Notes:
- A CSF/PLAT/FWDEV are the firmware team's internal ticket trackers and are all the same.
- Normally the SEV FW included in this .zip file will be placed in /lib/firmware/amd and the Linux SEV driver will update the FW at boot time.
- It may be policy to bump the SEV FW Version as part of a PSP bootloader release even if no SEV changes are present.

Requirements to hot-patch an image:
- The MinBLVersion is the minimum PSP Bootloader version that is required to run an SEV firmware image. This version is rarely bumped, if ever, since that would require a BIOS update to update the PSP Bootloader.
    * The current SEV binary's MinBLVersion requires a PSP BootLoader version of 00.13.00.60 or greater. Milan AGESA PI 1.0.0.4 included a sufficient PSP Boot Loader.
- The MinUpgradeFrom feature (see SNP spec), which when bumped, requires the SNP Platform state to be UNINIT (and all SEV/SNP guests to be shutdown) to hot-patch that new firmware.

SPL Updates:
- On every SEV firmware release where a security mitigation has been added, the SNP SPL gets increased by 1. This is to let users know that it is important to update to this version. 
- Some security mitigations only require an SEV firmware update. Some mitigations require other components such as an updated microcode (can be hot patched), ABL, or SMU/PMFW.
- The goal is to allow hot-patching of the SEV firmware, but in some cases, multiple steps must be taken to ensure the system is secure. In some cases, that has been done with SPL clamping but moving forward this will be done with the SNPVerifyMitigation command.

Milan Bootloader SPL Clamping:
SPL 0x4 is clamped to having a minimum BIOS of Milan PI 100B

Milan SEV SPL Clamping:
SPL 0x17 is clamped to having a minimum microcode version, which can be hot patched. 
    * Milan B1 (0x0a0011d9), Milan B2 (0x0a001242)


---- Release Notes
Update SEV FW Version to 1.58.01 (hex 1.3A.00, SPL=0x1D) (released with PSP Bootloader 00.13.00.80)
FWDEV-159357:[SEV]Allow calling SNPShutdown/SNPShutdownEX while SNP already in the UNINIT state
FWDEV-154578:CVE-2025-61971, CVE-2025-54510
FWDEV-153810:[SEV]Cleanup on specific SNPInit failures so can disable SNP
    - If the RMP is not enabled (ex. first boot or after a SNPShutdownEX with x86=1 and iommu=1)
      and SNPInitEX fails, firmware will clear the SNP_EN MSR so the platform is not stuck in 
      an undesirable state (so SEV or non-SEV guests can still be run).
PLAT-180022:[SEV]CVE-2024-21954
FWDEV-153815:[SEV]Guest count was not being incremented during GuestRequestImport

Update SEV FW Version to 1.58.00 (hex 1.3A.00, SPL=0x1C) (released with PSP Bootloader 00.13.00.7F)
FWDEV-146492:[SEV]Updating SEV firmware version to match SNP ABI version (v1.58). (Should always be in sync)
CSF-2285:[SEV]Updating VerifyMitigation error codes around CVE-2025-0027

Update SEV FW Version to 1.55.35 (hex 1.37.23, SPL=0x1B)
FWDEV-125261:[SEV]CVE-2025-0027

Update SEV FW Version to 1.55.34 (hex 1.37.22, SPL=0x1B)
FWDEV-133910:[SEV]Moving mitigation vector to persistent location

Update SEV FW Version to 1.55.33 (hex 1.37.21, SPL=0x1B)
FWDEV-122495:[SEV]CVE-2025-48514. Disallow SEV-ES guests when SNP is enabled     
CSF-1995:[SEV]CVE-2023-20585
FWDEV-132920:[SEV]GuestRequest Commands should support all versions of messages
FWDEV-131117:[SEV]Bugfix around unmapping memory
FWDEV-132894:[SEV]Update SNP_PLATFORM_STATUS buffer to match SNP 1.58 ABI
FWDEV-130095:[SEV]Remove VM Check Subcommand in SNP_VERIFY_MITIGATION
FWDEV-126575:[SEV]CVE-2025-29952
FWDEV-124982:[SEV]Check Committed SPL in VERIFY_MITIGATION

