x86/sev: Replace occurrences of sev_es_active() with cc_platform_has()

void __init mem_encrypt_init(void);

void __init sev_es_init_vc_handling(void);

bool sev_es_active(void);

#define __bss_decrypted __section(".bss..decrypted")

static inline void __init sme_enable(struct boot_params *bp) { }

static inline void sev_es_init_vc_handling(void) { }

static inline bool sev_es_active(void) { return false; }

static inline int __init

early_set_memory_decrypted(unsigned long vaddr, unsigned long size) { return 0; }

#include <linux/sched/debug.h>	/* For show_regs() */

#include <linux/percpu-defs.h>

#include <linux/mem_encrypt.h>

#include <linux/cc_platform.h>

#include <linux/printk.h>

#include <linux/mm_types.h>

#include <linux/set_memory.h>

	int cpu;

	u64 pfn;

	if (!sev_es_active())

	if (!cc_platform_has(CC_ATTR_GUEST_STATE_ENCRYPT))

		return 0;

	pflags = _PAGE_NX | _PAGE_RW;

	BUILD_BUG_ON(offsetof(struct sev_es_runtime_data, ghcb_page) % PAGE_SIZE);

	if (!sev_es_active())

	if (!cc_platform_has(CC_ATTR_GUEST_STATE_ENCRYPT))

		return;

	if (!sev_es_check_cpu_features())

	return early_set_memory_enc_dec(vaddr, size, true);

}

/*

 * SME and SEV are very similar but they are not the same, so there are

 * times that the kernel will need to distinguish between SME and SEV. The

 * cc_platform_has() function is used for this.  When a distinction isn't

 * needed, the CC_ATTR_MEM_ENCRYPT attribute can be used.

 *

 * The trampoline code is a good example for this requirement.  Before

 * paging is activated, SME will access all memory as decrypted, but SEV

 * will access all memory as encrypted.  So, when APs are being brought

 * up under SME the trampoline area cannot be encrypted, whereas under SEV

 * the trampoline area must be encrypted.

 */

/* Needs to be called from non-instrumentable code */

bool noinstr sev_es_active(void)

{

	return sev_status & MSR_AMD64_SEV_ES_ENABLED;

}

/* Override for DMA direct allocation check - ARCH_HAS_FORCE_DMA_UNENCRYPTED */

bool force_dma_unencrypted(struct device *dev)

{

		pr_cont(" SEV");

	/* Encrypted Register State */

	if (sev_es_active())

	if (cc_platform_has(CC_ATTR_GUEST_STATE_ENCRYPT))

		pr_cont(" SEV-ES");

	pr_cont("\n");

	 * With SEV, we need to unroll the rep string I/O instructions,

	 * but SEV-ES supports them through the #VC handler.

	 */

	if (cc_platform_has(CC_ATTR_GUEST_MEM_ENCRYPT) && !sev_es_active())

	if (cc_platform_has(CC_ATTR_GUEST_MEM_ENCRYPT) &&

	    !cc_platform_has(CC_ATTR_GUEST_STATE_ENCRYPT))

		static_branch_enable(&sev_enable_key);

	print_mem_encrypt_feature_info();

#include <linux/io.h>

#include <linux/slab.h>

#include <linux/memblock.h>

#include <linux/mem_encrypt.h>

#include <linux/cc_platform.h>

#include <linux/pgtable.h>

	if (cc_platform_has(CC_ATTR_HOST_MEM_ENCRYPT))

		th->flags |= TH_FLAGS_SME_ACTIVE;

	if (sev_es_active()) {

	if (cc_platform_has(CC_ATTR_GUEST_STATE_ENCRYPT)) {

		/*

		 * Skip the call to verify_cpu() in secondary_startup_64 as it

		 * will cause #VC exceptions when the AP can't handle them yet.