€•”§      Œsphinx.addnodes”Œdocument”“”)”}”(Œ	rawsource”Œ ”Œchildren”]”(Œtranslations”ŒLanguagesNode”“”)”}”(hhh]”(h Œpending_xref”“”)”}”(hhh]”Œdocutils.nodes”ŒText”“”ŒChinese (Simplified)”…””}”Œparent”hsbaŒ
attributes”}”(Œids”]”Œclasses”]”Œnames”]”Œdupnames”]”Œbackrefs”]”Œ	refdomain”Œstd”Œreftype”Œdoc”Œ	reftarget”Œ'/translations/zh_CN/virt/coco/sev-guest”Œmodname”NŒ	classname”NŒrefexplicit”ˆuŒtagname”hhhubh)”}”(hhh]”hŒChinese (Traditional)”…””}”hh2sbah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”h)Œreftype”h+Œ	reftarget”Œ'/translations/zh_TW/virt/coco/sev-guest”Œmodname”NŒ	classname”NŒrefexplicit”ˆuh1hhhubh)”}”(hhh]”hŒItalian”…””}”hhFsbah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”h)Œreftype”h+Œ	reftarget”Œ'/translations/it_IT/virt/coco/sev-guest”Œmodname”NŒ	classname”NŒrefexplicit”ˆuh1hhhubh)”}”(hhh]”hŒJapanese”…””}”hhZsbah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”h)Œreftype”h+Œ	reftarget”Œ'/translations/ja_JP/virt/coco/sev-guest”Œmodname”NŒ	classname”NŒrefexplicit”ˆuh1hhhubh)”}”(hhh]”hŒKorean”…””}”hhnsbah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”h)Œreftype”h+Œ	reftarget”Œ'/translations/ko_KR/virt/coco/sev-guest”Œmodname”NŒ	classname”NŒrefexplicit”ˆuh1hhhubh)”}”(hhh]”hŒPortuguese (Brazilian)”…””}”hh‚sbah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”h)Œreftype”h+Œ	reftarget”Œ'/translations/pt_BR/virt/coco/sev-guest”Œmodname”NŒ	classname”NŒrefexplicit”ˆuh1hhhubh)”}”(hhh]”hŒSpanish”…””}”hh–sbah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”h)Œreftype”h+Œ	reftarget”Œ'/translations/sp_SP/virt/coco/sev-guest”Œmodname”NŒ	classname”NŒrefexplicit”ˆuh1hhhubeh}”(h]”h ]”h"]”h$]”h&]”Œcurrent_language”ŒEnglish”uh1h
hhŒ	_document”hŒsource”NŒline”NubhŒcomment”“”)”}”(hŒ SPDX-License-Identifier: GPL-2.0”h]”hŒ SPDX-License-Identifier: GPL-2.0”…””}”hh·sbah}”(h]”h ]”h"]”h$]”h&]”Œ	xml:space”Œpreserve”uh1hµhhh²hh³ŒA/var/lib/git/docbuild/linux/Documentation/virt/coco/sev-guest.rst”h´KubhŒsection”“”)”}”(hhh]”(hŒtitle”“”)”}”(hŒ*The Definitive SEV Guest API Documentation”h]”hŒ*The Definitive SEV Guest API Documentation”…””}”(hhÏh²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÍhhÊh²hh³hÇh´KubhÉ)”}”(hhh]”(hÎ)”}”(hŒ1. General description”h]”hŒ1. General description”…””}”(hhàh²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÍhhÝh²hh³hÇh´KubhŒ	paragraph”“”)”}”(hŒ®The SEV API is a set of ioctls that are used by the guest or hypervisor
to get or set a certain aspect of the SEV virtual machine. The ioctls belong
to the following classes:”h]”hŒ®The SEV API is a set of ioctls that are used by the guest or hypervisor
to get or set a certain aspect of the SEV virtual machine. The ioctls belong
to the following classes:”…””}”(hhðh²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´K
hhÝh²hubhŒblock_quote”“”)”}”(hŒä- Hypervisor ioctls: These query and set global attributes which affect the
  whole SEV firmware.  These ioctl are used by platform provisioning tools.

- Guest ioctls: These query and set attributes of the SEV virtual machine.
”h]”hŒbullet_list”“”)”}”(hhh]”(hŒ	list_item”“”)”}”(hŒ”Hypervisor ioctls: These query and set global attributes which affect the
whole SEV firmware.  These ioctl are used by platform provisioning tools.
”h]”hï)”}”(hŒ“Hypervisor ioctls: These query and set global attributes which affect the
whole SEV firmware.  These ioctl are used by platform provisioning tools.”h]”hŒ“Hypervisor ioctls: These query and set global attributes which affect the
whole SEV firmware.  These ioctl are used by platform provisioning tools.”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´Khj  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j	  hj  ubj
  )”}”(hŒIGuest ioctls: These query and set attributes of the SEV virtual machine.
”h]”hï)”}”(hŒHGuest ioctls: These query and set attributes of the SEV virtual machine.”h]”hŒHGuest ioctls: These query and set attributes of the SEV virtual machine.”…””}”(hj'  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´Khj#  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j	  hj  ubeh}”(h]”h ]”h"]”h$]”h&]”Œbullet”Œ-”uh1j  h³hÇh´Khj   ubah}”(h]”h ]”h"]”h$]”h&]”uh1hþh³hÇh´KhhÝh²hubeh}”(h]”Œgeneral-description”ah ]”h"]”Œ1. general description”ah$]”h&]”uh1hÈhhÊh²hh³hÇh´KubhÉ)”}”(hhh]”(hÎ)”}”(hŒ2. API description”h]”hŒ2. API description”…””}”(hjT  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÍhjQ  h²hh³hÇh´Kubhï)”}”(hŒ³This section describes ioctls that is used for querying the SEV guest report
from the SEV firmware. For each ioctl, the following information is provided
along with a description:”h]”hŒ³This section describes ioctls that is used for querying the SEV guest report
from the SEV firmware. For each ioctl, the following information is provided
along with a description:”…””}”(hjb  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´KhjQ  h²hubhÿ)”}”(hXx  Technology:
    which SEV technology provides this ioctl. SEV, SEV-ES, SEV-SNP or all.