Update SEV FW Version to 1.55.32 (hex 1.37.20, SPL=0x1A)
FWDEV-119815:[SEV]CVE-2025-0033
FWDEV-114174:[SEV]CVE-2025-0031
FWDEV-121415:[SEV]Slightly increase SNP_INIT speed
FWDEV-119815:[SEV]Reverting "CSF-2243:[SEV]SNP-Preinit (RMPCreate + RMPInstall)"
FWDEV-118944:[SEV]Implement PAGE_SWAP_DISABLE bit
FWDEV-114212:[SEV]Add SNP_VERIFY_MITIGATION Command

Update SEV FW Version to 1.55.31 (hex 1.37.1F, SPL=0x19) (released with PSP Bootloader 00.13.00.7E)
CSF-2251:[SEV]Allow Fn8000001F_EBX Bit 31 to be 1
FWDEV-105670,FWDEV-105674:[SEV]CVE-2024-36357, CVE-2024-36350

Update SEV FW Version to 1.55.30 (hex 1.37.1E, SPL=0x18)
CSF-2249:[SEV]Change microcode version check to accept higher versions

Update SEV FW Version to 1.55.29 (hex 1.37.1D, SPL=0x18) (released with PSP Bootloader 00.13.00.7D)
CSF-2246:[SEV]CVE-2024-36347
FWDEV-105118:[SEV]Security enhancement around keypair generation
CSF-2243:[SEV]SNP-Preinit (RMPCreate + RMPInstall)
FWDEV-103246:[SEV]Fix SNP Platform Status Buffer's Reserved Bit Count
FWDEV-92126:[SEV]Add CPUID (F/M/S) information to SEV/SNP attestation report
FWDEV-102153:[SEV]Implement TSC_INFO and HV_REPORT_REQ Commands
CSF-2242:[SEV]Implement RequestReport platform_info.ECC_EN

Update SEV FW Version to 1.55.28 (hex 1.37.1C, SPL=0x17)
(Back to normal)

Update SEV FW Version to 1.55.23 (hex 1.37.17, SPL=0x17)
(Non-public release and reserving extra versions)

Update SEV FW Version to 1.55.22 (hex 1.37.16, SPL=0x17) (released with PSP Bootloader 00.13.00.7C)
CSF-2222:[SEV]CVE-2024-21944
FWDEV-92684:[SEV]Fixing buffer over-read

Update SEV FW Version to 1.55.21 (hex 1.37.15, SPL=0x16) (released with PSP Bootloader 00.13.00.7B)
CSF-2212:[SEV]DRAM Permanent Area Clearing

Update SEV FW Version to 1.55.20 (hex 1.37.14, SPL=0x16) (MinUpgradeFrom initialized to 1)
CSF-2182:[SEV]Implement CXL and AES256 policy bits with FeatureInfo Update
CSF-2173:[SEV]Implement MinUpgradeFrom Feature for DLFW EX
CSF-2181:[SEV]Clear VLEK on ReportedTCB change
CSF-2170:[SEV]Enhancement to BNStore
CSF-2153:[SEV]CVE-2024-21978
PLAT-146620:[SEV]Add IOMMU Cache Soft Invalidate during SNP_SHUTDOWN Flow
FWDEV-67407:[SEV]PAGE_UNSMASH fails if RMP address is just below 64MB boundary
CSF-2158:[SEV]CVE-2024-21980
CSF-2148:[SEV]sev_hal_access_df_reg_indirect can overread memory
CSF-2122:[SEV]CVE-2023-31355
CSF-2140:[SEV]SNP_PAGE_MOVE uses incorrect chunk_size causing slow performance
CSF-2138:[SEV]SNP_INIT_EX HV-fixed range with page_count=0 is not ignored
CSF-2135:[SEV]Fix size calculation for scan_rmp

Update SEV FW Version to 1.55.18 (hex 1.37.12, SPL=0x15)
CSF-2119:[SEV]SNP_PAGE_MOVE error reporting can behave non-deterministically
CSF-2095:[SEV]Additional checks in snp_mcmd_guest_request
CSF-2103:[SEV]SNP_PAGE_RECLAIM error reporting behaves non-deterministically with DEFAULT pages
CSF-2095:[SEV]Additional security checks around SNP_GUEST_REQUEST
CSF-1988:[SEV]Only mark asids as dirty after a DLFW or DLFW_EX with IOMMU_SNP_SHUTDOWN
CSF-2083,CSF-2091:[SEV]Code cleanup and fixing invalid TCB comparison
CSF-2087:[SEV]Security enhancement around aes256gcm_authenticated_encrypt/decrypt

