git.baikalelectronics.ru Git - kernel.git/commit

author	Michael Roth <michael.roth@amd.com>
	Mon, 7 Mar 2022 21:33:49 +0000 (15:33 -0600)
committer	Borislav Petkov <bp@suse.de>
	Thu, 7 Apr 2022 14:47:12 +0000 (16:47 +0200)
commit	883942a390c10c0bdb03bbe8bd82125ec5e56e61
tree	c1850648503433661069afacecf19a747adbad4b	tree \| snapshot
parent	2a4b0448010397ee854b78a3bff4d5ba20aed0e6	commit \| diff

x86/sev: Use firmware-validated CPUID for SEV-SNP guests

SEV-SNP guests will be provided the location of special 'secrets' and
'CPUID' pages via the Confidential Computing blob. This blob is
provided to the run-time kernel either through a boot_params field that
was initialized by the boot/compressed kernel, or via a setup_data
structure as defined by the Linux Boot Protocol.

Locate the Confidential Computing blob from these sources and, if found,
use the provided CPUID page/table address to create a copy that the
run-time kernel will use when servicing CPUID instructions via a #VC
handler.

Signed-off-by: Michael Roth <michael.roth@amd.com>
Signed-off-by: Brijesh Singh <brijesh.singh@amd.com>
Signed-off-by: Borislav Petkov <bp@suse.de>
Link: https://lore.kernel.org/r/20220307213356.2797205-40-brijesh.singh@amd.com

arch/x86/boot/compressed/sev.c		diff \| blob \| history
arch/x86/kernel/sev-shared.c		diff \| blob \| history
arch/x86/kernel/sev.c		diff \| blob \| history