€•ˆ¦      Œsphinx.addnodes”Œdocument”“”)”}”(Œ	rawsource”Œ ”Œchildren”]”(Œtranslations”ŒLanguagesNode”“”)”}”(hhh]”(h Œpending_xref”“”)”}”(hhh]”Œdocutils.nodes”ŒText”“”ŒChinese (Simplified)”…””}”Œparent”hsbaŒ
attributes”}”(Œids”]”Œclasses”]”Œnames”]”Œdupnames”]”Œbackrefs”]”Œ	refdomain”Œstd”Œreftype”Œdoc”Œ	reftarget”Œ'/translations/zh_CN/virt/coco/sev-guest”Œmodname”NŒ	classname”NŒrefexplicit”ˆuŒtagname”hhhubh)”}”(hhh]”hŒChinese (Traditional)”…””}”hh2sbah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”h)Œreftype”h+Œ	reftarget”Œ'/translations/zh_TW/virt/coco/sev-guest”Œmodname”NŒ	classname”NŒrefexplicit”ˆuh1hhhubh)”}”(hhh]”hŒItalian”…””}”hhFsbah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”h)Œreftype”h+Œ	reftarget”Œ'/translations/it_IT/virt/coco/sev-guest”Œmodname”NŒ	classname”NŒrefexplicit”ˆuh1hhhubh)”}”(hhh]”hŒJapanese”…””}”hhZsbah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”h)Œreftype”h+Œ	reftarget”Œ'/translations/ja_JP/virt/coco/sev-guest”Œmodname”NŒ	classname”NŒrefexplicit”ˆuh1hhhubh)”}”(hhh]”hŒKorean”…””}”hhnsbah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”h)Œreftype”h+Œ	reftarget”Œ'/translations/ko_KR/virt/coco/sev-guest”Œmodname”NŒ	classname”NŒrefexplicit”ˆuh1hhhubh)”}”(hhh]”hŒSpanish”…””}”hh‚sbah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”h)Œreftype”h+Œ	reftarget”Œ'/translations/sp_SP/virt/coco/sev-guest”Œmodname”NŒ	classname”NŒrefexplicit”ˆuh1hhhubeh}”(h]”h ]”h"]”h$]”h&]”Œcurrent_language”ŒEnglish”uh1h
hhŒ	_document”hŒsource”NŒline”NubhŒcomment”“”)”}”(hŒ SPDX-License-Identifier: GPL-2.0”h]”hŒ SPDX-License-Identifier: GPL-2.0”…””}”hh£sbah}”(h]”h ]”h"]”h$]”h&]”Œ	xml:space”Œpreserve”uh1h¡hhhžhhŸŒA/var/lib/git/docbuild/linux/Documentation/virt/coco/sev-guest.rst”h KubhŒsection”“”)”}”(hhh]”(hŒtitle”“”)”}”(hŒ*The Definitive SEV Guest API Documentation”h]”hŒ*The Definitive SEV Guest API Documentation”…””}”(hh»hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1h¹hh¶hžhhŸh³h Kubhµ)”}”(hhh]”(hº)”}”(hŒ1. General description”h]”hŒ1. General description”…””}”(hhÌhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1h¹hhÉhžhhŸh³h KubhŒ	paragraph”“”)”}”(hŒ®The SEV API is a set of ioctls that are used by the guest or hypervisor
to get or set a certain aspect of the SEV virtual machine. The ioctls belong
to the following classes:”h]”hŒ®The SEV API is a set of ioctls that are used by the guest or hypervisor
to get or set a certain aspect of the SEV virtual machine. The ioctls belong
to the following classes:”…””}”(hhÜhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h K
hhÉhžhubhŒblock_quote”“”)”}”(hŒä- Hypervisor ioctls: These query and set global attributes which affect the
  whole SEV firmware.  These ioctl are used by platform provisioning tools.

