1 // SPDX-License-Identifier: GPL-2.0-only
3 * AMD Secure Encrypted Virtualization (SEV) interface
5 * Copyright (C) 2016,2019 Advanced Micro Devices, Inc.
7 * Author: Brijesh Singh <brijesh.singh@amd.com>
10 #include <linux/module.h>
11 #include <linux/kernel.h>
12 #include <linux/kthread.h>
13 #include <linux/sched.h>
14 #include <linux/interrupt.h>
15 #include <linux/spinlock.h>
16 #include <linux/spinlock_types.h>
17 #include <linux/types.h>
18 #include <linux/mutex.h>
19 #include <linux/delay.h>
20 #include <linux/hw_random.h>
21 #include <linux/ccp.h>
22 #include <linux/firmware.h>
23 #include <linux/gfp.h>
24 #include <linux/cpufeature.h>
31 #define DEVICE_NAME "sev"
32 #define SEV_FW_FILE "/*(DEBLOBBED)*/"
33 #define SEV_FW_NAME_SIZE 64
35 static DEFINE_MUTEX(sev_cmd_mutex);
36 static struct sev_misc_dev *misc_dev;
38 static int psp_cmd_timeout = 100;
39 module_param(psp_cmd_timeout, int, 0644);
40 MODULE_PARM_DESC(psp_cmd_timeout, " default timeout value, in seconds, for PSP commands");
42 static int psp_probe_timeout = 5;
43 module_param(psp_probe_timeout, int, 0644);
44 MODULE_PARM_DESC(psp_probe_timeout, " default timeout value, in seconds, during PSP device probe");
46 /*(DEBLOBBED)*/ /* 1st gen EPYC */
47 /*(DEBLOBBED)*/ /* 2nd gen EPYC */
48 /*(DEBLOBBED)*/ /* 3rd gen EPYC */
51 static int psp_timeout;
53 /* Trusted Memory Region (TMR):
54 * The TMR is a 1MB area that must be 1MB aligned. Use the page allocator
55 * to allocate the memory, which will return aligned memory for the specified
58 #define SEV_ES_TMR_SIZE (1024 * 1024)
59 static void *sev_es_tmr;
61 static inline bool sev_version_greater_or_equal(u8 maj, u8 min)
63 struct sev_device *sev = psp_master->sev_data;
65 if (sev->api_major > maj)
68 if (sev->api_major == maj && sev->api_minor >= min)
74 static void sev_irq_handler(int irq, void *data, unsigned int status)
76 struct sev_device *sev = data;
79 /* Check if it is command completion: */
80 if (!(status & SEV_CMD_COMPLETE))
83 /* Check if it is SEV command completion: */
84 reg = ioread32(sev->io_regs + sev->vdata->cmdresp_reg);
85 if (reg & PSP_CMDRESP_RESP) {
87 wake_up(&sev->int_queue);
91 static int sev_wait_cmd_ioc(struct sev_device *sev,
92 unsigned int *reg, unsigned int timeout)
96 ret = wait_event_timeout(sev->int_queue,
97 sev->int_rcvd, timeout * HZ);
101 *reg = ioread32(sev->io_regs + sev->vdata->cmdresp_reg);
106 static int sev_cmd_buffer_len(int cmd)
109 case SEV_CMD_INIT: return sizeof(struct sev_data_init);
110 case SEV_CMD_PLATFORM_STATUS: return sizeof(struct sev_user_data_status);
111 case SEV_CMD_PEK_CSR: return sizeof(struct sev_data_pek_csr);
112 case SEV_CMD_PEK_CERT_IMPORT: return sizeof(struct sev_data_pek_cert_import);
113 case SEV_CMD_PDH_CERT_EXPORT: return sizeof(struct sev_data_pdh_cert_export);
114 case SEV_CMD_LAUNCH_START: return sizeof(struct sev_data_launch_start);
115 case SEV_CMD_LAUNCH_UPDATE_DATA: return sizeof(struct sev_data_launch_update_data);
116 case SEV_CMD_LAUNCH_UPDATE_VMSA: return sizeof(struct sev_data_launch_update_vmsa);
117 case SEV_CMD_LAUNCH_FINISH: return sizeof(struct sev_data_launch_finish);
118 case SEV_CMD_LAUNCH_MEASURE: return sizeof(struct sev_data_launch_measure);
119 case SEV_CMD_ACTIVATE: return sizeof(struct sev_data_activate);
120 case SEV_CMD_DEACTIVATE: return sizeof(struct sev_data_deactivate);
121 case SEV_CMD_DECOMMISSION: return sizeof(struct sev_data_decommission);
122 case SEV_CMD_GUEST_STATUS: return sizeof(struct sev_data_guest_status);
123 case SEV_CMD_DBG_DECRYPT: return sizeof(struct sev_data_dbg);
124 case SEV_CMD_DBG_ENCRYPT: return sizeof(struct sev_data_dbg);
125 case SEV_CMD_SEND_START: return sizeof(struct sev_data_send_start);
126 case SEV_CMD_SEND_UPDATE_DATA: return sizeof(struct sev_data_send_update_data);
127 case SEV_CMD_SEND_UPDATE_VMSA: return sizeof(struct sev_data_send_update_vmsa);
128 case SEV_CMD_SEND_FINISH: return sizeof(struct sev_data_send_finish);
129 case SEV_CMD_RECEIVE_START: return sizeof(struct sev_data_receive_start);
130 case SEV_CMD_RECEIVE_FINISH: return sizeof(struct sev_data_receive_finish);
131 case SEV_CMD_RECEIVE_UPDATE_DATA: return sizeof(struct sev_data_receive_update_data);
132 case SEV_CMD_RECEIVE_UPDATE_VMSA: return sizeof(struct sev_data_receive_update_vmsa);
133 case SEV_CMD_LAUNCH_UPDATE_SECRET: return sizeof(struct sev_data_launch_secret);
134 case SEV_CMD_DOWNLOAD_FIRMWARE: return sizeof(struct sev_data_download_firmware);
135 case SEV_CMD_GET_ID: return sizeof(struct sev_data_get_id);
136 case SEV_CMD_ATTESTATION_REPORT: return sizeof(struct sev_data_attestation_report);
137 case SEV_CMD_SEND_CANCEL: return sizeof(struct sev_data_send_cancel);
144 static int __sev_do_cmd_locked(int cmd, void *data, int *psp_ret)
146 struct psp_device *psp = psp_master;
147 struct sev_device *sev;
148 unsigned int phys_lsb, phys_msb;
149 unsigned int reg, ret = 0;
152 if (!psp || !psp->sev_data)
160 buf_len = sev_cmd_buffer_len(cmd);
161 if (WARN_ON_ONCE(!data != !buf_len))
165 * Copy the incoming data to driver's scratch buffer as __pa() will not
166 * work for some memory, e.g. vmalloc'd addresses, and @data may not be
167 * physically contiguous.
170 memcpy(sev->cmd_buf, data, buf_len);
172 /* Get the physical address of the command buffer */
173 phys_lsb = data ? lower_32_bits(__psp_pa(sev->cmd_buf)) : 0;
174 phys_msb = data ? upper_32_bits(__psp_pa(sev->cmd_buf)) : 0;
176 dev_dbg(sev->dev, "sev command id %#x buffer 0x%08x%08x timeout %us\n",
177 cmd, phys_msb, phys_lsb, psp_timeout);
179 print_hex_dump_debug("(in): ", DUMP_PREFIX_OFFSET, 16, 2, data,
182 iowrite32(phys_lsb, sev->io_regs + sev->vdata->cmdbuff_addr_lo_reg);
183 iowrite32(phys_msb, sev->io_regs + sev->vdata->cmdbuff_addr_hi_reg);
188 reg <<= SEV_CMDRESP_CMD_SHIFT;
189 reg |= SEV_CMDRESP_IOC;
190 iowrite32(reg, sev->io_regs + sev->vdata->cmdresp_reg);
192 /* wait for command completion */
193 ret = sev_wait_cmd_ioc(sev, ®, psp_timeout);
198 dev_err(sev->dev, "sev command %#x timed out, disabling PSP\n", cmd);
204 psp_timeout = psp_cmd_timeout;
207 *psp_ret = reg & PSP_CMDRESP_ERR_MASK;
209 if (reg & PSP_CMDRESP_ERR_MASK) {
210 dev_dbg(sev->dev, "sev command %#x failed (%#010x)\n",
211 cmd, reg & PSP_CMDRESP_ERR_MASK);
215 print_hex_dump_debug("(out): ", DUMP_PREFIX_OFFSET, 16, 2, data,
219 * Copy potential output from the PSP back to data. Do this even on
220 * failure in case the caller wants to glean something from the error.
