KVM In Linux 7.0 Adds Support For Virtualizing AMD ERAPS

AMD’s ERAPS virtualization marks a pivotal shift for security‑focused workloads. By exposing the full 64‑entry Return Stack Buffer to guests, Linux 7.0 reduces the overhead of software‑emulated return‑address prediction, which can improve branch‑prediction accuracy and overall CPU efficiency. Coupled with user‑space handling of SEV‑SNP certificates, the feature simplifies key management for encrypted virtual machines, lowering operational complexity for providers that rely on confidential computing.

Beyond x86, the Linux 7.0 KVM tree delivers substantive upgrades for a range of architectures. ARM’s inclusion of FEAT_IDST and early GICv5 support paves the way for next‑generation mobile and edge servers, while RISC‑V benefits from transparent huge page handling, boosting hypervisor memory performance. LoongArch gains lazy‑load FPU state and preemption detection, and IBM s390 sees faster nested virtualization and revamped memory management. These cross‑platform enhancements broaden the appeal of Linux‑based hypervisors in heterogeneous data‑center environments.

For the broader market, the expanded KVM feature set accelerates the shift toward open‑source virtualization in enterprise clouds. Providers can now offer tighter security guarantees without sacrificing performance, a combination that aligns with growing demand for zero‑trust architectures. Developers will need to adapt tooling to leverage ERAPS and the new instruction sets, but the payoff includes reduced latency for high‑throughput applications and smoother migration paths across CPU families. As Linux 7.0 approaches general availability, early adopters are likely to set new benchmarks for VM efficiency and security.