- Guest ioctls: These query and set attributes of the SEV virtual machine.
”h]”hŒbullet_list”“”)”}”(hhh]”(hŒ	list_item”“”)”}”(hŒ”Hypervisor ioctls: These query and set global attributes which affect the
whole SEV firmware.  These ioctl are used by platform provisioning tools.
”h]”hÛ)”}”(hŒ“Hypervisor ioctls: These query and set global attributes which affect the
whole SEV firmware.  These ioctl are used by platform provisioning tools.”h]”hŒ“Hypervisor ioctls: These query and set global attributes which affect the
whole SEV firmware.  These ioctl are used by platform provisioning tools.”…””}”(hhûhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h Khh÷ubah}”(h]”h ]”h"]”h$]”h&]”uh1hõhhòubhö)”}”(hŒIGuest ioctls: These query and set attributes of the SEV virtual machine.
”h]”hÛ)”}”(hŒHGuest ioctls: These query and set attributes of the SEV virtual machine.”h]”hŒHGuest ioctls: These query and set attributes of the SEV virtual machine.”…””}”(hj  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h Khj  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hõhhòubeh}”(h]”h ]”h"]”h$]”h&]”Œbullet”Œ-”uh1hðhŸh³h Khhìubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhŸh³h KhhÉhžhubeh}”(h]”Œgeneral-description”ah ]”h"]”Œ1. general description”ah$]”h&]”uh1h´hh¶hžhhŸh³h Kubhµ)”}”(hhh]”(hº)”}”(hŒ2. API description”h]”hŒ2. API description”…””}”(hj@  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1h¹hj=  hžhhŸh³h KubhÛ)”}”(hŒ³This section describes ioctls that is used for querying the SEV guest report
from the SEV firmware. For each ioctl, the following information is provided
along with a description:”h]”hŒ³This section describes ioctls that is used for querying the SEV guest report
from the SEV firmware. For each ioctl, the following information is provided
along with a description:”…””}”(hjN  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h Khj=  hžhubhë)”}”(hXx  Technology:
    which SEV technology provides this ioctl. SEV, SEV-ES, SEV-SNP or all.

Type:
    hypervisor or guest. The ioctl can be used inside the guest or the
    hypervisor.

Parameters:
    what parameters are accepted by the ioctl.

Returns:
    the return value.  General error numbers (-ENOMEM, -EINVAL)
    are not detailed, but errors with specific meanings are.
”h]”hŒdefinition_list”“”)”}”(hhh]”(hŒdefinition_list_item”“”)”}”(hŒSTechnology:
which SEV technology provides this ioctl. SEV, SEV-ES, SEV-SNP or all.
”h]”(hŒterm”“”)”}”(hŒTechnology:”h]”hŒTechnology:”…””}”(hjm  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jk  hŸh³h Khjg  ubhŒ
definition”“”)”}”(hhh]”hÛ)”}”(hŒFwhich SEV technology provides this ioctl. SEV, SEV-ES, SEV-SNP or all.”h]”hŒFwhich SEV technology provides this ioctl. SEV, SEV-ES, SEV-SNP or all.”…””}”(hj€  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h Khj}  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j{  hjg  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1je  hŸh³h Khjb  ubjf  )”}”(hŒUType:
hypervisor or guest. The ioctl can be used inside the guest or the
hypervisor.
”h]”(jl  )”}”(hŒType:”h]”hŒType:”…””}”(hjž  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jk  hŸh³h Khjš  ubj|  )”}”(hhh]”hÛ)”}”(hŒNhypervisor or guest. The ioctl can be used inside the guest or the
hypervisor.”h]”hŒNhypervisor or guest. The ioctl can be used inside the guest or the
hypervisor.”…””}”(hj¯  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h Khj¬  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j{  hjš  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1je  hŸh³h Khjb  ubjf  )”}”(hŒ7Parameters:
what parameters are accepted by the ioctl.
”h]”(jl  )”}”(hŒParameters:”h]”hŒParameters:”…””}”(hjÍ  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jk  hŸh³h K"hjÉ  ubj|  )”}”(hhh]”hÛ)”}”(hŒ*what parameters are accepted by the ioctl.”h]”hŒ*what parameters are accepted by the ioctl.”…””}”(hjÞ  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h K"hjÛ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j{  hjÉ  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1je  hŸh³h K"hjb  ubjf  )”}”(hŒ~Returns:
the return value.  General error numbers (-ENOMEM, -EINVAL)
are not detailed, but errors with specific meanings are.
”h]”(jl  )”}”(hŒReturns:”h]”hŒReturns:”…””}”(hjü  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jk  hŸh³h K&hjø  ubj|  )”}”(hhh]”hÛ)”}”(hŒtthe return value.  General error numbers (-ENOMEM, -EINVAL)
are not detailed, but errors with specific meanings are.”h]”hŒtthe return value.  General error numbers (-ENOMEM, -EINVAL)
are not detailed, but errors with specific meanings are.”…””}”(hj  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h K%hj
  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j{  hjø  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1je  hŸh³h K&hjb  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j`  hj\  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhŸh³h Khj=  hžhubhÛ)”}”(hXi  The guest ioctl should be issued on a file descriptor of the /dev/sev-guest
device.  The ioctl accepts struct snp_user_guest_request. The input and
output structure is specified through the req_data and resp_data field
respectively. If the ioctl fails to execute due to a firmware error, then
the fw_error code will be set, otherwise fw_error will be set to -1.”h]”hXi  The guest ioctl should be issued on a file descriptor of the /dev/sev-guest
device.  The ioctl accepts struct snp_user_guest_request. The input and
output structure is specified through the req_data and resp_data field
respectively. If the ioctl fails to execute due to a firmware error, then
the fw_error code will be set, otherwise fw_error will be set to -1.”…””}”(hj3  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h K(hj=  hžhubhÛ)”}”(hŒÖThe firmware checks that the message sequence counter is one greater than
the guests message sequence counter. If guest driver fails to increment message
counter (e.g. counter overflow), then -EIO will be returned.”h]”hŒÖThe firmware checks that the message sequence counter is one greater than
the guests message sequence counter. If guest driver fails to increment message
counter (e.g. counter overflow), then -EIO will be returned.”…””}”(hjA  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h K.hj=  hžhubhŒliteral_block”“”)”}”(hXÞ  struct snp_guest_request_ioctl {
        /* Message version number */
        __u32 msg_version;

