x86/sev: Use firmware-validated CPUID for SEV-SNP guests (30612045) · Commits · Mirrors / github.com / c-sky_csky-linux

Commit 30612045 authored Mar 07, 2022 by

Michael Roth Committed by Borislav Petkov Apr 07, 2022

x86/sev: Use firmware-validated CPUID for SEV-SNP guests



SEV-SNP guests will be provided the location of special 'secrets' and
'CPUID' pages via the Confidential Computing blob. This blob is
provided to the run-time kernel either through a boot_params field that
was initialized by the boot/compressed kernel, or via a setup_data
structure as defined by the Linux Boot Protocol.

Locate the Confidential Computing blob from these sources and, if found,
use the provided CPUID page/table address to create a copy that the
run-time kernel will use when servicing CPUID instructions via a #VC
handler.

Signed-off-by: Michael Roth <michael.roth@amd.com>
Signed-off-by: Brijesh Singh <brijesh.singh@amd.com>
Signed-off-by: Borislav Petkov <bp@suse.de>
Link: https://lore.kernel.org/r/20220307213356.2797205-40-brijesh.singh@amd.com

parent b190a043

Hide whitespace changes

Inline Side-by-side

Please register or to comment