223 memcpy(data, sev->cmd_buf, buf_len);
228 static int sev_do_cmd(int cmd, void *data, int *psp_ret)
232 mutex_lock(&sev_cmd_mutex);
233 rc = __sev_do_cmd_locked(cmd, data, psp_ret);
234 mutex_unlock(&sev_cmd_mutex);
239 static int __sev_platform_init_locked(int *error)
241 struct psp_device *psp = psp_master;
242 struct sev_data_init data;
243 struct sev_device *sev;
244 int psp_ret = -1, rc = 0;
246 if (!psp || !psp->sev_data)
251 if (sev->state == SEV_STATE_INIT)
254 memset(&data, 0, sizeof(data));
259 * Do not include the encryption mask on the physical
260 * address of the TMR (firmware should clear it anyway).
262 tmr_pa = __pa(sev_es_tmr);
264 data.flags |= SEV_INIT_FLAGS_SEV_ES;
265 data.tmr_address = tmr_pa;
266 data.tmr_len = SEV_ES_TMR_SIZE;
269 rc = __sev_do_cmd_locked(SEV_CMD_INIT, &data, &psp_ret);
270 if (rc && psp_ret == SEV_RET_SECURE_DATA_INVALID) {
272 * Initialization command returned an integrity check failure
273 * status code, meaning that firmware load and validation of SEV
274 * related persistent data has failed. Retrying the
275 * initialization function should succeed by replacing the state
276 * with a reset state.
278 dev_dbg(sev->dev, "SEV: retrying INIT command");
279 rc = __sev_do_cmd_locked(SEV_CMD_INIT, &data, &psp_ret);
287 sev->state = SEV_STATE_INIT;
289 /* Prepare for first SEV guest launch after INIT */
290 wbinvd_on_all_cpus();
291 rc = __sev_do_cmd_locked(SEV_CMD_DF_FLUSH, NULL, error);
295 dev_dbg(sev->dev, "SEV firmware initialized\n");
300 int sev_platform_init(int *error)
304 mutex_lock(&sev_cmd_mutex);
305 rc = __sev_platform_init_locked(error);
306 mutex_unlock(&sev_cmd_mutex);
310 EXPORT_SYMBOL_GPL(sev_platform_init);
312 static int __sev_platform_shutdown_locked(int *error)
314 struct sev_device *sev = psp_master->sev_data;
317 if (sev->state == SEV_STATE_UNINIT)
320 ret = __sev_do_cmd_locked(SEV_CMD_SHUTDOWN, NULL, error);
324 sev->state = SEV_STATE_UNINIT;
325 dev_dbg(sev->dev, "SEV firmware shutdown\n");
330 static int sev_platform_shutdown(int *error)
334 mutex_lock(&sev_cmd_mutex);
335 rc = __sev_platform_shutdown_locked(NULL);
336 mutex_unlock(&sev_cmd_mutex);
341 static int sev_get_platform_state(int *state, int *error)
343 struct sev_user_data_status data;
346 rc = __sev_do_cmd_locked(SEV_CMD_PLATFORM_STATUS, &data, error);
354 static int sev_ioctl_do_reset(struct sev_issue_cmd *argp, bool writable)
362 * The SEV spec requires that FACTORY_RESET must be issued in
363 * UNINIT state. Before we go further lets check if any guest is
366 * If FW is in WORKING state then deny the request otherwise issue
367 * SHUTDOWN command do INIT -> UNINIT before issuing the FACTORY_RESET.