        /* Request and response structure address */
        __u64 req_data;
        __u64 resp_data;

        /* bits[63:32]: VMM error code, bits[31:0] firmware error code (see psp-sev.h) */
        union {
                __u64 exitinfo2;
                struct {
                        __u32 fw_error;
                        __u32 vmm_error;
                };
        };
};”h]”hXÞ  struct snp_guest_request_ioctl {
        /* Message version number */
        __u32 msg_version;

        /* Request and response structure address */
        __u64 req_data;
        __u64 resp_data;

        /* bits[63:32]: VMM error code, bits[31:0] firmware error code (see psp-sev.h) */
        union {
                __u64 exitinfo2;
                struct {
                        __u32 fw_error;
                        __u32 vmm_error;
                };
        };
};”…””}”hjQ  sbah}”(h]”h ]”h"]”h$]”h&]”h±h²uh1jO  hŸh³h K4hj=  hžhubhÛ)”}”(hŒŠThe host ioctls are issued to a file descriptor of the /dev/sev device.
The ioctl accepts the command ID/input structure documented below.”h]”hŒŠThe host ioctls are issued to a file descriptor of the /dev/sev device.
The ioctl accepts the command ID/input structure documented below.”…””}”(hj_  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h KFhj=  hžhubjP  )”}”(hŒÕstruct sev_issue_cmd {
        /* Command ID */
        __u32 cmd;

        /* Command request structure */
        __u64 data;

        /* Firmware error code on failure (see psp-sev.h) */
        __u32 error;
};”h]”hŒÕstruct sev_issue_cmd {
        /* Command ID */
        __u32 cmd;

        /* Command request structure */
        __u64 data;