Type:
    hypervisor or guest. The ioctl can be used inside the guest or the
    hypervisor.

Parameters:
    what parameters are accepted by the ioctl.

Returns:
    the return value.  General error numbers (-ENOMEM, -EINVAL)
    are not detailed, but errors with specific meanings are.
”h]”hŒdefinition_list”“”)”}”(hhh]”(hŒdefinition_list_item”“”)”}”(hŒSTechnology:
which SEV technology provides this ioctl. SEV, SEV-ES, SEV-SNP or all.
”h]”(hŒterm”“”)”}”(hŒTechnology:”h]”hŒTechnology:”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j  h³hÇh´Khj{  ubhŒ
definition”“”)”}”(hhh]”hï)”}”(hŒFwhich SEV technology provides this ioctl. SEV, SEV-ES, SEV-SNP or all.”h]”hŒFwhich SEV technology provides this ioctl. SEV, SEV-ES, SEV-SNP or all.”…””}”(hj”  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´Khj‘  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j  hj{  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jy  h³hÇh´Khjv  ubjz  )”}”(hŒUType:
hypervisor or guest. The ioctl can be used inside the guest or the
hypervisor.
”h]”(j€  )”}”(hŒType:”h]”hŒType:”…””}”(hj²  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j  h³hÇh´Khj®  ubj  )”}”(hhh]”hï)”}”(hŒNhypervisor or guest. The ioctl can be used inside the guest or the
hypervisor.”h]”hŒNhypervisor or guest. The ioctl can be used inside the guest or the
hypervisor.”…””}”(hjÃ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´KhjÀ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j  hj®  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jy  h³hÇh´Khjv  ubjz  )”}”(hŒ7Parameters:
what parameters are accepted by the ioctl.
”h]”(j€  )”}”(hŒParameters:”h]”hŒParameters:”…””}”(hjá  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j  h³hÇh´K"hjÝ  ubj  )”}”(hhh]”hï)”}”(hŒ*what parameters are accepted by the ioctl.”h]”hŒ*what parameters are accepted by the ioctl.”…””}”(hjò  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´K"hjï  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j  hjÝ  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jy  h³hÇh´K"hjv  ubjz  )”}”(hŒ~Returns:
the return value.  General error numbers (-ENOMEM, -EINVAL)
are not detailed, but errors with specific meanings are.
”h]”(j€  )”}”(hŒReturns:”h]”hŒReturns:”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j  h³hÇh´K&hj  ubj  )”}”(hhh]”hï)”}”(hŒtthe return value.  General error numbers (-ENOMEM, -EINVAL)
are not detailed, but errors with specific meanings are.”h]”hŒtthe return value.  General error numbers (-ENOMEM, -EINVAL)
are not detailed, but errors with specific meanings are.”…””}”(hj!  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´K%hj  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j  hj  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jy  h³hÇh´K&hjv  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jt  hjp  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hþh³hÇh´KhjQ  h²hubhï)”}”(hXi  The guest ioctl should be issued on a file descriptor of the /dev/sev-guest
device.  The ioctl accepts struct snp_user_guest_request. The input and
output structure is specified through the req_data and resp_data field
respectively. If the ioctl fails to execute due to a firmware error, then
the fw_error code will be set, otherwise fw_error will be set to -1.”h]”hXi  The guest ioctl should be issued on a file descriptor of the /dev/sev-guest
device.  The ioctl accepts struct snp_user_guest_request. The input and
output structure is specified through the req_data and resp_data field
respectively. If the ioctl fails to execute due to a firmware error, then
the fw_error code will be set, otherwise fw_error will be set to -1.”…””}”(hjG  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´K(hjQ  h²hubhï)”}”(hŒÖThe firmware checks that the message sequence counter is one greater than
the guests message sequence counter. If guest driver fails to increment message
counter (e.g. counter overflow), then -EIO will be returned.”h]”hŒÖThe firmware checks that the message sequence counter is one greater than
the guests message sequence counter. If guest driver fails to increment message
counter (e.g. counter overflow), then -EIO will be returned.”…””}”(hjU  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´K.hjQ  h²hubhŒliteral_block”“”)”}”(hXÞ  struct snp_guest_request_ioctl {
        /* Message version number */
        __u32 msg_version;

        /* Request and response structure address */
        __u64 req_data;
        __u64 resp_data;

        /* bits[63:32]: VMM error code, bits[31:0] firmware error code (see psp-sev.h) */
        union {
                __u64 exitinfo2;
                struct {
                        __u32 fw_error;
                        __u32 vmm_error;
                };
        };
};”h]”hXÞ  struct snp_guest_request_ioctl {
        /* Message version number */
        __u32 msg_version;

        /* Request and response structure address */
        __u64 req_data;
        __u64 resp_data;

        /* bits[63:32]: VMM error code, bits[31:0] firmware error code (see psp-sev.h) */
        union {
                __u64 exitinfo2;
                struct {
                        __u32 fw_error;
                        __u32 vmm_error;
                };
        };
};”…””}”hje  sbah}”(h]”h ]”h"]”h$]”h&]”hÅhÆuh1jc  h³hÇh´K4hjQ  h²hubhï)”}”(hŒŠThe host ioctls are issued to a file descriptor of the /dev/sev device.
The ioctl accepts the command ID/input structure documented below.”h]”hŒŠThe host ioctls are issued to a file descriptor of the /dev/sev device.