Update SEV FW Version to 1.55.17 (hex 1.37.11, SPL=0x15) (released with PSP Bootloader 00.13.00.7A)
CSF-2082:[SEV]Fix caching and other code around fuse harvesting
PLAT-146209:[SEV]CVE-2023-31351
CSF-1124:[SEV]Additional return value checking
CSF-1986:[SEV]Bootloader SPL check should not require DRTM to be present
PLAT-143481:[SEV]CVE-2023-31356

Update SEV FW Version to 1.55.16 (hex 1.37.10, SPL=0x14)
CSF-1981:[SEV]CVE-2023-20592
FWDEV-59614:[SEV]Additional security checks

Update SEV FW Version to 1.55.15 (hex 1.37.0F, SPL=0x13)
CSF-1966:[SEV]CVE-2023-31346
CSF-1963:[SEV]CVE-2023-31347

Update SEV FW Version to 1.55.14 (hex 1.37.0E, SPL=0x12)
CSF-1972:[SEV]System may Reset/Data Abort after DLFW

Update SEV FW Version to 1.55.13 (hex 1.37.0D, SPL=0x12)
PLAT-141483:[SEV]Fix Disable IOMMU caches around SNP_SHUTDOWN_EX

Update SEV FW Version to 1.55.12 (hex 1.37.0C, SPL=0x11)
CSF-1886:[SEV]Cover other FW with BL SPL
CSF-1879:[SEV]Support RAPL disable feature
CSF-1942:[SEV]Improve FEATURE_INFO reporting

Update SEV FW Version to 1.55.11 (hex 1.37.0B, SPL=0x11)
PLAT-139261:[SEV]Security enhancement around CCP registers

Update SEV FW Version to 1.55.10 (hex 1.37.0A, SPL=0x10)
CSF-1918:[SEV]SNP INIT routine does not detect invalid encoding
CSF-1881:[SEV]Fix DLFW (non-EX) after SNP_INIT

Update SEV FW Version to 1.55.09 (hex 1.37.09, SPL=0xF)
CSF-1897:[SEV]CVE-2023-20584

Update SEV FW Version to 1.55.08 (hex 1.37.08, SPL=0xE)
CSF-1871:[SEV]Fix SNP_PAGE_SET_STATE subpage count issue
CSF-1860:[SEV]New unmanaged bits in Fn8000_0021 EAX
CSF-1873:[SEV]Add volatile to pointers to x86 memory

Update SEV FW Version to 1.55.07 (hex 1.37.07, SPL=0xE) (released with PSP Bootloader 00.13.00.79, part of PI 100B)
PLAT-134809:[SEV]Fix SHUTDOWN_EX 253-ASID mode issue

Update SEV FW Version to 1.55.06 (hex 1.37.06, SPL=0xE) (released with PSP Bootloader 00.13.00.78)
CSF-1850:[SEV]Fix walk_reserved_list
CSF-1846:[SEV]Coverity clean up, no functional change

Update SEV FW VErsion to 1.55.05 (hex 1.37.05, SPL=0xD)
CSF-1838:[SEV]SNP_SHUTDOWN_EX new error condition
CSF-1837:[SEV]Incorrect SNP_INIT_EX processing of LIST_PADDR_EN
CSF-1836:[SEV]Clear VCEK off stack on error
CSF-1835:[SEV]Incorrect compare for page boundary crossing
CSF-1834:[SEV]Incorrect re-calc of map size in UNSMASH
CSF-1833:[SEV]Incorrect cast from uint32 to int32 to int64

Update SEV FW Version to 1.55.04 (hex 1.37.04, SPL=0xC)
CSF-1725:[SEV]Qualify FEATURE_INFO bit for X86_SHUTDOWN

