On 10/2/24 05:37, Paolo Bonzini wrote:
The idea that no parameter would ever be necessary when enabling SEV or SEV-ES for a VM was decidedly optimistic. In fact, in some sense it's already a parameter whether SEV or SEV-ES is desired. Another possible source of variability is the desired set of VMSA features, as that affects the measurement of the VM's initial state and cannot be changed arbitrarily by the hypervisor. Create a new sub-operation for KVM_MEM_ENCRYPT_OP that can take a struct,
a typo here: KVM_MEMORY_ENCRYPT_OP. -- Alexey