The ioctl accepts the command ID/input structure documented below.”…””}”(hjs  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´KFhjQ  h²hubjd  )”}”(hŒÕstruct sev_issue_cmd {
        /* Command ID */
        __u32 cmd;

        /* Command request structure */
        __u64 data;

        /* Firmware error code on failure (see psp-sev.h) */
        __u32 error;
};”h]”hŒÕstruct sev_issue_cmd {
        /* Command ID */
        __u32 cmd;

        /* Command request structure */
        __u64 data;

        /* Firmware error code on failure (see psp-sev.h) */
        __u32 error;
};”…””}”hj  sbah}”(h]”h ]”h"]”h$]”h&]”hÅhÆuh1jc  h³hÇh´KKhjQ  h²hubhÉ)”}”(hhh]”(hÎ)”}”(hŒ2.1 SNP_GET_REPORT”h]”hŒ2.1 SNP_GET_REPORT”…””}”(hj’  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÍhj  h²hh³hÇh´KXubhŒ
field_list”“”)”}”(hhh]”(hŒfield”“”)”}”(hhh]”(hŒ
field_name”“”)”}”(hŒ
Technology”h]”hŒ
Technology”…””}”(hj¬  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jª  hj§  h³hÇh´K ubhŒ
field_body”“”)”}”(hŒsev-snp”h]”hï)”}”(hj¾  h]”hŒsev-snp”…””}”(hjÀ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´KZhj¼  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jº  hj§  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j¥  h³hÇh´KZhj¢  h²hubj¦  )”}”(hhh]”(j«  )”}”(hŒType”h]”hŒType”…””}”(hjÜ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jª  hjÙ  h³hÇh´K ubj»  )”}”(hŒguest ioctl”h]”hï)”}”(hjì  h]”hŒguest ioctl”…””}”(hjî  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´K[hjê  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jº  hjÙ  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j¥  h³hÇh´K[hj¢  h²hubj¦  )”}”(hhh]”(j«  )”}”(hŒParameters (in)”h]”hŒParameters (in)”…””}”(hj
  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jª  hj  h³hÇh´K ubj»  )”}”(hŒstruct snp_report_req”h]”hï)”}”(hj  h]”hŒstruct snp_report_req”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´K\hj  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jº  hj  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j¥  h³hÇh´K\hj¢  h²hubj¦  )”}”(hhh]”(j«  )”}”(hŒReturns (out)”h]”hŒReturns (out)”…””}”(hj8  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jª  hj5  h³hÇh´K ubj»  )”}”(hŒ6struct snp_report_resp on success, -negative on error
”h]”hï)”}”(hŒ5struct snp_report_resp on success, -negative on error”h]”hŒ5struct snp_report_resp on success, -negative on error”…””}”(hjJ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´K]hjF  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jº  hj5  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j¥  h³hÇh´K]hj¢  h²hubeh}”(h]”h ]”h"]”h$]”h&]”uh1j   hj  h²hh³hÇh´KZubhï)”}”(hŒßThe SNP_GET_REPORT ioctl can be used to query the attestation report from the
SEV-SNP firmware. The ioctl uses the SNP_GUEST_REQUEST (MSG_REPORT_REQ) command
provided by the SEV-SNP firmware to query the attestation report.”h]”hŒßThe SNP_GET_REPORT ioctl can be used to query the attestation report from the
SEV-SNP firmware. The ioctl uses the SNP_GUEST_REQUEST (MSG_REPORT_REQ) command
provided by the SEV-SNP firmware to query the attestation report.”…””}”(hjj  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´K_hj  h²hubhï)”}”(hŒ·On success, the snp_report_resp.data will contains the report. The report
contain the format described in the SEV-SNP specification. See the SEV-SNP
specification for further details.”h]”hŒ·On success, the snp_report_resp.data will contains the report. The report
contain the format described in the SEV-SNP specification. See the SEV-SNP
specification for further details.”…””}”(hjx  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´Kchj  h²hubeh}”(h]”Œsnp-get-report”ah ]”h"]”Œ2.1 snp_get_report”ah$]”h&]”uh1hÈhjQ  h²hh³hÇh´KXubhÉ)”}”(hhh]”(hÎ)”}”(hŒ2.2 SNP_GET_DERIVED_KEY”h]”hŒ2.2 SNP_GET_DERIVED_KEY”…””}”(hj‘  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÍhjŽ  h²hh³hÇh´Khubj¡  )”}”(hhh]”(j¦  )”}”(hhh]”(j«  )”}”(hŒ
Technology”h]”hŒ
Technology”…””}”(hj¥  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jª  hj¢  h³hÇh´K ubj»  )”}”(hŒsev-snp”h]”hï)”}”(hjµ  h]”hŒsev-snp”…””}”(hj·  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´Kihj³  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jº  hj¢  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j¥  h³hÇh´KihjŸ  h²hubj¦  )”}”(hhh]”(j«  )”}”(hŒType”h]”hŒType”…””}”(hjÓ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jª  hjÐ  h³hÇh´K ubj»  )”}”(hŒguest ioctl”h]”hï)”}”(hjã  h]”hŒguest ioctl”…””}”(hjå  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´Kjhjá  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jº  hjÐ  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j¥  h³hÇh´KjhjŸ  h²hubj¦  )”}”(hhh]”(j«  )”}”(hŒParameters (in)”h]”hŒParameters (in)”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jª  hjþ  h³hÇh´K ubj»  )”}”(hŒstruct snp_derived_key_req”h]”hï)”}”(hj  h]”hŒstruct snp_derived_key_req”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´Kkhj  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jº  hjþ  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j¥  h³hÇh´KkhjŸ  h²hubj¦  )”}”(hhh]”(j«  )”}”(hŒReturns (out)”h]”hŒReturns (out)”…””}”(hj/  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jª  hj,  h³hÇh´K ubj»  )”}”(hŒ;struct snp_derived_key_resp on success, -negative on error
”h]”hï)”}”(hŒ:struct snp_derived_key_resp on success, -negative on error”h]”hŒ:struct snp_derived_key_resp on success, -negative on error”…””}”(hjA  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´Klhj=  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jº  hj,  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j¥  h³hÇh´KlhjŸ  h²hubeh}”(h]”h ]”h"]”h$]”h&]”uh1j   hjŽ  h²hh³hÇh´Kiubhï)”}”(hŒÆThe SNP_GET_DERIVED_KEY ioctl can be used to get a key derive from a root key.