Update SEV FW Version to 1.55.03 (hex 1.37.03, SPL=0xC)
PLAT-131821:[SEV]Speed up SNP_INIT*
PLAT-128913:[SEV]Avoid P1 running a new image before P0
CSF-1725[SEV]:SHUTDOWN_EX SNPEn clearing
CSF-1723:[SEV]Extended Error reporting
CSF-1737:[SEV]Improve uCode version handling

Update SEV FW Version to 1.55.01 (hex 1.37.01, SPL=0xB) (MinBLVersion bumped to 00.13.00.60)
CSF-1726:[SEV]FEATURE_INFO command
CSF-1724:[SEV]Make SEV FW work with PI 1004
CSF-1728:[SEV]Use common RMP API to initialize ranges
CSF-1716:[SEV]Use VM_HSAVE_PA MSR instead of S3 save area

Update SEV FW Version to 1.54.05 (hex 1.36.05, SPL=0xB)
CSF-1718:[SEV]SNP_GUEST_REQUEST does not check the response's 4k page boundary properly

Update SEV FW Version to 1.54.04 (hex 1.36.04, SPL=0xB)
CSF-1705:[SEV]rmp_entry_write does not properly handle 2MB-aligned pages

Update SEV FW Version to 1.54.02 (hex 1.36.02, SPL=0xA) (released with PSP Bootloader 00.13.00.76)
CSF-1660:[SEV]Fix Ring Buffer race condition
CSF-1670:[SEV]Ignore 2nd LSByte in BL Version
CSF-1664:[SEV]Fix too aggressive page boundary detection

Update SEV FW Version to 1.54.01 (hex 1.36.01, SPL=0xA)
CSF-1529:[SEV]Update FW to match SNP 1.54 Specification/VLEK support
CSF-1534:[SEV]Fix Coverity Issues

Update SEV FW Version to 1.53.04 (hex 1.35.04) (SPL/SVN bumped to 0xA)
PLAT-116763:[SEV]Correctly handle an SNP_COMMIT before FW download
CSF-1364:[SEV]Fix key generation when an older TCB is requested

Update SEV FW Version to 1.53.02 (hex 1.35.02) (released with PSP Bootloader 00.13.00.73)
PLAT-114362:[SEV]Support harvested OPNs

Update SEV FW Version to 1.53.01 (hex 1.35.01) (SPL/SVN bumped to 0x9)
CSF-1344:[SEV]Verify SMM Lock bit in HWCR MSR in SNP_INIT
CSF-1348:[SEV]Verify MA Report ID on Guest Export
CSF-1337:[SEV]IOMMU log pages to RECLAIM on SNP_SHUTDOWN_EX
CSF-1495:[SEV]Update FW to match SNP 1.53 Specification
CSF-1490:[SEV]Avoid writes to SPA 0-0x7 on SNP Guest Decommission
CSF-1494:[SEV]Don't update unmodified RMP entry in SNP Guest Messages

Update SEV FW Version to 1.52.05 (hex 1.34.05)
CSF-1349:[SEV]Updates to checking CPUID Fn8000_0008EBX

Update SEV FW Version to 1.52.04 (hex 1.34.04) (SPL/SVN bumped to 0x8)
PLAT-106636:[SEV]Prevent abuse of SMM region for SNP guest memory

Update SEV FW Version to 1.52.02 (hex 1.34.02)
PLAT-105776:[SEV]Improve validation of Range List in SNP_INIT_EX

Update SEV FW Version to 1.52.01 (hex 1.34.01) (SPL/SVN bumped to 0x7)
PLAT-104073:[SEV]Update FW to match SNP 1.52 Specification

Update SEV FW Version to 1.51.03 (hex 1.33.03)
CSF-1130:[SEV]Bugfix Around SNP Measurement Calculation
CSF-1196:[SEV]Fix SET/CLEAR_CBIT macros
CSF-1233:[SEV]Ensuring reserved bits are 0 for SNP_LAUNCH_UPDATE CPUID

Update SEV FW Version to hex 1.33.02
CSF-1232:[SEV]Test transfers against the memory map
CSF-1221:[SEV]Build reliable memory map

Update SEV FW Version to hex 1.33.01 (SPL/SVN bumped to 0x6)
CSF-1217:[SEV]Test SYSCFG[19] is set on all threads
CSF-1202:[SEV]Updating Specific CPUID Check for Reserved Bits

