml/2025/3"> [Mar]</a> 聽 <a class="nb" href="/lkml/2025/3/21"> [21]</a> 聽 <a class="nb" href="/lkml/last100"> [last100]</a> 聽 <a href="/rss.php"><img src="/images/rss-or.gif" border="0" alt="RSS Feed" /></a></div><div>Views: <a href="#" class="nowrap" onclick="setActiveStyleSheet('wrap');return false;">[wrap]</a><a href="#" class="wrap" onclick="setActiveStyleSheet('nowrap');return false;">[no wrap]</a> 聽 <a class="nb" href="/lkml/mheaders/2025/3/21/1243" onclick="this.href='/lkml/headers'+'/2025/3/21/1243';">[headers]</a>聽 <a href="/lkml/bounce/2025/3/21/1243">[forward]</a>聽 </div></td><td width="32">聽</td></tr><tr><td valign="top"><div class="es-jasper-simpleCalendar" baseurl="/lkml/"></div><div class="threadlist">Messages in this thread</div><ul class="threadlist"><li class="root"><a href="/lkml/2025/3/20/741">First message in thread</a></li><li><a href="/lkml/2025/3/20/741">Tom Lendacky</a><ul><li><a href="/lkml/2025/3/20/736">Tom Lendacky</a><ul><li><a href="/lkml/2025/3/21/877">Tom Lendacky</a><ul><li><a href="/lkml/2025/3/21/887">Tom Lendacky</a></li></ul></li></ul></li><li><a href="/lkml/2025/3/20/737">Tom Lendacky</a></li><li><a href="/lkml/2025/3/20/738">Tom Lendacky</a></li><li><a href="/lkml/2025/3/20/739">Tom Lendacky</a></li><li><a href="/lkml/2025/3/20/744">Tom Lendacky</a></li><li><a href="/lkml/2025/3/20/827">Borislav Petkov</a><ul><li class="origin"><a href="">Kim Phillips</a></li></ul></li></ul></li></ul></td><td width="32" rowspan="2" class="c" valign="top"><img src="/images/icornerl.gif" width="32" height="32" alt="/" /></td><td class="c" rowspan="2" valign="top" style="padding-top: 1em"><table><tr><td><table><tr><td class="lp">Date</td><td class="rp" itemprop="datePublished">Fri, 21 Mar 2025 13:43:51 -0500</td></tr><tr><td class="lp">Subject</td><td class="rp" itemprop="name">Re: [PATCH 0/5] Provide SEV-ES/SEV-SNP support for decrypting the VMSA</td></tr><tr><td class="lp">From</td><td class="rp" itemprop="author">Kim Phillips &lt;&gt;</td></tr></table></td><td></td></tr></table><pre itemprop="articleBody">On 3/20/25 9:17 AM, Borislav Petkov wrote:<br />&gt; On Thu, Mar 20, 2025 at 08:26:48AM -0500, Tom Lendacky wrote:<br />&gt;&gt; This series adds support for decrypting an SEV-ES/SEV-SNP VMSA in<br />&gt;&gt; dump_vmcb() when the guest policy allows debugging.<br />&gt; <br />&gt; I would really really love to have that so<br />&gt; <br />&gt; Acked-by: Borislav Petkov (AMD) &lt;bp&#64;alien8.de&gt;<br /><br />Me too.<br /><br />Tested-by: Kim Phillips &lt;kim.phillips&#64;amd.com&gt;<br /><br />Thanks,<br /><br />Kim<br /><br />kvm_amd: SEV-SNP vCPU1 VMCB 00000000759a48a5, last attempted VMRUN on CPU 7<br />kvm_amd: VMCB Control Area:<br />kvm_amd: cr_read: 0000<br />kvm_amd: cr_write: 0000<br />kvm_amd: dr_read: 0080<br />kvm_amd: dr_write: 0080<br />kvm_amd: exceptions: 00060002<br />kvm_amd: intercepts: bccc8007 0111ce43<br />kvm_amd: pause filter count: 3000<br />kvm_amd: pause filter threshold:128<br />kvm_amd: iopm_base_pa: 0000000148e44000<br />kvm_amd: msrpm_base_pa: 0000000276e3e000<br />kvm_amd: tsc_offset: ffff6b01ea8aa6f6<br />kvm_amd: asid: 3<br />kvm_amd: tlb_ctl: 0<br />kvm_amd: int_ctl: 07000200<br />kvm_amd: int_vector: 00000000<br />kvm_amd: int_state: 00000000<br />kvm_amd: exit_code: ffffffff<br />kvm_amd: exit_info1: 0000000000000000<br />kvm_amd: exit_info2: 0000000000000000<br />kvm_amd: exit_int_info: 00000000<br />kvm_amd: exit_int_info_err: 00000000<br />kvm_amd: nested_ctl: 7<br />kvm_amd: nested_cr3: 000000022fc06000<br />kvm_amd: avic_vapic_bar: 0000000000000000<br />kvm_amd: ghcb: 00000000bfeda000<br />kvm_amd: event_inj: 00000000<br />kvm_amd: event_inj_err: 00000000<br />kvm_amd: virt_ext: 3<br />kvm_amd: next_rip: 0000000000000000<br />kvm_amd: avic_backing_page: 0000000000000000<br />kvm_amd: avic_logical_id: 0000000000000000<br />kvm_amd: avic_physical_id: 0000000000000000<br />kvm_amd: vmsa_pa: 00000005d35c0000<br />kvm_amd: allowed_sev_features:8000000000000001<br />kvm_amd: guest_sev_features: 0000000000000081<br />kvm_amd: VMCB State Save Area:<br />kvm_amd: es: s: 0000 a: 0092 l: 0000ffff b: 0000000000000000<br />kvm_amd: cs: s: 9900 a: 009a l: 0000ffff b: 0000000000099000<br />kvm_amd: ss: s: 0000 a: 0092 l: 0000ffff b: 0000000000000000<br />kvm_amd: ds: s: 0000 a: 0092 l: 0000ffff b: 0000000000000000<br />kvm_amd: fs: s: 0000 a: 0092 l: 0000ffff b: 0000000000000000<br />kvm_amd: gs: s: 0000 a: 0092 l: 0000ffff b: 0000000000000000<br />kvm_amd: gdtr: s: 0000 a: 0000 l: 0000ffff b: 0000000000000000<br />kvm_amd: ldtr: s: 0000 a: 0082 l: 0000ffff b: 0000000000000000<br />kvm_amd: idtr: s: 0000 a: 0000 l: 0000ffff b: 0000000000000000<br />kvm_amd: tr: s: 0000 a: 0083 l: 0000ffff b: 0000000000000000<br />kvm_amd: vmpl: 0 cpl: 0 efer: 0000000000001000<br />kvm_amd: cr0: 0000000060000010 cr2: 0000000000000000<br />kvm_amd: cr3: 0000000000000000 cr4: 0000000000000040<br />kvm_amd: dr6: 00000000ffff0ff0 dr7: 0000000000000400<br />kvm_amd: rip: 0000000000000050 rflags: 0000000000000002<br />kvm_amd: rsp: 0000000000000000 rax: 0000000000000000<br />kvm_amd: star: 0000000000000000 lstar: 0000000000000000<br />kvm_amd: cstar: 0000000000000000 sfmask: 0000000000000000<br />kvm_amd: kernel_gs_base: 0000000000000000 sysenter_cs: 0000000000000000<br />kvm_amd: sysenter_esp: 0000000000000000 sysenter_eip: 0000000000000000<br />kvm_amd: gpat: 0007040600070406 dbgctl: 0000000000000000<br />kvm_amd: br_from: 0000000000000000 br_to: 0000000000000000<br />kvm_amd: excp_from: 0000000000000000 excp_to: 0000000000000000<br />kvm_amd: sev_features 0000000000000081<br />kvm_amd: rax: 0000000000000000 rbx: 0000000000000000<br />kvm_amd: rcx: 0000000000000000 rdx: 0000000000000000<br />kvm_amd: rsi: 0000000000000000 rdi: 0000000000000000<br />kvm_amd: rbp: 0000000000000000 rsp: 0000000000000000<br />kvm_amd: r8: 0000000000000000 r9: 0000000000000000<br />kvm_amd: r10: 0000000000000000 r11: 0000000000000000<br />kvm_amd: r12: 0000000000000000 r13: 0000000000000000<br />kvm_amd: r14: 0000000000000000 r15: 0000000000000000<br />kvm_amd: xcr0: 0000000000000001 xss: 0000000000000000<br /><br /></pre></td><td width="32" rowspan="2" class="c" valign="top"><img src="/images/icornerr.gif" width="32" height="32" alt="\" /></td></tr><tr><td align="right" valign="bottom"> 聽 </td></tr><tr><td align="right" valign="bottom">聽</td><td class="c" valign="bottom" style="padding-bottom: 0px"><img src="/images/bcornerl.gif" width="32" height="32" alt="\" /></td><td class="c">聽</td><td class="c" valign="bottom" style="padding-bottom: 0px"><img src="/images/bcornerr.gif" width="32" height="32" alt="/" /></td></tr><tr><td align="right" valign="top" colspan="2"> 聽 </td><td class="lm">Last update: 2025-03-21 19:44 聽聽 [W:0.186 / U:5.658 seconds]<br />漏2003-2020 <a href="http://blog.jasper.es/"><span itemprop="editor">Jasper Spaans</span></a>|hosted at <a href="https://www.digitalocean.com/?refcode=9a8e99d24cf9">Digital Ocean</a> and my Meterkast|<a href="http://blog.jasper.es/categories.html#lkml-ref">Read the blog</a></td><td>聽</td></tr></table><script language="javascript" src="/js/styleswitcher.js" type="text/javascript"></script></body></html>