The derived key can be used by the guest for any purpose, such as sealing keys
or communicating with external entities.”h]”hŒÆThe SNP_GET_DERIVED_KEY ioctl can be used to get a key derive from a root key.
The derived key can be used by the guest for any purpose, such as sealing keys
or communicating with external entities.”…””}”(hja  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´KnhjŽ  h²hubhï)”}”(hŒØThe ioctl uses the SNP_GUEST_REQUEST (MSG_KEY_REQ) command provided by the
SEV-SNP firmware to derive the key. See SEV-SNP specification for further details
on the various fields passed in the key derivation request.”h]”hŒØThe ioctl uses the SNP_GUEST_REQUEST (MSG_KEY_REQ) command provided by the
SEV-SNP firmware to derive the key. See SEV-SNP specification for further details
on the various fields passed in the key derivation request.”…””}”(hjo  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´KrhjŽ  h²hubhï)”}”(hŒ|On success, the snp_derived_key_resp.data contains the derived key value. See
the SEV-SNP specification for further details.”h]”hŒ|On success, the snp_derived_key_resp.data contains the derived key value. See
the SEV-SNP specification for further details.”…””}”(hj}  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´KvhjŽ  h²hubeh}”(h]”Œsnp-get-derived-key”ah ]”h"]”Œ2.2 snp_get_derived_key”ah$]”h&]”uh1hÈhjQ  h²hh³hÇh´KhubhÉ)”}”(hhh]”(hÎ)”}”(hŒ2.3 SNP_GET_EXT_REPORT”h]”hŒ2.3 SNP_GET_EXT_REPORT”…””}”(hj–  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÍhj“  h²hh³hÇh´K{ubj¡  )”}”(hhh]”(j¦  )”}”(hhh]”(j«  )”}”(hŒ
Technology”h]”hŒ
Technology”…””}”(hjª  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jª  hj§  h³hÇh´K ubj»  )”}”(hŒsev-snp”h]”hï)”}”(hjº  h]”hŒsev-snp”…””}”(hj¼  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´K|hj¸  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jº  hj§  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j¥  h³hÇh´K|hj¤  h²hubj¦  )”}”(hhh]”(j«  )”}”(hŒType”h]”hŒType”…””}”(hjØ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jª  hjÕ  h³hÇh´K ubj»  )”}”(hŒguest ioctl”h]”hï)”}”(hjè  h]”hŒguest ioctl”…””}”(hjê  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´K}hjæ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jº  hjÕ  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j¥  h³hÇh´K}hj¤  h²hubj¦  )”}”(hhh]”(j«  )”}”(hŒParameters (in/out)”h]”hŒParameters (in/out)”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jª  hj  h³hÇh´K ubj»  )”}”(hŒstruct snp_ext_report_req”h]”hï)”}”(hj  h]”hŒstruct snp_ext_report_req”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´K~hj  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jº  hj  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j¥  h³hÇh´K~hj¤  h²hubj¦  )”}”(hhh]”(j«  )”}”(hŒReturns (out)”h]”hŒReturns (out)”…””}”(hj4  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jª  hj1  h³hÇh´K ubj»  )”}”(hŒ6struct snp_report_resp on success, -negative on error
”h]”hï)”}”(hŒ5struct snp_report_resp on success, -negative on error”h]”hŒ5struct snp_report_resp on success, -negative on error”…””}”(hjF  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´KhjB  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jº  hj1  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j¥  h³hÇh´Khj¤  h²hubeh}”(h]”h ]”h"]”h$]”h&]”uh1j   hj“  h²hh³hÇh´K|ubhï)”}”(hŒÿThe SNP_GET_EXT_REPORT ioctl is similar to the SNP_GET_REPORT. The difference is
related to the additional certificate data that is returned with the report.
The certificate data returned is being provided by the hypervisor through the
SNP_SET_EXT_CONFIG.”h]”hŒÿThe SNP_GET_EXT_REPORT ioctl is similar to the SNP_GET_REPORT. The difference is
related to the additional certificate data that is returned with the report.
The certificate data returned is being provided by the hypervisor through the
SNP_SET_EXT_CONFIG.”…””}”(hjf  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´Khj“  h²hubhï)”}”(hŒ}The ioctl uses the SNP_GUEST_REQUEST (MSG_REPORT_REQ) command provided by the SEV-SNP
firmware to get the attestation report.”h]”hŒ}The ioctl uses the SNP_GUEST_REQUEST (MSG_REPORT_REQ) command provided by the SEV-SNP
firmware to get the attestation report.”…””}”(hjt  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´K†hj“  h²hubhï)”}”(hX  On success, the snp_ext_report_resp.data will contain the attestation report
and snp_ext_report_req.certs_address will contain the certificate blob. If the
length of the blob is smaller than expected then snp_ext_report_req.certs_len will
be updated with the expected value.”h]”hX  On success, the snp_ext_report_resp.data will contain the attestation report
and snp_ext_report_req.certs_address will contain the certificate blob. If the
length of the blob is smaller than expected then snp_ext_report_req.certs_len will
be updated with the expected value.”…””}”(hj‚  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´K‰hj“  h²hubhï)”}”(hŒOSee GHCB specification for further detail on how to parse the certificate blob.”h]”hŒOSee GHCB specification for further detail on how to parse the certificate blob.”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´KŽhj“  h²hubeh}”(h]”Œsnp-get-ext-report”ah ]”h"]”Œ2.3 snp_get_ext_report”ah$]”h&]”uh1hÈhjQ  h²hh³hÇh´K{ubhÉ)”}”(hhh]”(hÎ)”}”(hŒ2.4 SNP_PLATFORM_STATUS”h]”hŒ2.4 SNP_PLATFORM_STATUS”…””}”(hj©  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÍhj¦  h²hh³hÇh´K‘ubj¡  )”}”(hhh]”(j¦  )”}”(hhh]”(j«  )”}”(hŒ
Technology”h]”hŒ