Update SEV FW Version to hex 1.31.07 (released with PSP Bootloader 00.13.00.6F)
CSF-1201:[SEV]Use NEW image header to update committed for SEV DLFW

Update SEV FW Version to hex 1.31.06 (released with PSP Bootloader 00.13.00.6E)
PLAT-78052:[SEV]SecureTSC - part 1,2,3

Update SEV FW Version to hex 1.31.04 (released with PSP Bootloader 00.13.00.6C)
CSF-1099:[SEV]Bugfix in SNP_ININT IOMMU Settings
CSF-1139:[SEV]Ensure GUEST_REQUEST is all on the same page
CSF-1174:[SEV]Bugfix, MSR check broken on 1P systems
CSF-1166:Coalesce adjacent DF memory regions
CSF-1137:[SEV]Additional MSR validation during SNP Init
CSF-1128:[SEV]Improved RMP checks
CSF-1111:[SEV]Adding missing memzero of ApicID P2P command

Update SEV FW Version to hex 1.31.03 (released with PSP Bootloader 00.13.00.6B)
CSF-1127:[SEV]Check VM_HSAVE_PA after write-protecting RMP
CSF-1121:[SEV]Correcting attestation report TCBs to match 1.51 spec

Update SEV FW Version to hex 1.31.02 (released with PSP Bootloader 00.13.00.6A)
CSF-1125:Bumping security version number (SPL/SVN/TCB Version) to 0x5
CSF-1125:[SEV]Security enhancement in validate_address_range

Update SEV FW Version to hex 1.31.01
CSF-994:Bumping security version number (SPL/SVN/TCB Version) to 0x4
CSF-1121:[SEV]Further isolate secrets in guest context structures
CSF-1121:[SEV]Bug fixes around DLFW_EX
CSF-1121:[SEV]Updating dlfw_continue to fix manual restore trigger
CSF-1021:[SEV]Renaming snp variables in perm structure
CSF-1118:[SEV]Optimization of rmp_initialization variable
CSF-1021:[SEV]Code cleanup
CSF-994:[SEV]Updating sev_init so that P1 gets its own data instead of pulling from P0
CSF-1120:[SEV]De-initing IOMMU L1 and L2 during SNP_SHUTDOWN_EX
CSF-1121:SEV and BL fixes for cache_new_image(RESTORE) issue
CSF-994:[SEV]Fixing potential sync flood around DownloadFirmware call
CSF-994:[SEV]Impactless Update data structure changes
CSF-1114:[SEV]Security enhancement in GuestRequest EXPORT
CSF-1103:[SEV]Enhance Subpage Count Protection during rmp_entry_write()
CSF-1097:[SEV]Enhance IOMMU protection in SNP
CSF-765:[SEV] Misc updates
CSF-1100:[SEV]Fix __attribute__ typos
CSF-1096:Enhancing Version Check in SEV/SNP DownloadFirmware

Update SEV FW Version to hex 1.2A.2A
CSF-1089:[SEV]SecureTSC should be calculated in 8.32 fixed-point binary format
CSF-1090:[SEV]Generate the VMSARegProt tweak during SNPInit Instead of During SNPLaunchUpdateVMSA
CSF-1086:[SEV]Moving TMR_CACHE data to persistent memory
CSF-1086:[SEV]Fixing cache invalidate issue when copying x86 memory
CSF-1086:[SEV]Fix TMR cache bug
CSF-1087:[SEV]Fixing SecureTSC native PSP clk frequency to be stored in MHz not Hz

Update SEV FW Version to hex 1.29.29 (released with PSP Bootloader 00.13.00.68)
CSF-1021:[SEV]Coverity fixes
CSF-1076:[SEV]Bugfix: Guest Request Export exporting incorrect SecureTSC Data
CSF-994:[SEV]Updating SNP report_req to 0.9.2 (1.40) spec

Update SEV FW Version to hex 1.28.28 (released with PSP Bootloader 00.13.00.67)
CSF-1086:[SEV]Bugfix: RMP TMRs Have Incorrect Length

Update SEV FW Version to hex 1.27.27 (released with PSP Bootloader 00.13.00.66)
CSF-765:[SEV]Misc small updates