370 rc = sev_get_platform_state(&state, &argp->error);
374 if (state == SEV_STATE_WORKING)
377 if (state == SEV_STATE_INIT) {
378 rc = __sev_platform_shutdown_locked(&argp->error);
383 return __sev_do_cmd_locked(SEV_CMD_FACTORY_RESET, NULL, &argp->error);
386 static int sev_ioctl_do_platform_status(struct sev_issue_cmd *argp)
388 struct sev_user_data_status data;
391 ret = __sev_do_cmd_locked(SEV_CMD_PLATFORM_STATUS, &data, &argp->error);
395 if (copy_to_user((void __user *)argp->data, &data, sizeof(data)))
401 static int sev_ioctl_do_pek_pdh_gen(int cmd, struct sev_issue_cmd *argp, bool writable)
403 struct sev_device *sev = psp_master->sev_data;
409 if (sev->state == SEV_STATE_UNINIT) {
410 rc = __sev_platform_init_locked(&argp->error);
415 return __sev_do_cmd_locked(cmd, NULL, &argp->error);
418 static int sev_ioctl_do_pek_csr(struct sev_issue_cmd *argp, bool writable)
420 struct sev_device *sev = psp_master->sev_data;
421 struct sev_user_data_pek_csr input;
422 struct sev_data_pek_csr data;
423 void __user *input_address;
430 if (copy_from_user(&input, (void __user *)argp->data, sizeof(input)))
433 memset(&data, 0, sizeof(data));
435 /* userspace wants to query CSR length */
436 if (!input.address || !input.length)
439 /* allocate a physically contiguous buffer to store the CSR blob */
440 input_address = (void __user *)input.address;
441 if (input.length > SEV_FW_BLOB_MAX_SIZE)
444 blob = kmalloc(input.length, GFP_KERNEL);
448 data.address = __psp_pa(blob);
449 data.len = input.length;
452 if (sev->state == SEV_STATE_UNINIT) {
453 ret = __sev_platform_init_locked(&argp->error);
458 ret = __sev_do_cmd_locked(SEV_CMD_PEK_CSR, &data, &argp->error);
460 /* If we query the CSR length, FW responded with expected data. */
461 input.length = data.len;
463 if (copy_to_user((void __user *)argp->data, &input, sizeof(input))) {
469 if (copy_to_user(input_address, blob, input.length))
478 void *psp_copy_user_blob(u64 uaddr, u32 len)
481 return ERR_PTR(-EINVAL);
483 /* verify that blob length does not exceed our limit */
484 if (len > SEV_FW_BLOB_MAX_SIZE)
485 return ERR_PTR(-EINVAL);
487 return memdup_user((void __user *)uaddr, len);
489 EXPORT_SYMBOL_GPL(psp_copy_user_blob);
491 static int sev_get_api_version(void)
493 struct sev_device *sev = psp_master->sev_data;
494 struct sev_user_data_status status;
497 ret = sev_platform_status(&status, &error);
500 "SEV: failed to get status. Error: %#x\n", error);
504 sev->api_major = status.api_major;
505 sev->api_minor = status.api_minor;
506 sev->build = status.build;
507 sev->state = status.state;
512 static int sev_get_firmware(struct device *dev,
513 const struct firmware **firmware)
515 char fw_name_specific[SEV_FW_NAME_SIZE];
516 char fw_name_subset[SEV_FW_NAME_SIZE];
518 snprintf(fw_name_specific, sizeof(fw_name_specific),
519 "amd/amd_sev_fam%.2xh_model%.2xh.sbin",
520 boot_cpu_data.x86, boot_cpu_data.x86_model);
522 snprintf(fw_name_subset, sizeof(fw_name_subset),
523 "amd/amd_sev_fam%.2xh_model%.1xxh.sbin",
524 boot_cpu_data.x86, (boot_cpu_data.x86_model & 0xf0) >> 4);
526 /* Check for SEV FW for a particular model.