Technology”…””}”(hj½  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jª  hjº  h³hÇh´K ubj»  )”}”(hŒsev-snp”h]”hï)”}”(hjÍ  h]”hŒsev-snp”…””}”(hjÏ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´K’hjË  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jº  hjº  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j¥  h³hÇh´K’hj·  h²hubj¦  )”}”(hhh]”(j«  )”}”(hŒType”h]”hŒType”…””}”(hjë  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jª  hjè  h³hÇh´K ubj»  )”}”(hŒhypervisor ioctl cmd”h]”hï)”}”(hjû  h]”hŒhypervisor ioctl cmd”…””}”(hjý  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´K“hjù  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jº  hjè  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j¥  h³hÇh´K“hj·  h²hubj¦  )”}”(hhh]”(j«  )”}”(hŒParameters (out)”h]”hŒParameters (out)”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jª  hj  h³hÇh´K ubj»  )”}”(hŒstruct sev_user_data_snp_status”h]”hï)”}”(hj)  h]”hŒstruct sev_user_data_snp_status”…””}”(hj+  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´K”hj'  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jº  hj  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j¥  h³hÇh´K”hj·  h²hubj¦  )”}”(hhh]”(j«  )”}”(hŒReturns (out)”h]”hŒReturns (out)”…””}”(hjG  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jª  hjD  h³hÇh´K ubj»  )”}”(hŒ!0 on success, -negative on error
”h]”hï)”}”(hŒ 0 on success, -negative on error”h]”hŒ 0 on success, -negative on error”…””}”(hjY  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´K•hjU  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jº  hjD  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j¥  h³hÇh´K•hj·  h²hubeh}”(h]”h ]”h"]”h$]”h&]”uh1j   hj¦  h²hh³hÇh´K’ubhï)”}”(hŒ³The SNP_PLATFORM_STATUS command is used to query the SNP platform status. The
status includes API major, minor version and more. See the SEV-SNP
specification for further details.”h]”hŒ³The SNP_PLATFORM_STATUS command is used to query the SNP platform status. The
status includes API major, minor version and more. See the SEV-SNP
specification for further details.”…””}”(hjy  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´K—hj¦  h²hubeh}”(h]”Œsnp-platform-status”ah ]”h"]”Œ2.4 snp_platform_status”ah$]”h&]”uh1hÈhjQ  h²hh³hÇh´K‘ubhÉ)”}”(hhh]”(hÎ)”}”(hŒ2.5 SNP_COMMIT”h]”hŒ2.5 SNP_COMMIT”…””}”(hj’  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÍhj  h²hh³hÇh´Kœubj¡  )”}”(hhh]”(j¦  )”}”(hhh]”(j«  )”}”(hŒ
Technology”h]”hŒ
Technology”…””}”(hj¦  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jª  hj£  h³hÇh´K ubj»  )”}”(hŒsev-snp”h]”hï)”}”(hj¶  h]”hŒsev-snp”…””}”(hj¸  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´Khj´  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jº  hj£  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j¥  h³hÇh´Khj   h²hubj¦  )”}”(hhh]”(j«  )”}”(hŒType”h]”hŒType”…””}”(hjÔ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jª  hjÑ  h³hÇh´K ubj»  )”}”(hŒhypervisor ioctl cmd”h]”hï)”}”(hjä  h]”hŒhypervisor ioctl cmd”…””}”(hjæ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´Kžhjâ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jº  hjÑ  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j¥  h³hÇh´Kžhj   h²hubj¦  )”}”(hhh]”(j«  )”}”(hŒReturns (out)”h]”hŒReturns (out)”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jª  hjÿ  h³hÇh´K ubj»  )”}”(hŒ!0 on success, -negative on error
”h]”hï)”}”(hŒ 0 on success, -negative on error”h]”hŒ 0 on success, -negative on error”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´KŸhj  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jº  hjÿ  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j¥  h³hÇh´KŸhj   h²hubeh}”(h]”h ]”h"]”h$]”h&]”uh1j   hj  h²hh³hÇh´Kubhï)”}”(hX
  SNP_COMMIT is used to commit the currently installed firmware using the
SEV-SNP firmware SNP_COMMIT command. This prevents roll-back to a previously
committed firmware version. This will also update the reported TCB to match
that of the currently installed firmware.”h]”hX
  SNP_COMMIT is used to commit the currently installed firmware using the
SEV-SNP firmware SNP_COMMIT command. This prevents roll-back to a previously
committed firmware version. This will also update the reported TCB to match
that of the currently installed firmware.”…””}”(hj4  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´K¡hj  h²hubeh}”(h]”Œ
snp-commit”ah ]”h"]”Œ2.5 snp_commit”ah$]”h&]”uh1hÈhjQ  h²hh³hÇh´KœubhÉ)”}”(hhh]”(hÎ)”}”(hŒ2.6 SNP_SET_CONFIG”h]”hŒ2.6 SNP_SET_CONFIG”…””}”(hjM  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÍhjJ  h²hh³hÇh´K§ubj¡  )”}”(hhh]”(j¦  )”}”(hhh]”(j«  )”}”(hŒ
Technology”h]”hŒ
Technology”…””}”(hja  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jª  hj^  h³hÇh´K ubj»  )”}”(hŒsev-snp”h]”hï)”}”(hjq  h]”hŒsev-snp”…””}”(hjs  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´K¨hjo  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jº  hj^  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j¥  h³hÇh´K¨hj[  h²hubj¦  )”}”(hhh]”(j«  )”}”(hŒType”h]”hŒType”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jª  hjŒ  h³hÇh´K ubj»  )”}”(hŒhypervisor ioctl cmd”h]”hï)”}”(hjŸ  h]”hŒhypervisor ioctl cmd”…””}”(hj¡  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´K©hj  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jº  hjŒ  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j¥  h³hÇh´K©hj[  h²hubj¦  )”}”(hhh]”(j«  )”}”(hŒParameters (in)”h]”hŒParameters (in)”…””}”(hj½  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jª  hjº  h³hÇh´K ubj»  )”}”(hŒstruct sev_user_data_snp_config”h]”hï)”}”(hjÍ  h]”hŒstruct sev_user_data_snp_config”…””}”(hjÏ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´KªhjË  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jº  hjº  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j¥  h³hÇh´Kªhj[  h²hubj¦  )”}”(hhh]”(j«  )”}”(hŒReturns (out)”h]”hŒReturns (out)”…””}”(hjë  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jª  hjè  h³hÇh´K ubj»  )”}”(hŒ!0 on success, -negative on error
”h]”hï)”}”(hŒ 0 on success, -negative on error”h]”hŒ 0 on success, -negative on error”…””}”(hjý  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´K«hjù  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jº  hjè  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j¥  h³hÇh´K«hj[  h²hubeh}”(h]”h ]”h"]”h$]”h&]”uh1j   hjJ  h²hh³hÇh´K¨ubhï)”}”(hX,  SNP_SET_CONFIG is used to set the system-wide configuration such as
reported TCB version in the attestation report. The command is similar
to SNP_CONFIG command defined in the SEV-SNP spec. The current values of
the firmware parameters affected by this command can be queried via
SNP_PLATFORM_STATUS.”h]”hX,  SNP_SET_CONFIG is used to set the system-wide configuration such as
reported TCB version in the attestation report. The command is similar
to SNP_CONFIG command defined in the SEV-SNP spec. The current values of
the firmware parameters affected by this command can be queried via
SNP_PLATFORM_STATUS.”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´K­hjJ  h²hubeh}”(h]”Œsnp-set-config”ah ]”h"]”Œ2.6 snp_set_config”ah$]”h&]”uh1hÈhjQ  h²hh³hÇh´K§ubhÉ)”}”(hhh]”(hÎ)”}”(hŒ2.7 SNP_VLEK_LOAD”h]”hŒ2.7 SNP_VLEK_LOAD”…””}”(hj6  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÍhj3  h²hh³hÇh´K´ubj¡  )”}”(hhh]”(j¦  )”}”(hhh]”(j«  )”}”(hŒ
Technology”h]”hŒ
Technology”…””}”(hjJ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jª  hjG  h³hÇh´K ubj»  )”}”(hŒsev-snp”h]”hï)”}”(hjZ  h]”hŒsev-snp”…””}”(hj\  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´KµhjX  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jº  hjG  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j¥  h³hÇh´KµhjD  h²hubj¦  )”}”(hhh]”(j«  )”}”(hŒType”h]”hŒType”…””}”(hjx  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jª  hju  h³hÇh´K ubj»  )”}”(hŒhypervisor ioctl cmd”h]”hï)”}”(hjˆ  h]”hŒhypervisor ioctl cmd”…””}”(hjŠ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´K¶hj†  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jº  hju  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j¥  h³hÇh´K¶hjD  h²hubj¦  )”}”(hhh]”(j«  )”}”(hŒParameters (in)”h]”hŒParameters (in)”…””}”(hj¦  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jª  hj£  h³hÇh´K ubj»  )”}”(hŒ"struct sev_user_data_snp_vlek_load”h]”hï)”}”(hj¶  h]”hŒ"struct sev_user_data_snp_vlek_load”…””}”(hj¸  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´K·hj´  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jº  hj£  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j¥  h³hÇh´K·hjD  h²hubj¦  )”}”(hhh]”(j«  )”}”(hŒReturns (out)”h]”hŒReturns (out)”…””}”(hjÔ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jª  hjÑ  h³hÇh´K ubj»  )”}”(hŒ!0 on success, -negative on error
”h]”hï)”}”(hŒ 0 on success, -negative on error”h]”hŒ 0 on success, -negative on error”…””}”(hjæ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´K¸hjâ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jº  hjÑ  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j¥  h³hÇh´K¸hjD  h²hubeh}”(h]”h ]”h"]”h$]”h&]”uh1j   hj3  h²hh³hÇh´Kµubhï)”}”(hX€  When requesting an attestation report a guest is able to specify whether
it wants SNP firmware to sign the report using either a Versioned Chip
Endorsement Key (VCEK), which is derived from chip-unique secrets, or a
Versioned Loaded Endorsement Key (VLEK) which is obtained from an AMD
Key Derivation Service (KDS) and derived from seeds allocated to
enrolled cloud service providers.”h]”hX€  When requesting an attestation report a guest is able to specify whether
it wants SNP firmware to sign the report using either a Versioned Chip
Endorsement Key (VCEK), which is derived from chip-unique secrets, or a
Versioned Loaded Endorsement Key (VLEK) which is obtained from an AMD
Key Derivation Service (KDS) and derived from seeds allocated to
enrolled cloud service providers.”…””}”(hj	  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´Kºhj3  h²hubhï)”}”(hŒÜIn the case of VLEK keys, the SNP_VLEK_LOAD SNP command is used to load
them into the system after obtaining them from the KDS, and corresponds
closely to the SNP_VLEK_LOAD firmware command specified in the SEV-SNP
spec.”h]”hŒÜIn the case of VLEK keys, the SNP_VLEK_LOAD SNP command is used to load
them into the system after obtaining them from the KDS, and corresponds
closely to the SNP_VLEK_LOAD firmware command specified in the SEV-SNP
spec.”…””}”(hj	  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´KÁhj3  h²hubeh}”(h]”Œsnp-vlek-load”ah ]”h"]”Œ2.7 snp_vlek_load”ah$]”h&]”uh1hÈhjQ  h²hh³hÇh´K´ubeh}”(h]”Œapi-description”ah ]”h"]”Œ2. api description”ah$]”h&]”uh1hÈhhÊh²hh³hÇh´KubhÉ)”}”(hhh]”(hÎ)”}”(hŒ3. SEV-SNP CPUID Enforcement”h]”hŒ3. SEV-SNP CPUID Enforcement”…””}”(hj5	  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÍhj2	  h²hh³hÇh´KÇubhï)”}”(hŒòSEV-SNP guests can access a special page that contains a table of CPUID values
that have been validated by the PSP as part of the SNP_LAUNCH_UPDATE firmware
command. It provides the following assurances regarding the validity of CPUID
values:”h]”hŒòSEV-SNP guests can access a special page that contains a table of CPUID values
that have been validated by the PSP as part of the SNP_LAUNCH_UPDATE firmware
command. It provides the following assurances regarding the validity of CPUID
values:”…””}”(hjC	  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´KÉhj2	  h²hubhÿ)”}”(hX™  - Its address is obtained via bootloader/firmware (via CC blob), and those
  binaries will be measured as part of the SEV-SNP attestation report.
- Its initial state will be encrypted/pvalidated, so attempts to modify
  it during run-time will result in garbage being written, or #VC exceptions
  being generated due to changes in validation state if the hypervisor tries
  to swap the backing page.
- Attempts to bypass PSP checks by the hypervisor by using a normal page, or
  a non-CPUID encrypted page will change the measurement provided by the
  SEV-SNP attestation report.
- The CPUID page contents are *not* measured, but attempts to modify the
  expected contents of a CPUID page as part of guest initialization will be
  gated by the PSP CPUID enforcement policy checks performed on the page
  during SNP_LAUNCH_UPDATE, and noticeable later if the guest owner
  implements their own checks of the CPUID values.
”h]”j  )”}”(hhh]”(j
  )”}”(hŒIts address is obtained via bootloader/firmware (via CC blob), and those
binaries will be measured as part of the SEV-SNP attestation report.”h]”hï)”}”(hŒIts address is obtained via bootloader/firmware (via CC blob), and those
binaries will be measured as part of the SEV-SNP attestation report.”h]”hŒIts address is obtained via bootloader/firmware (via CC blob), and those
binaries will be measured as part of the SEV-SNP attestation report.”…””}”(hj\	  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´KÎhjX	  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j	  hjU	  ubj
  )”}”(hŒõIts initial state will be encrypted/pvalidated, so attempts to modify
it during run-time will result in garbage being written, or #VC exceptions
being generated due to changes in validation state if the hypervisor tries
to swap the backing page.”h]”hï)”}”(hŒõIts initial state will be encrypted/pvalidated, so attempts to modify
it during run-time will result in garbage being written, or #VC exceptions
being generated due to changes in validation state if the hypervisor tries
to swap the backing page.”h]”hŒõIts initial state will be encrypted/pvalidated, so attempts to modify
it during run-time will result in garbage being written, or #VC exceptions
being generated due to changes in validation state if the hypervisor tries
to swap the backing page.”…””}”(hjt	  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´KÐhjp	  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j	  hjU	  ubj
  )”}”(hŒ­Attempts to bypass PSP checks by the hypervisor by using a normal page, or
a non-CPUID encrypted page will change the measurement provided by the
SEV-SNP attestation report.”h]”hï)”}”(hŒ­Attempts to bypass PSP checks by the hypervisor by using a normal page, or
a non-CPUID encrypted page will change the measurement provided by the
SEV-SNP attestation report.”h]”hŒ­Attempts to bypass PSP checks by the hypervisor by using a normal page, or
a non-CPUID encrypted page will change the measurement provided by the
SEV-SNP attestation report.”…””}”(hjŒ	  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´KÔhjˆ	  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j	  hjU	  ubj
  )”}”(hXK  The CPUID page contents are *not* measured, but attempts to modify the
expected contents of a CPUID page as part of guest initialization will be
gated by the PSP CPUID enforcement policy checks performed on the page
during SNP_LAUNCH_UPDATE, and noticeable later if the guest owner
implements their own checks of the CPUID values.
”h]”hï)”}”(hXJ  The CPUID page contents are *not* measured, but attempts to modify the
expected contents of a CPUID page as part of guest initialization will be
gated by the PSP CPUID enforcement policy checks performed on the page
during SNP_LAUNCH_UPDATE, and noticeable later if the guest owner
implements their own checks of the CPUID values.”h]”(hŒThe CPUID page contents are ”…””}”(hj¤	  h²hh³Nh´NubhŒemphasis”“”)”}”(hŒ*not*”h]”hŒnot”…””}”(hj®	  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j¬	  hj¤	  ubhX)   measured, but attempts to modify the
expected contents of a CPUID page as part of guest initialization will be
gated by the PSP CPUID enforcement policy checks performed on the page
during SNP_LAUNCH_UPDATE, and noticeable later if the guest owner
implements their own checks of the CPUID values.”…””}”(hj¤	  h²hh³Nh´Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´K×hj 	  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j	  hjU	  ubeh}”(h]”h ]”h"]”h$]”h&]”jA  jB  uh1j  h³hÇh´KÎhjQ	  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hþh³hÇh´KÎhj2	  h²hubhï)”}”(hX  It is important to note that this last assurance is only useful if the kernel
has taken care to make use of the SEV-SNP CPUID throughout all stages of boot.
Otherwise, guest owner attestation provides no assurance that the kernel wasn't
fed incorrect values at some point during boot.”h]”hX  It is important to note that this last assurance is only useful if the kernel
has taken care to make use of the SEV-SNP CPUID throughout all stages of boot.