Update SEV FW Version to hex 1.26.26 (released with PSP Bootloader 00.13.00.63)
PLAT-81797:SysHub Mappings Not Unmapped On Error Paths

Update SEV FW Version to hex 1.25.25 (SPL/SVN/TCB Version bumped to 0x3) (released with PSP Bootloader 00.13.00.62)
CSF-686:[SEV]Bumping SPL to 3
CSF-772:[SEV]Adding SNPLaunchStart policy check for SingleSocket Policy Flags
CSF-772:[SEV]Implement SecureTSC (part 1)
CSF-772:[SEV]Creating macro for VMSA_REG_PROT and SECURE_TSC VMSA checks
CSF-1053:[SEV]Moving MCM_INFO into persistent memory
CSF-1053:[SEV]Removing Milan A0 support and code cleanup
CSF-1053:[SEV]Update the uCode version every time it's used
CSF-956:[SEV]Optimizing the VMSA_REG_PROT bitmask array
PLAT-78075:[SEV]Add a second TMR to further protect the RMP
CSF-956:[SEV]Modify SNP debug commands to apply VMSA tweak to VMSA pages
CSF-957,PLAT-77906:[SEV]Implement VMSA_REG_PROT VMSA protection feature

Update SEV FW Version to hex 1.24.24 (released with PSP Bootloader 00.13.00.61)
CSF-1061:[SEV]SNP IOMMU page data should be stored in persistent memory
PLAT-78075:[SEV]Cleaning up SNP TMR Code
CSF-1058:[SEV]Clean up code in command dispatcher
CSF-1057:[SEV]Remove Milan A0 Support for SNP
CSF-1025:[SEV]Cache HAL variables to improve efficiency
CSF-930:[SEV]Generate new ReportID during ImportReq and keep old ReportID during Absorb/AbsorbReq

Update SEV FW Version to hex 1.23.23 (SPL/SVN/TCB Version bumped to 0x2) (released with PSP Bootloader 00.13.00.60)
CSF-686:[SEV]Bumping SPL to 2
CSF-1042:[SEV]Get DLFW_EX working in RB mode

Update SEV FW Version to hex 1.22.22 (released with PSP Bootloader 00.13.00.5F)
CSF-1042:[SEV]Bugfix and security fix in DLFW_CONTINUED

Update SEV FW Version to hex 1.21.21
PLAT-76815:[SEV]Enhancement to MSR Read interface
CSF-961:[SEV]Implement address map validation
CSF-1045:[SEV]Improve Security Around Guest Context Page Layout
CSF-1043:[SEV]Optimizing service calls to get_reserved_dram
CSF-1042:Cleaning up infrastructure for download firmware
PLAT-78053:SNP Memory Map validation

Update SEV FW Version to hex 1.20.20 (released with PSP Bootloader 00.13.00.5E)
CSF-993:Pt. 3. Support "restore" in sev_svc_cache_new_image()
CSF-993:Pt. 2. Add support for DLFW_EX to Svc_SEVCacheNewImage()
PLAT-83777:Adding protection around UMC keys

Update SEV FW Version to hex 1.1F.1F (released with PSP Bootloader 00.13.00.5C)
PLAT-76815:[SEV]Adding MSR Read interface

Update SEV FW Version to hex 1.1E.1E (released with PSP Bootloader 00.13.00.5A)
CSF-1030:[SEV]Add GuestRequest TSCInfo version checks to GuestRequest
CSF-1031:[SEV]Implement SNP_POLICY_SINGLE_SOCKET for Activate and ActivateEX
CSF-1032:[SEV]Add Min uCode version that supports SecureTSC to CPUID checks
CSF-1030:[SEV]Adding placeholders for new attestation report bits
CSF-1030:[SEV]Create Stub function for Guest Request TSCInfo
CSF-1026:[SEV]Add IsTsmeEnabled to Attestation Report
CSF-1027:[SEV]Code cleanup
CSF-993:Pt. 1. Move updated shared structure to shared file.
CSF-994:[SEV]Adding stub functions for snp_dlfw_ex and snp_commit
CSF-1027:[SEV]Update SNP_SHUTDOWN_EX to Include Length Param
CSF-1028:[SEV]Fix compare_FMS check in CPUID