        /* Firmware error code on failure (see psp-sev.h) */
        __u32 error;
};”…””}”hjm  sbah}”(h]”h ]”h"]”h$]”h&]”h±h²uh1jO  hŸh³h KKhj=  hžhubhµ)”}”(hhh]”(hº)”}”(hŒ2.1 SNP_GET_REPORT”h]”hŒ2.1 SNP_GET_REPORT”…””}”(hj~  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1h¹hj{  hžhhŸh³h KXubhŒ
field_list”“”)”}”(hhh]”(hŒfield”“”)”}”(hhh]”(hŒ
field_name”“”)”}”(hŒ
Technology”h]”hŒ
Technology”…””}”(hj˜  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j–  hj“  hŸh³h K ubhŒ
field_body”“”)”}”(hŒsev-snp”h]”hÛ)”}”(hjª  h]”hŒsev-snp”…””}”(hj¬  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h KZhj¨  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j¦  hj“  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‘  hŸh³h KZhjŽ  hžhubj’  )”}”(hhh]”(j—  )”}”(hŒType”h]”hŒType”…””}”(hjÈ  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j–  hjÅ  hŸh³h K ubj§  )”}”(hŒguest ioctl”h]”hÛ)”}”(hjØ  h]”hŒguest ioctl”…””}”(hjÚ  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h K[hjÖ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j¦  hjÅ  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‘  hŸh³h K[hjŽ  hžhubj’  )”}”(hhh]”(j—  )”}”(hŒParameters (in)”h]”hŒParameters (in)”…””}”(hjö  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j–  hjó  hŸh³h K ubj§  )”}”(hŒstruct snp_report_req”h]”hÛ)”}”(hj  h]”hŒstruct snp_report_req”…””}”(hj  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h K\hj  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j¦  hjó  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‘  hŸh³h K\hjŽ  hžhubj’  )”}”(hhh]”(j—  )”}”(hŒReturns (out)”h]”hŒReturns (out)”…””}”(hj$  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j–  hj!  hŸh³h K ubj§  )”}”(hŒ6struct snp_report_resp on success, -negative on error
”h]”hÛ)”}”(hŒ5struct snp_report_resp on success, -negative on error”h]”hŒ5struct snp_report_resp on success, -negative on error”…””}”(hj6  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h K]hj2  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j¦  hj!  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‘  hŸh³h K]hjŽ  hžhubeh}”(h]”h ]”h"]”h$]”h&]”uh1jŒ  hj{  hžhhŸh³h KZubhÛ)”}”(hŒßThe SNP_GET_REPORT ioctl can be used to query the attestation report from the
SEV-SNP firmware. The ioctl uses the SNP_GUEST_REQUEST (MSG_REPORT_REQ) command
provided by the SEV-SNP firmware to query the attestation report.”h]”hŒßThe SNP_GET_REPORT ioctl can be used to query the attestation report from the
SEV-SNP firmware. The ioctl uses the SNP_GUEST_REQUEST (MSG_REPORT_REQ) command
provided by the SEV-SNP firmware to query the attestation report.”…””}”(hjV  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h K_hj{  hžhubhÛ)”}”(hŒ·On success, the snp_report_resp.data will contains the report. The report
contain the format described in the SEV-SNP specification. See the SEV-SNP
specification for further details.”h]”hŒ·On success, the snp_report_resp.data will contains the report. The report
contain the format described in the SEV-SNP specification. See the SEV-SNP
specification for further details.”…””}”(hjd  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h Kchj{  hžhubeh}”(h]”Œsnp-get-report”ah ]”h"]”Œ2.1 snp_get_report”ah$]”h&]”uh1h´hj=  hžhhŸh³h KXubhµ)”}”(hhh]”(hº)”}”(hŒ2.2 SNP_GET_DERIVED_KEY”h]”hŒ2.2 SNP_GET_DERIVED_KEY”…””}”(hj}  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1h¹hjz  hžhhŸh³h Khubj  )”}”(hhh]”(j’  )”}”(hhh]”(j—  )”}”(hŒ
Technology”h]”hŒ
Technology”…””}”(hj‘  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j–  hjŽ  hŸh³h K ubj§  )”}”(hŒsev-snp”h]”hÛ)”}”(hj¡  h]”hŒsev-snp”…””}”(hj£  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h KihjŸ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j¦  hjŽ  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‘  hŸh³h Kihj‹  hžhubj’  )”}”(hhh]”(j—  )”}”(hŒType”h]”hŒType”…””}”(hj¿  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j–  hj¼  hŸh³h K ubj§  )”}”(hŒguest ioctl”h]”hÛ)”}”(hjÏ  h]”hŒguest ioctl”…””}”(hjÑ  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h KjhjÍ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j¦  hj¼  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‘  hŸh³h Kjhj‹  hžhubj’  )”}”(hhh]”(j—  )”}”(hŒParameters (in)”h]”hŒParameters (in)”…””}”(hjí  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j–  hjê  hŸh³h K ubj§  )”}”(hŒstruct snp_derived_key_req”h]”hÛ)”}”(hjý  h]”hŒstruct snp_derived_key_req”…””}”(hjÿ  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h Kkhjû  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j¦  hjê  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‘  hŸh³h Kkhj‹  hžhubj’  )”}”(hhh]”(j—  )”}”(hŒReturns (out)”h]”hŒReturns (out)”…””}”(hj  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j–  hj  hŸh³h K ubj§  )”}”(hŒ;struct snp_derived_key_resp on success, -negative on error
