[tianocore/edk2] bc3a1e: MdePkg/Register/Amd: Define all bits from MSR_SEV_...

Thu, 04 Jul 2024 13:40:17 -0700 

  Branch: refs/heads/master
  Home:   https://github.com/tianocore/edk2
  Commit: bc3a1ec2a2838f596678ddd247d10332c6790dab
      
https://github.com/tianocore/edk2/commit/bc3a1ec2a2838f596678ddd247d10332c6790dab
  Author: Alexey Kardashevskiy <a...@amd.com>
  Date:   2024-07-04 (Thu, 04 Jul 2024)

  Changed paths:
    M MdePkg/Include/Register/Amd/SevSnpMsr.h

  Log Message:
  -----------
  MdePkg/Register/Amd: Define all bits from MSR_SEV_STATUS_REGISTER

For now we need DebugSwap but others are likely to be needed too.

Cc: Liming Gao <gaolim...@byosoft.com.cn>
Cc: Michael D Kinney <michael.d.kin...@intel.com>
Cc: Zhiguang Liu <zhiguang....@intel.com>
Reviewed-by: Tom Lendacky <thomas.lenda...@amd.com>
Signed-off-by: Alexey Kardashevskiy <a...@amd.com>
Changes:
v5:
* "rb" from Tom

v4:
* added more from April/2024 APM


  Commit: 3f28aa2fb07f57afa58d4030d6dc60f5d01d5888
      
https://github.com/tianocore/edk2/commit/3f28aa2fb07f57afa58d4030d6dc60f5d01d5888
  Author: Alexey Kardashevskiy <a...@amd.com>
  Date:   2024-07-04 (Thu, 04 Jul 2024)

  Changed paths:
    M MdePkg/Include/ConfidentialComputingGuestAttr.h

  Log Message:
  -----------
  MdePkg: Add AMD SEV features to PcdConfidentialComputingGuestAttr

PcdConfidentialComputingGuestAttr so far only contained an SEV mode bit
but there are more other features which do not translate to levels
such as DebugVirtualization or SecureTsc.

Add the feature mask and the DebugVirtualization feature bit to the PCD.

Cc: Liming Gao <gaolim...@byosoft.com.cn>
Cc: Michael D Kinney <michael.d.kin...@intel.com>
Cc: Zhiguang Liu <zhiguang....@intel.com>
Reviewed-by: Tom Lendacky <thomas.lenda...@amd.com>
Signed-off-by: Alexey Kardashevskiy <a...@amd.com>
---
Changes:
v4:
* s/CCAttrFeatureAmdSevDebugSwap/CCAttrFeatureAmdSevEsDebugVirtualization/

v2:
* expanded features mask
* added type mask


  Commit: 9f06feb5d2fa43e184690034e70e6d427cf6913d
      
https://github.com/tianocore/edk2/commit/9f06feb5d2fa43e184690034e70e6d427cf6913d
  Author: Alexey Kardashevskiy <a...@amd.com>
  Date:   2024-07-04 (Thu, 04 Jul 2024)

  Changed paths:
    M OvmfPkg/Include/Library/MemEncryptSevLib.h
    M OvmfPkg/Library/BaseMemEncryptSevLib/DxeMemEncryptSevLibInternal.c
    M OvmfPkg/Library/BaseMemEncryptSevLib/PeiMemEncryptSevLibInternal.c
    M OvmfPkg/Library/BaseMemEncryptSevLib/SecMemEncryptSevLibInternal.c
    M OvmfPkg/Library/CcExitLib/CcExitVcHandler.c

  Log Message:
  -----------
  OvmfPkg: Add AMD SEV-ES DebugVirtualization feature support

The SEV-ES DebugVirtualization feature enables type B swapping of
debug registers on #VMEXIT and makes #DB and DR7 intercepts
unnecessary and unwanted.

When DebugVirtualization is enabled, this stops booting if
interaction from the HV.