Update SEV FW Version to hex 1.1D.1D (released with PSP Bootloader 00.13.00.58)
PLAT-78568:No longer encrypt PSP firmware images
CSF-1014:[SEV]Implement SNP_SHUTDOWN_EX (IOMMU Shutdown)
CSF-1015:[SEV]Update CPUID filtering for new Fn8000_001F Milan Feature Bits
CSF-1016:[SEV]Use shared SOC version info between SEV and Bootloader
CSF-982:[SEV]Require full RMP Initialization if TCB version changed between Init/InitEX calls
CSF-983:[SEV]Adding protection around FIRMWARE pages covering the IOMMU
CSF-1004:Updating CCP Library to Latest Version
CSF-991:[SEV]Fixing Ring Buffer Timeout Bug

Update SEV FW Version to hex 1.1C.1C (released with PSP Bootloader 00.13.00.55)
PLAT-78816:Fixing UMC Harvesting Issue

Update SEV FW Version to hex 1.1B.1B (SPL/SVN/TCB Version bumped to 0x1) (released with PSP Bootloader 00.13.00.54)
CSF-686,PLAT-77984:[SEV]Bumping security version number (SPL/SVN/TCB Version) to 0x1
CSF-950:[SEV]Update CPUID Leaves to Relax Policy for Certain Bits
CSF-945:[SEV]Require 2MB TMR for SEV-ES when SNP is enabled

Update SEV FW Version to hex 1.1A.1A (released with PSP Bootloader 00.13.00.53)
CSF-958:[SEV]Fix bug when Initializing the IOMMU table
CSF-953:[SEV]Increasing security around RMP state check function
CSF-907:[SEV]Adding additional checks in SNPPageUnsmash

Update SEV FW Version to hex 1.19.19 (released with PSP Bootloader 00.13.00.52)
CSF-949:[SEV]Adding Increased Security Around PageReclaim
CSF-900:[SEV]Implementing FIRMWARE state page checks for SEV commands when SNP is enabled
CSF-948:[SEV]Fix Bad Return Code in SendUpdateVMSA

Update SEV FW Version to hex 1.18.18 (released with PSP Bootloader 00.13.00.51)
CSF-944:[SEV]Update Usage of WRBKINVD to Fix More Cache Issues.
CSF-886:[SEV]Fix SwapIO cache issue created in "Issue in aes256gcm_autheticated_decrypt_x86addr"
CSF-943:[SEV]Coverity Fixes
CSF-935:[SEV]Change clear_cbit() to a macro

Update SEV FW Version to hex 1.17.17 (released with PSP Bootloader 00.13.00.50)
CSF-941:Update CCP Libary to the Latest Version
CSF-934:[SEV]Create a copy_to_x86_from_x86() to refactor PageMove logic
CSF-906:[SEV]Fixing page overlap checks in SwapIO
CSF-908:[SEV]Increase SEV Stack Size
CSF-901:[SEV]Increasing protection around CCP commands
CSF-931:[SEV]Fixing bad parenthesis in SNP Decommission
CSF-908:[SEV]Optimize functions to save stack space
CSF-929:[SEV]Increasing security around SEV scratch space
CSF-929:[SEV]Fix check order in SEV SwapIO
CSF-925:[SEV]More input validation in GuestRequest
CSF-928:[SEV]Bugfix in AttestationReport for ReportIDMA
CSF-927:[SEV]Security improvements in GuestRequest
CSF-903:[SEV]Updating Default page checks throughout SNP

Update SEV FW Version to hex 1.16.16
CSF-903:[SEV]Changing GetID to require FW pages when SNP is enabled, not HV pages
CSF-892:[SEV]Fixing return statements in GuestRequest when Reserved bits are not zero
CSF-897:[SEV]Sign SEV Attestation with SHA256 Instead of SHA384

Update SEV FW Version to hex 1.15.15
CSF-898:[SEV]Security check fix in SNP Init
CSF-895:[SEV]Insufficient address validation in RB addresses
CSF-896:[SEV]Add Reserved byte in SEV Attestation Report to match spec
CSF-886:[SEV]Issue in aes256gcm_autheticated_decrypt_x86addr
CSF-893:[SEV]Ring Buffer Should Generate Interrupts for Paused Queues Without Dependency
CSF-880:[SEV]Bugfix in SEV/SNP SwapIn

