From f2ea010b8180b4160d85c92e312971d0cd8a34d4 Mon Sep 17 00:00:00 2001
From: Louis Burda <quent.burda@gmail.com>
Date: Tue, 17 Jan 2023 16:30:33 +0100
Subject: Fixup kvm-eviction and refactor kvm-step

---
 README | 16 +++++++++++++++-
 1 file changed, 15 insertions(+), 1 deletion(-)

(limited to 'README')

diff --git a/README b/README
index cacc658..b71cc19 100644
--- a/README
+++ b/README
@@ -43,7 +43,21 @@ test/qemu-poc:
 	Demonstrate that AES encryption keys can be leaked from an
 	unmodified qemu-based linux guest.
 
-Testing was done on a bare-metal AMD EPYC 72F3 (Family 0x19, Model 0x01).
+Testing was done on a bare-metal AMD EPYC 72F3 (Family 0x19, Model 0x01)
+cpu and Supermicro H12SSL-i V1.01 motherboard. The following BIOS settings
+differ from the defaults:
+
+Advanced > CPU Configuration > Local APIC Mode = xAPIC
+Advanced > CPU Configuration > L1 Stream HW Prefetcher = Disabled
+Advanced > CPU Configuration > L2 Stream HW Prefetcher = Disabled
+Advanced > CPU Configuration > SMEE = Enabled
+Advanced > CPU Configuration > SEV ASID Count = 509
+Advanced > CPU Configuration > SEV ASID Space Limit Control = Manual
+Advanced > CPU Configuration > SEV ASID Space Limit = 110
+Advanced > CPU Configuration > SNP Memory (RMP Table) Coverage = Enabled
+Advanced > North Bridge Configuration > SEV-SNP Support = Enabled
+Advanced > North Bridge Configuration > Memory Configuration > TSME = Disabled
+Advanced > PCI Devices Common Settings > Memory Configuration > TSME = Disabled
 
 To successfully build and load the kvm.ko and kvm-amd.ko modules, ensure
 that a host kernel debian package was built using `make host`.
-- 
cgit v1.2.3-71-gd317