527 * Ex. amd_sev_fam17h_model00h.sbin for Family 17h Model 00h
531 * Check for SEV FW common to a subset of models.
532 * Ex. amd_sev_fam17h_model0xh.sbin for
533 * Family 17h Model 00h -- Family 17h Model 0Fh
537 * Fall-back to using generic name: sev.fw
539 if ((firmware_reject_nowarn(firmware, fw_name_specific, dev) >= 0) ||
540 (firmware_reject_nowarn(firmware, fw_name_subset, dev) >= 0) ||
541 (firmware_reject_nowarn(firmware, SEV_FW_FILE, dev) >= 0))
547 /* Don't fail if SEV FW couldn't be updated. Continue with existing SEV FW */
548 static int sev_update_firmware(struct device *dev)
550 struct sev_data_download_firmware *data;
551 const struct firmware *firmware;
552 int ret, error, order;
556 if (sev_get_firmware(dev, &firmware) == -ENOENT) {
557 dev_dbg(dev, "No SEV firmware file present\n");
562 * SEV FW expects the physical address given to it to be 32
563 * byte aligned. Memory allocated has structure placed at the
564 * beginning followed by the firmware being passed to the SEV
565 * FW. Allocate enough memory for data structure + alignment
568 data_size = ALIGN(sizeof(struct sev_data_download_firmware), 32);
570 order = get_order(firmware->size + data_size);
571 p = alloc_pages(GFP_KERNEL, order);
578 * Copy firmware data to a kernel allocated contiguous
581 data = page_address(p);
582 memcpy(page_address(p) + data_size, firmware->data, firmware->size);
584 data->address = __psp_pa(page_address(p) + data_size);
585 data->len = firmware->size;
587 ret = sev_do_cmd(SEV_CMD_DOWNLOAD_FIRMWARE, data, &error);
589 dev_dbg(dev, "Failed to update SEV firmware: %#x\n", error);
591 dev_info(dev, "SEV firmware update successful\n");
593 __free_pages(p, order);
596 release_firmware(firmware);
601 static int sev_ioctl_do_pek_import(struct sev_issue_cmd *argp, bool writable)
603 struct sev_device *sev = psp_master->sev_data;
604 struct sev_user_data_pek_cert_import input;
605 struct sev_data_pek_cert_import data;
606 void *pek_blob, *oca_blob;
612 if (copy_from_user(&input, (void __user *)argp->data, sizeof(input)))
615 /* copy PEK certificate blobs from userspace */
616 pek_blob = psp_copy_user_blob(input.pek_cert_address, input.pek_cert_len);
617 if (IS_ERR(pek_blob))
618 return PTR_ERR(pek_blob);
621 data.pek_cert_address = __psp_pa(pek_blob);
622 data.pek_cert_len = input.pek_cert_len;
624 /* copy PEK certificate blobs from userspace */
625 oca_blob = psp_copy_user_blob(input.oca_cert_address, input.oca_cert_len);
626 if (IS_ERR(oca_blob)) {
627 ret = PTR_ERR(oca_blob);
631 data.oca_cert_address = __psp_pa(oca_blob);
632 data.oca_cert_len = input.oca_cert_len;
634 /* If platform is not in INIT state then transition it to INIT */
635 if (sev->state != SEV_STATE_INIT) {
636 ret = __sev_platform_init_locked(&argp->error);
641 ret = __sev_do_cmd_locked(SEV_CMD_PEK_CERT_IMPORT, &data, &argp->error);
650 static int sev_ioctl_do_get_id2(struct sev_issue_cmd *argp)
652 struct sev_user_data_get_id2 input;
653 struct sev_data_get_id data;
654 void __user *input_address;
655 void *id_blob = NULL;
658 /* SEV GET_ID is available from SEV API v0.16 and up */
659 if (!sev_version_greater_or_equal(0, 16))
662 if (copy_from_user(&input, (void __user *)argp->data, sizeof(input)))
665 input_address = (void __user *)input.address;
667 if (input.address && input.length) {
668 id_blob = kmalloc(input.length, GFP_KERNEL);
672 data.address = __psp_pa(id_blob);
673 data.len = input.length;
679 ret = __sev_do_cmd_locked(SEV_CMD_GET_ID, &data, &argp->error);
682 * Firmware will return the length of the ID value (either the minimum
683 * required length or the actual length written), return it to the user.
685 input.length = data.len;
687 if (copy_to_user((void __user *)argp->data, &input, sizeof(input))) {
693 if (copy_to_user(input_address, id_blob, data.len)) {
705 static int sev_ioctl_do_get_id(struct sev_issue_cmd *argp)
707 struct sev_data_get_id *data;
708 u64 data_size, user_size;
712 /* SEV GET_ID available from SEV API v0.16 and up */
713 if (!sev_version_greater_or_equal(0, 16))
716 /* SEV FW expects the buffer it fills with the ID to be
717 * 8-byte aligned. Memory allocated should be enough to
718 * hold data structure + alignment padding + memory
719 * where SEV FW writes the ID.
721 data_size = ALIGN(sizeof(struct sev_data_get_id), 8);
722 user_size = sizeof(struct sev_user_data_get_id);
724 mem = kzalloc(data_size + user_size, GFP_KERNEL);
729 id_blob = mem + data_size;
731 data->address = __psp_pa(id_blob);
732 data->len = user_size;
734 ret = __sev_do_cmd_locked(SEV_CMD_GET_ID, data, &argp->error);
736 if (copy_to_user((void __user *)argp->data, id_blob, data->len))
745 static int sev_ioctl_do_pdh_export(struct sev_issue_cmd *argp, bool writable)
747 struct sev_device *sev = psp_master->sev_data;
748 struct sev_user_data_pdh_cert_export input;
749 void *pdh_blob = NULL, *cert_blob = NULL;
750 struct sev_data_pdh_cert_export data;
751 void __user *input_cert_chain_address;
752 void __user *input_pdh_cert_address;
755 /* If platform is not in INIT state then transition it to INIT. */
756 if (sev->state != SEV_STATE_INIT) {
760 ret = __sev_platform_init_locked(&argp->error);
765 if (copy_from_user(&input, (void __user *)argp->data, sizeof(input)))
768 memset(&data, 0, sizeof(data));
770 /* Userspace wants to query the certificate length. */
771 if (!input.pdh_cert_address ||
772 !input.pdh_cert_len ||
773 !input.cert_chain_address)
776 input_pdh_cert_address = (void __user *)input.pdh_cert_address;
777 input_cert_chain_address = (void __user *)input.cert_chain_address;
779 /* Allocate a physically contiguous buffer to store the PDH blob. */
780 if (input.pdh_cert_len > SEV_FW_BLOB_MAX_SIZE)
783 /* Allocate a physically contiguous buffer to store the cert chain blob. */
784 if (input.cert_chain_len > SEV_FW_BLOB_MAX_SIZE)
787 pdh_blob = kmalloc(input.pdh_cert_len, GFP_KERNEL);
791 data.pdh_cert_address = __psp_pa(pdh_blob);
792 data.pdh_cert_len = input.pdh_cert_len;
794 cert_blob = kmalloc(input.cert_chain_len, GFP_KERNEL);
800 data.cert_chain_address = __psp_pa(cert_blob);
801 data.cert_chain_len = input.cert_chain_len;
804 ret = __sev_do_cmd_locked(SEV_CMD_PDH_CERT_EXPORT, &data, &argp->error);
806 /* If we query the length, FW responded with expected data. */
807 input.cert_chain_len = data.cert_chain_len;
808 input.pdh_cert_len = data.pdh_cert_len;
810 if (copy_to_user((void __user *)argp->data, &input, sizeof(input))) {