Update SEV FW Version to hex 1.14.14 (released with PSP Bootloader 00.13.00.4D)
CSF-892:[SEV]Strictly Enforcing all Reserved Must be Zero to be 0 for SNP Command Buffers
CSF-890:[SEV]Remove Support for VMPL-Disabled Configurations

Update SEV FW Version to hex 1.13.13 (released with PSP Bootloader 00.13.00.4B)
CSF-885:[SEV]Security fix in SwapIO
CSF-881:Coverity Fixes

Update SEV FW Version to hex 1.12.12 (released with PSP Bootloader 00.13.00.48)
CSF-880:[SEV]Fixing cache issue in SEV/SNP SwapIn
CSF-860:[SEV]2MB Subpage Count Should be Incremented when SEV FW Sets a Page to Firmware/Firmware-IOMMU state

Update SEV FW Version to hex 1.11.11
CSF-877:[SEV]Offset of msg_seqno in GuestRequest was Incorrect

Update SEV FW Version to hex 1.10.10
CSF-876:[SEV]Fix check for Unchecked Architectural CPUID Leaves

Update SEV FW Version to hex 1.F.F (released with PSP Bootloader 00.13.00.47)
CSF-871:[SEV]SEV-ES TMR Security Update

Update SEV FW Version to hex 1.E.E
CSF-872:[SEV]Fixing backwards compatibility between SEV spirom versions

Update SEV FW Version to hex 1.D.D (released with PSP Bootloader 00.13.00.46)
CSF-870:[SEV]APICID Construction Failed When NumCores=1 or NumCCD=1
CSF-865:[SEV]Updating CPUID Fn80000008_EAX to match latest spec
CSF-869:[SEV]Cleaning up ASID checks
CSF-869,PLAT-71450,PLAT-70309:Changing S3 Save Area core mappings from physical to logical
CSF-869:[SEV]Refactoring functions to get core info
CSF-695:Fixing compiler warnings
CSF-865:[SEV]CPUID Enhancement

Update SEV FW Version to hex 1.C.C (released with PSP Bootloader 00.13.00.45)
CSF-862:[SEV]Adding VM_ABSORB_NOMA and bugfix in VM_ABSORB
CSF-864:[SEV]Updating CPUID to match current PPR

Update SEV FW Version to hex 1.B.B
Test release

Update SEV FW Version to hex 1.A.A (released with PSP Bootloader 00.13.00.44)(MinBLVersion bumped to 00.13.00.44)
CSF-864:[SEV]Updating CPUID values to match 0xa001028 uCode
PLAT-70836:[Milan]SDU and SNP Mutual Exclusivity (requires MinBLVersion bump)
CSF-862:[SEV]Fixing CPUID Implementation for Non-Arch Leaves
CSF-776:[SNP]SNP_INIT_EX Handling Subsequent INITs
CSF-863:[SEV]Fix CPUID comparison check

Update SEV FW Version to hex 1.9.9
CSF-862:[SEV]Support SNP Spec 0.8.1 (Part 1 - No VM_ABSORB_NOMA/INIT_EX)
CSF-862:[SEV]Increase Hardware Support for SEV-ES

Update SEV FW Version to hex 1.8.8 (released with PSP Bootloader 00.13.00.43)
CSF-835:[SEV]Improving nonce security.

Update SEV FW Version to hex 1.7.7 (released with PSP Bootloader 00.13.00.42)
CSF-823:[SEV]Fixing bad state transition in SEV LaunchFinish
CSF-857:[SEV]Some System Addresses Are not Checked Correctly Against RMP addresses
CSF-830:[SEV]Removing unused SECP256R1 curve
CSF-833:[SEV]Adding improvements to 'secure_x' operations
PLAT-69460:[SEV]SNP_INIT returns an internal error for IOMMU configuration
CSF-856:[SEV]Cpuid Check for FN00000007 Returns Incorrect Value
CSF-837:[SEV]Increasing protection around IVs
CSF-851:[SEV]Improving SendStart Validation
