• AMD Posts Linux Patches For SEV-SNP BTB Isolation It’s quite a mouthful but today AMD posted Linux kernel patches for preparing SEV-SNP BTB isolation support for further enhancing the security of virtual machines (VMs) for confidential computing. • AMD SEV-SNP BTB isolation is around ensuring guest VMs protected by Secure Encrypted Virtualization Secure Nested Paging (SEV-SNP) cannot have their branch target buffers (BTBs) affected by context outside of that guest virtual machine. • The AMD EPYC CPU hardware tracks each guest’s branch target buffer’s entries and can flush the BTB when determining it to be “contaminated” with any prediction information outside of that guest’s context. • The kernel patch enabling SEV-SNP BTB sums it up as: This patch series is out for review on the kernel mailing list for plumbing that BTB isolation support. • There are also patches for QEMU for handling the BTB isolation feature. • With the BTB Isolation feature having been added to AMD’s programming guide back in March 2024, it would appear that current AMD EPYC 9005 “Turin” server processors are already capable of supporting this security feature for VMs.

Article Summaries:

  • AMD has released Linux kernel patches that enable SEV‑SNP BTB isolation, a security feature that prevents a virtual machine’s branch target buffer (BTB) from being contaminated by other guests. The patches, which also include QEMU updates, are under review on the kernel mailing list. The feature, added to AMD’s programming guide in March 2024, is already supported by current EPYC 9005 “Turin” processors. AMD notes that the hardware tracks each guest’s BTB entries and can flush them when contamination is detected, and recommends running the hypervisor with SPEC_CTRL[IBRS] to mitigate potential performance penalties.

Sources: