- cpacfinfo: new tool to provide CPACF information (RHEL-50020)
- chpstat: Additional Channel Measurements (RHEL-50023)
- zPCI: Optics Monitoring for PF Access Mode (RHEL-50024)
- KVM: Support extended attestation for Secure Execution (RHEL-50009)
- KVM: genprotimg: validate if SE image can run on particular host(s) (RHEL-50008)
- Vertical CPU Polarization Support Stage 2 (RHEL-64705)
- KVM: Support unencrypted SE images by exposing resp. SE header flag (RHEL-70853)
- KVM: Rewrite genprotimg in Rust (RHEL-72023)
- Provide genprotimg / pvimg info command to display encrypted & unencrypted SE image information (RHEL-71819)
- KVM: Support retrievable secrets in Secure Execution guests (RHEL-50019)
- zkey key support for dm-crypt with XTS keys (RHEL-50010)
- Resolves: RHEL-50026 RHEL-50020 RHEL-50023 RHEL-50024 RHEL-50009 RHEL-50008 RHEL-64705 RHEL-70853 RHEL-72023 RHEL-71819 RHEL-50019 RHEL-50010
- dbginfo.sh: missing data of new ROCE cards (RHEL-24109)
- SE-tooling: New IBM host-key subject locality (RHEL-30273)
- Fix disk type detection when running under QEMU (RHEL-40358)
- Resolves: RHEL-23704 RHEL-24109 RHEL-30273 RHEL-40358
- KVM: Support AP Bindings in SE Header (RHEL-10572)
- KVM: Userspace Tool for IBK Request Generation and Insertion (RHEL-10578)
- zkey: support for key type PKEY_TYPE_EP11_AES (RHEL-11440)
- vmur: fix handling of option -t (RHEL-11480)
- dbginfo.sh: global original Input Field Separator (IFS) (RHEL-16527)
- Resolves: RHEL-11408 RHEL-10572 RHEL-10578 RHEL-11440 RHEL-11480 RHEL-16527
- cpictl: Suppress messages for unwritable sysfs files (#1985745)
- KVM: Secure Execution guest dump encryption with customer keys (#2044204)
- zcrypt DD: Exploitation Support of new IBM Z Crypto Hardware (#2044206)
- Add new CPU-MF Counters for new IBM Z Hardware (#2047722)
- Long Kernel Commmand Line for s390x (#2060826)
- zcryptctl support for control domains (#2076920)
- Resolves: #2044205#1985745#2044204#2044206#2047722#2060826#2076920