”h]”hÛ)”}”(hŒ:struct snp_derived_key_resp on success, -negative on error”h]”hŒ:struct snp_derived_key_resp on success, -negative on error”…””}”(hj-  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h Klhj)  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j¦  hj  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‘  hŸh³h Klhj‹  hžhubeh}”(h]”h ]”h"]”h$]”h&]”uh1jŒ  hjz  hžhhŸh³h KiubhÛ)”}”(hŒÆThe SNP_GET_DERIVED_KEY ioctl can be used to get a key derive from a root key.
The derived key can be used by the guest for any purpose, such as sealing keys
or communicating with external entities.”h]”hŒÆThe SNP_GET_DERIVED_KEY ioctl can be used to get a key derive from a root key.
The derived key can be used by the guest for any purpose, such as sealing keys
or communicating with external entities.”…””}”(hjM  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h Knhjz  hžhubhÛ)”}”(hŒØThe ioctl uses the SNP_GUEST_REQUEST (MSG_KEY_REQ) command provided by the
SEV-SNP firmware to derive the key. See SEV-SNP specification for further details
on the various fields passed in the key derivation request.”h]”hŒØThe ioctl uses the SNP_GUEST_REQUEST (MSG_KEY_REQ) command provided by the
SEV-SNP firmware to derive the key. See SEV-SNP specification for further details
on the various fields passed in the key derivation request.”…””}”(hj[  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h Krhjz  hžhubhÛ)”}”(hŒ|On success, the snp_derived_key_resp.data contains the derived key value. See
the SEV-SNP specification for further details.”h]”hŒ|On success, the snp_derived_key_resp.data contains the derived key value. See
the SEV-SNP specification for further details.”…””}”(hji  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h Kvhjz  hžhubeh}”(h]”Œsnp-get-derived-key”ah ]”h"]”Œ2.2 snp_get_derived_key”ah$]”h&]”uh1h´hj=  hžhhŸh³h Khubhµ)”}”(hhh]”(hº)”}”(hŒ2.3 SNP_GET_EXT_REPORT”h]”hŒ2.3 SNP_GET_EXT_REPORT”…””}”(hj‚  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1h¹hj  hžhhŸh³h K{ubj  )”}”(hhh]”(j’  )”}”(hhh]”(j—  )”}”(hŒ
Technology”h]”hŒ
Technology”…””}”(hj–  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j–  hj“  hŸh³h K ubj§  )”}”(hŒsev-snp”h]”hÛ)”}”(hj¦  h]”hŒsev-snp”…””}”(hj¨  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h K|hj¤  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j¦  hj“  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‘  hŸh³h K|hj  hžhubj’  )”}”(hhh]”(j—  )”}”(hŒType”h]”hŒType”…””}”(hjÄ  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j–  hjÁ  hŸh³h K ubj§  )”}”(hŒguest ioctl”h]”hÛ)”}”(hjÔ  h]”hŒguest ioctl”…””}”(hjÖ  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h K}hjÒ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j¦  hjÁ  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‘  hŸh³h K}hj  hžhubj’  )”}”(hhh]”(j—  )”}”(hŒParameters (in/out)”h]”hŒParameters (in/out)”…””}”(hjò  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j–  hjï  hŸh³h K ubj§  )”}”(hŒstruct snp_ext_report_req”h]”hÛ)”}”(hj  h]”hŒstruct snp_ext_report_req”…””}”(hj  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h K~hj   ubah}”(h]”h ]”h"]”h$]”h&]”uh1j¦  hjï  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‘  hŸh³h K~hj  hžhubj’  )”}”(hhh]”(j—  )”}”(hŒReturns (out)”h]”hŒReturns (out)”…””}”(hj   hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j–  hj  hŸh³h K ubj§  )”}”(hŒ6struct snp_report_resp on success, -negative on error
”h]”hÛ)”}”(hŒ5struct snp_report_resp on success, -negative on error”h]”hŒ5struct snp_report_resp on success, -negative on error”…””}”(hj2  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h Khj.  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j¦  hj  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‘  hŸh³h Khj  hžhubeh}”(h]”h ]”h"]”h$]”h&]”uh1jŒ  hj  hžhhŸh³h K|ubhÛ)”}”(hŒÿThe SNP_GET_EXT_REPORT ioctl is similar to the SNP_GET_REPORT. The difference is