Otherwise, guest owner attestation provides no assurance that the kernel wasnâ€™t
fed incorrect values at some point during boot.”…””}”(hjØ	  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´KÝhj2	  h²hubeh}”(h]”Œsev-snp-cpuid-enforcement”ah ]”h"]”Œ3. sev-snp cpuid enforcement”ah$]”h&]”uh1hÈhhÊh²hh³hÇh´KÇubhÉ)”}”(hhh]”(hÎ)”}”(hŒ%4. SEV Guest Driver Communication Key”h]”hŒ%4. SEV Guest Driver Communication Key”…””}”(hjñ	  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÍhjî	  h²hh³hÇh´Kãubhï)”}”(hX  Communication between an SEV guest and the SEV firmware in the AMD Secure
Processor (ASP, aka PSP) is protected by a VM Platform Communication Key
(VMPCK). By default, the sev-guest driver uses the VMPCK associated with the
VM Privilege Level (VMPL) at which the guest is running. Should this key be
wiped by the sev-guest driver (see the driver for reasons why a VMPCK can be
wiped), a different key can be used by reloading the sev-guest driver and
specifying the desired key using the vmpck_id module parameter.”h]”hX  Communication between an SEV guest and the SEV firmware in the AMD Secure
Processor (ASP, aka PSP) is protected by a VM Platform Communication Key
(VMPCK). By default, the sev-guest driver uses the VMPCK associated with the
VM Privilege Level (VMPL) at which the guest is running. Should this key be
wiped by the sev-guest driver (see the driver for reasons why a VMPCK can be
wiped), a different key can be used by reloading the sev-guest driver and
specifying the desired key using the vmpck_id module parameter.”…””}”(hjÿ	  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´Kåhjî	  h²hubhÉ)”}”(hhh]”(hÎ)”}”(hŒ	Reference”h]”hŒ	Reference”…””}”(hj
  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÍhj
  h²hh³hÇh´Kïubhï)”}”(hŒ5SEV-SNP and GHCB specification: developer.amd.com/sev”h]”hŒ5SEV-SNP and GHCB specification: developer.amd.com/sev”…””}”(hj
  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´Kñhj
  h²hubhï)”}”(hŒKThe driver is based on SEV-SNP firmware spec 0.9 and GHCB spec version 2.0.”h]”hŒKThe driver is based on SEV-SNP firmware spec 0.9 and GHCB spec version 2.0.”…””}”(hj,
  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hîh³hÇh´Kóhj
  h²hubeh}”(h]”Œ	reference”ah ]”h"]”Œ	reference”ah$]”h&]”uh1hÈhjî	  h²hh³hÇh´Kïubeh}”(h]”Œ"sev-guest-driver-communication-key”ah ]”h"]”Œ%4. sev guest driver communication key”ah$]”h&]”uh1hÈhhÊh²hh³hÇh´Kãubeh}”(h]”Œ*the-definitive-sev-guest-api-documentation”ah ]”h"]”Œ*the definitive sev guest api documentation”ah$]”h&]”uh1hÈhhh²hh³hÇh´Kubeh}”(h]”h ]”h"]”h$]”h&]”Œsource”hÇuh1hŒcurrent_source”NŒcurrent_line”NŒsettings”Œdocutils.frontend”ŒValues”“”)”}”(hÍNŒ	generator”NŒ	datestamp”NŒsource_link”NŒ
source_url”NŒtoc_backlinks”Œentry”Œfootnote_backlinks”KŒsectnum_xform”KŒstrip_comments”NŒstrip_elements_with_classes”NŒstrip_classes”NŒreport_level”KŒ
halt_level”KŒexit_status_level”KŒdebug”NŒwarning_stream”NŒ	traceback”ˆŒinput_encoding”Œ	utf-8-sig”Œinput_encoding_error_handler”Œstrict”Œoutput_encoding”Œutf-8”Œoutput_encoding_error_handler”ju
  Œerror_encoding”Œutf-8”Œerror_encoding_error_handler”Œbackslashreplace”Œlanguage_code”Œen”Œrecord_dependencies”NŒconfig”NŒ	id_prefix”hŒauto_id_prefix”Œid”Œdump_settings”NŒdump_internals”NŒdump_transforms”NŒdump_pseudo_xml”NŒexpose_internals”NŒstrict_visitor”NŒ_disable_config”NŒ_source”hÇŒ_destination”NŒ_config_files”]”Œ7/var/lib/git/docbuild/linux/Documentation/docutils.conf”aŒfile_insertion_enabled”ˆŒraw_enabled”KŒline_length_limit”M'Œpep_references”NŒpep_base_url”Œhttps://peps.python.org/”Œpep_file_url_template”Œpep-%04d”Œrfc_references”NŒrfc_base_url”Œ&https://datatracker.ietf.org/doc/html/”Œ	tab_width”KŒtrim_footnote_reference_space”‰Œsyntax_highlight”Œlong”Œsmart_quotes”ˆŒsmartquotes_locales”]”Œcharacter_level_inline_markup”‰Œdoctitle_xform”‰Œdocinfo_xform”KŒsectsubtitle_xform”‰Œimage_loading”Œlink”Œembed_stylesheet”‰Œcloak_email_addresses”ˆŒsection_self_link”‰Œenv”NubŒreporter”NŒindirect_targets”]”Œsubstitution_defs”}”Œsubstitution_names”}”Œrefnames”}”Œrefids”}”Œnameids”}”(jO
  jL
  jN  jK  j/	  j,	  j‹  jˆ  j  j  j£  j   jŒ  j‰  jG  jD  j0  j-  j'	  j$	  jë	  jè	  jG
  jD
  j?
  j<
  uŒ	nametypes”}”(jO
  ‰jN  ‰j/	  ‰j‹  ‰j  ‰j£  ‰jŒ  ‰jG  ‰j0  ‰j'	  ‰jë	  ‰jG
  ‰j?
  ‰uh}”(jL
  hÊjK  hÝj,	  jQ  jˆ  j  j  jŽ  j   j“  j‰  j¦  jD  j  j-  jJ  j$	  j3  jè	  j2	  jD
  jî	  j<
  j
  uŒfootnote_refs”}”Œcitation_refs”}”Œautofootnotes”]”Œautofootnote_refs”]”Œsymbol_footnotes”]”Œsymbol_footnote_refs”]”Œ	footnotes”]”Œ	citations”]”Œautofootnote_start”KŒsymbol_footnote_start”K Œ
id_counter”Œcollections”ŒCounter”“”}”…”R”Œparse_messages”]”Œtransform_messages”]”Œtransformer”NŒinclude_log”]”Œ
decoration”Nh²hub.