816 if (copy_to_user(input_pdh_cert_address,
817 pdh_blob, input.pdh_cert_len)) {
824 if (copy_to_user(input_cert_chain_address,
825 cert_blob, input.cert_chain_len))
836 static long sev_ioctl(struct file *file, unsigned int ioctl, unsigned long arg)
838 void __user *argp = (void __user *)arg;
839 struct sev_issue_cmd input;
841 bool writable = file->f_mode & FMODE_WRITE;
843 if (!psp_master || !psp_master->sev_data)
846 if (ioctl != SEV_ISSUE_CMD)
849 if (copy_from_user(&input, argp, sizeof(struct sev_issue_cmd)))
852 if (input.cmd > SEV_MAX)
855 mutex_lock(&sev_cmd_mutex);
859 case SEV_FACTORY_RESET:
860 ret = sev_ioctl_do_reset(&input, writable);
862 case SEV_PLATFORM_STATUS:
863 ret = sev_ioctl_do_platform_status(&input);
866 ret = sev_ioctl_do_pek_pdh_gen(SEV_CMD_PEK_GEN, &input, writable);
869 ret = sev_ioctl_do_pek_pdh_gen(SEV_CMD_PDH_GEN, &input, writable);
872 ret = sev_ioctl_do_pek_csr(&input, writable);
874 case SEV_PEK_CERT_IMPORT:
875 ret = sev_ioctl_do_pek_import(&input, writable);
877 case SEV_PDH_CERT_EXPORT:
878 ret = sev_ioctl_do_pdh_export(&input, writable);
881 pr_warn_once("SEV_GET_ID command is deprecated, use SEV_GET_ID2\n");
882 ret = sev_ioctl_do_get_id(&input);
885 ret = sev_ioctl_do_get_id2(&input);
892 if (copy_to_user(argp, &input, sizeof(struct sev_issue_cmd)))
895 mutex_unlock(&sev_cmd_mutex);
900 static const struct file_operations sev_fops = {
901 .owner = THIS_MODULE,
902 .unlocked_ioctl = sev_ioctl,
905 int sev_platform_status(struct sev_user_data_status *data, int *error)
907 return sev_do_cmd(SEV_CMD_PLATFORM_STATUS, data, error);
909 EXPORT_SYMBOL_GPL(sev_platform_status);
911 int sev_guest_deactivate(struct sev_data_deactivate *data, int *error)
913 return sev_do_cmd(SEV_CMD_DEACTIVATE, data, error);
915 EXPORT_SYMBOL_GPL(sev_guest_deactivate);
917 int sev_guest_activate(struct sev_data_activate *data, int *error)
919 return sev_do_cmd(SEV_CMD_ACTIVATE, data, error);
921 EXPORT_SYMBOL_GPL(sev_guest_activate);
923 int sev_guest_decommission(struct sev_data_decommission *data, int *error)
925 return sev_do_cmd(SEV_CMD_DECOMMISSION, data, error);
927 EXPORT_SYMBOL_GPL(sev_guest_decommission);
929 int sev_guest_df_flush(int *error)
931 return sev_do_cmd(SEV_CMD_DF_FLUSH, NULL, error);
933 EXPORT_SYMBOL_GPL(sev_guest_df_flush);
935 static void sev_exit(struct kref *ref)
937 misc_deregister(&misc_dev->misc);
942 static int sev_misc_init(struct sev_device *sev)
944 struct device *dev = sev->dev;
948 * SEV feature support can be detected on multiple devices but the SEV
949 * FW commands must be issued on the master. During probe, we do not
950 * know the master hence we create /dev/sev on the first device probe.
951 * sev_do_cmd() finds the right master device to which to issue the
952 * command to the firmware.