Add new API to PEI, SEC, DXE.

This does not change the existing behaviour yet.

Cc: Ard Biesheuvel <ardb+tianoc...@kernel.org>
Cc: Erdem Aktas <erdemak...@google.com>
Cc: Gerd Hoffmann <kra...@redhat.com>
Cc: Jiewen Yao <jiewen....@intel.com>
Cc: Michael Roth <michael.r...@amd.com>
Cc: Min Xu <min.m...@intel.com>
Reviewed-by: Tom Lendacky <thomas.lenda...@amd.com>
Signed-off-by: Alexey Kardashevskiy <a...@amd.com>
---
Changes:
v5:
* "rb" from Tom

v4:
* s/DebugSwap/DebugVirtualization/


  Commit: 63a7152471111306184e4ac20a1ca705e6b75b6b
      
https://github.com/tianocore/edk2/commit/63a7152471111306184e4ac20a1ca705e6b75b6b
  Author: Alexey Kardashevskiy <a...@amd.com>
  Date:   2024-07-04 (Thu, 04 Jul 2024)

  Changed paths:
    M UefiCpuPkg/Library/MpInitLib/MpLib.c

  Log Message:
  -----------
  UefiCpuPkg: Add AMD SEV-ES features support

CONFIDENTIAL_COMPUTING_GUEST_ATTR is not a simple SEV level anymore
and includes a feature mask since the previous commit.

Fix AmdMemEncryptionAttrCheck to check the level and feature
correctly and add DebugVirtualization support.

Since the actual feature flag is not set yet, this should cause
no behavioural change.

Cc: Gerd Hoffmann <kra...@redhat.com>
Cc: Jiaxin Wu <jiaxin...@intel.com>
Cc: Rahul Kumar <rahul1.ku...@intel.com>
Cc: Ray Ni <ray...@intel.com>
Reviewed-by: Tom Lendacky <thomas.lenda...@amd.com>
Signed-off-by: Alexey Kardashevskiy <a...@amd.com>
---
Changes:
v5:
* "rb" from Tom


  Commit: 28099661893327296e18b8f98a1e7c3e757c7d49
      
https://github.com/tianocore/edk2/commit/28099661893327296e18b8f98a1e7c3e757c7d49
  Author: Alexey Kardashevskiy <a...@amd.com>
  Date:   2024-07-04 (Thu, 04 Jul 2024)

  Changed paths:
    M OvmfPkg/Library/BaseMemEncryptSevLib/PeiMemEncryptSevLibInternal.c
    M OvmfPkg/Library/BaseMemEncryptSevLib/SecMemEncryptSevLibInternal.c
    M OvmfPkg/PlatformPei/AmdSev.c

  Log Message:
  -----------
  OvmfPkg: Enable AMD SEV-ES DebugVirtualization

Write the feature bit into PcdConfidentialComputingGuestAttr
and enable DebugVirtualization in PEI, SEC, DXE.

Cc: Ard Biesheuvel <ardb+tianoc...@kernel.org>
Cc: Erdem Aktas <erdemak...@google.com>
Cc: Gerd Hoffmann <kra...@redhat.com>
Cc: Jiewen Yao <jiewen....@intel.com>
Cc: Michael Roth <michael.r...@amd.com>
Cc: Min Xu <min.m...@intel.com>
Reviewed-by: Tom Lendacky <thomas.lenda...@amd.com>
Signed-off-by: Alexey Kardashevskiy <a...@amd.com>
---
Changes:
v5:
* "rb" from Tom

v4:
* s/DebugSwap/DebugVirtualization/g


Compare: https://github.com/tianocore/edk2/compare/6852f6984bda...280996618933

To unsubscribe from these emails, change your notification settings at 
https://github.com/tianocore/edk2/settings/notifications


_______________________________________________
edk2-commits mailing list
edk2-commits@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/edk2-commits

Reply via email to