This series adds support for enabling VMSA SEV features for SEV-ES and 
SEV-SNP guests through the Qemu command line. This is already supported 
for IGVM files, so some of that code has been generalized and reused.

Debug-swap is already supported in KVM today, while patches for enabling 
Secure TSC have been accepted for the upcoming kernel release.

I have tested this with a simple IGVM file generated by the buildigvm 
tool, and it did not show any issues with IGVM compatibility.


- Naveen

---
v2: http://lore.kernel.org/r/cover.1758794556.git.naveen@kernel.org

Changes since v2:
- Clarify that debug-swap property only works for SEV-ES/SEV-SNP guests, 
  and update commit log to clarify the same (Markus)
- Update commit log to clarify need for a new tsc-frequency property and 
  its interaction with the one on the cpu object (Tom)


Naveen N Rao (AMD) (9):
  target/i386: SEV: Generalize handling of SVM_SEV_FEAT_SNP_ACTIVE
  target/i386: SEV: Ensure SEV features are only set through qemu cli or
    IGVM
  target/i386: SEV: Consolidate SEV feature validation to common init
    path
  target/i386: SEV: Validate that SEV-ES is enabled when VMSA features
    are used
  target/i386: SEV: Enable use of KVM_SEV_INIT2 for SEV-ES guests
  target/i386: SEV: Add support for enabling debug-swap SEV feature
  target/i386: SEV: Add support for enabling Secure TSC SEV feature
  target/i386: SEV: Add support for setting TSC frequency for Secure TSC
  target/i386: SEV: Refactor check_sev_features()

 target/i386/sev.h |   4 +-
 target/i386/sev.c | 171 +++++++++++++++++++++++++++++++++++++---------
 qapi/qom.json     |  17 ++++-
 3 files changed, 157 insertions(+), 35 deletions(-)


base-commit: 36076d24f04ea9dc3357c0fbe7bb14917375819c
-- 
2.51.0