955 struct miscdevice *misc;
957 misc_dev = kzalloc(sizeof(*misc_dev), GFP_KERNEL);
961 misc = &misc_dev->misc;
962 misc->minor = MISC_DYNAMIC_MINOR;
963 misc->name = DEVICE_NAME;
964 misc->fops = &sev_fops;
966 ret = misc_register(misc);
970 kref_init(&misc_dev->refcount);
972 kref_get(&misc_dev->refcount);
975 init_waitqueue_head(&sev->int_queue);
976 sev->misc = misc_dev;
977 dev_dbg(dev, "registered SEV device\n");
982 int sev_dev_init(struct psp_device *psp)
984 struct device *dev = psp->dev;
985 struct sev_device *sev;
988 if (!boot_cpu_has(X86_FEATURE_SEV)) {
989 dev_info_once(dev, "SEV: memory encryption not enabled by BIOS\n");
993 sev = devm_kzalloc(dev, sizeof(*sev), GFP_KERNEL);
997 sev->cmd_buf = (void *)devm_get_free_pages(dev, GFP_KERNEL, 0);
1001 psp->sev_data = sev;
1006 sev->io_regs = psp->io_regs;
1008 sev->vdata = (struct sev_vdata *)psp->vdata->sev;
1011 dev_err(dev, "sev: missing driver data\n");
1015 psp_set_sev_irq_handler(psp, sev_irq_handler, sev);
1017 ret = sev_misc_init(sev);
1021 dev_notice(dev, "sev enabled\n");
1026 psp_clear_sev_irq_handler(psp);
1028 devm_free_pages(dev, (unsigned long)sev->cmd_buf);
1030 devm_kfree(dev, sev);
1032 psp->sev_data = NULL;
1034 dev_notice(dev, "sev initialization failed\n");
1039 static void sev_firmware_shutdown(struct sev_device *sev)
1041 sev_platform_shutdown(NULL);
1044 /* The TMR area was encrypted, flush it from the cache */
1045 wbinvd_on_all_cpus();
1047 free_pages((unsigned long)sev_es_tmr,
1048 get_order(SEV_ES_TMR_SIZE));
1053 void sev_dev_destroy(struct psp_device *psp)
1055 struct sev_device *sev = psp->sev_data;
1060 sev_firmware_shutdown(sev);
1063 kref_put(&misc_dev->refcount, sev_exit);
1065 psp_clear_sev_irq_handler(psp);
1068 int sev_issue_cmd_external_user(struct file *filep, unsigned int cmd,
1069 void *data, int *error)
1071 if (!filep || filep->f_op != &sev_fops)
1074 return sev_do_cmd(cmd, data, error);
1076 EXPORT_SYMBOL_GPL(sev_issue_cmd_external_user);
1078 void sev_pci_init(void)
1080 struct sev_device *sev = psp_master->sev_data;
1081 struct page *tmr_page;
1087 psp_timeout = psp_probe_timeout;
1089 if (sev_get_api_version())
1092 if (sev_version_greater_or_equal(0, 15) &&
1093 sev_update_firmware(sev->dev) == 0)
1094 sev_get_api_version();
1096 /* Obtain the TMR memory area for SEV-ES use */
1097 tmr_page = alloc_pages(GFP_KERNEL, get_order(SEV_ES_TMR_SIZE));
1099 sev_es_tmr = page_address(tmr_page);
1103 "SEV: TMR allocation failed, SEV-ES support unavailable\n");
1106 /* Initialize the platform */
1107 rc = sev_platform_init(&error);
1109 dev_err(sev->dev, "SEV: failed to INIT error %#x\n", error);
1113 dev_info(sev->dev, "SEV API:%d.%d build:%d\n", sev->api_major,
1114 sev->api_minor, sev->build);
1119 psp_master->sev_data = NULL;
1122 void sev_pci_exit(void)
1124 struct sev_device *sev = psp_master->sev_data;
1129 sev_firmware_shutdown(sev);
projects / releases.git / blob