Git Repo - linux.git/commit

author	Tom Lendacky <[email protected]>
	Wed, 5 Jun 2024 15:18:49 +0000 (10:18 -0500)
committer	Borislav Petkov (AMD) <[email protected]>
	Mon, 17 Jun 2024 18:42:57 +0000 (20:42 +0200)
commit	1beb348d5c7fdef502a581bd73f792a2cf1535d6
tree	e25f34e0219945fc1b72d60493da7e2eb6d5fbd6	tree \| snapshot
parent	d2b2931f19e48c9148909c2f45bccf21a8a83cfb	commit \| diff

x86/sev: Provide SVSM discovery support

The SVSM specification documents an alternative method of discovery for
the SVSM using a reserved CPUID bit and a reserved MSR. This is intended
for guest components that do not have access to the secrets page in
order to be able to call the SVSM (e.g. UEFI runtime services).

For the MSR support, a new reserved MSR 0xc001f000 has been defined. A #VC
should be generated when accessing this MSR. The #VC handler is expected
to ignore writes to this MSR and return the physical calling area address
(CAA) on reads of this MSR.

While the CPUID leaf is updated, allowing the creation of a CPU feature,
the code will continue to use the VMPL level as an indication of the
presence of an SVSM. This is because the SVSM can be called well before
the CPU feature is in place and a non-zero VMPL requires that an SVSM be
present.

Signed-off-by: Tom Lendacky <[email protected]>
Signed-off-by: Borislav Petkov (AMD) <[email protected]>
Link: https://lore.kernel.org/r/4f93f10a2ff3e9f368fd64a5920d51bf38d0c19e.1717600736.git.thomas.lendacky@amd.com

arch/x86/include/asm/cpufeatures.h		diff \| blob \| blame \| history
arch/x86/include/asm/msr-index.h		diff \| blob \| blame \| history
arch/x86/kernel/sev-shared.c		diff \| blob \| blame \| history
arch/x86/kernel/sev.c		diff \| blob \| blame \| history