related to the additional certificate data that is returned with the report.
The certificate data returned is being provided by the hypervisor through the
SNP_SET_EXT_CONFIG.”h]”hŒÿThe SNP_GET_EXT_REPORT ioctl is similar to the SNP_GET_REPORT. The difference is
related to the additional certificate data that is returned with the report.
The certificate data returned is being provided by the hypervisor through the
SNP_SET_EXT_CONFIG.”…””}”(hjR  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h Khj  hžhubhÛ)”}”(hŒ}The ioctl uses the SNP_GUEST_REQUEST (MSG_REPORT_REQ) command provided by the SEV-SNP
firmware to get the attestation report.”h]”hŒ}The ioctl uses the SNP_GUEST_REQUEST (MSG_REPORT_REQ) command provided by the SEV-SNP
firmware to get the attestation report.”…””}”(hj`  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h K†hj  hžhubhÛ)”}”(hX  On success, the snp_ext_report_resp.data will contain the attestation report
and snp_ext_report_req.certs_address will contain the certificate blob. If the
length of the blob is smaller than expected then snp_ext_report_req.certs_len will
be updated with the expected value.”h]”hX  On success, the snp_ext_report_resp.data will contain the attestation report
and snp_ext_report_req.certs_address will contain the certificate blob. If the
length of the blob is smaller than expected then snp_ext_report_req.certs_len will
be updated with the expected value.”…””}”(hjn  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h K‰hj  hžhubhÛ)”}”(hŒOSee GHCB specification for further detail on how to parse the certificate blob.”h]”hŒOSee GHCB specification for further detail on how to parse the certificate blob.”…””}”(hj|  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h KŽhj  hžhubeh}”(h]”Œsnp-get-ext-report”ah ]”h"]”Œ2.3 snp_get_ext_report”ah$]”h&]”uh1h´hj=  hžhhŸh³h K{ubhµ)”}”(hhh]”(hº)”}”(hŒ2.4 SNP_PLATFORM_STATUS”h]”hŒ2.4 SNP_PLATFORM_STATUS”…””}”(hj•  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1h¹hj’  hžhhŸh³h K‘ubj  )”}”(hhh]”(j’  )”}”(hhh]”(j—  )”}”(hŒ
Technology”h]”hŒ
Technology”…””}”(hj©  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j–  hj¦  hŸh³h K ubj§  )”}”(hŒsev-snp”h]”hÛ)”}”(hj¹  h]”hŒsev-snp”…””}”(hj»  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h K’hj·  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j¦  hj¦  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‘  hŸh³h K’hj£  hžhubj’  )”}”(hhh]”(j—  )”}”(hŒType”h]”hŒType”…””}”(hj×  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j–  hjÔ  hŸh³h K ubj§  )”}”(hŒhypervisor ioctl cmd”h]”hÛ)”}”(hjç  h]”hŒhypervisor ioctl cmd”…””}”(hjé  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h K“hjå  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j¦  hjÔ  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‘  hŸh³h K“hj£  hžhubj’  )”}”(hhh]”(j—  )”}”(hŒParameters (out)”h]”hŒParameters (out)”…””}”(hj  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j–  hj  hŸh³h K ubj§  )”}”(hŒstruct sev_user_data_snp_status”h]”hÛ)”}”(hj  h]”hŒstruct sev_user_data_snp_status”…””}”(hj  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h K”hj  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j¦  hj  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‘  hŸh³h K”hj£  hžhubj’  )”}”(hhh]”(j—  )”}”(hŒReturns (out)”h]”hŒReturns (out)”…””}”(hj3  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j–  hj0  hŸh³h K ubj§  )”}”(hŒ!0 on success, -negative on error
”h]”hÛ)”}”(hŒ 0 on success, -negative on error”h]”hŒ 0 on success, -negative on error”…””}”(hjE  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h K•hjA  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j¦  hj0  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‘  hŸh³h K•hj£  hžhubeh}”(h]”h ]”h"]”h$]”h&]”uh1jŒ  hj’  hžhhŸh³h K’ubhÛ)”}”(hŒ³The SNP_PLATFORM_STATUS command is used to query the SNP platform status. The
status includes API major, minor version and more. See the SEV-SNP
specification for further details.”h]”hŒ³The SNP_PLATFORM_STATUS command is used to query the SNP platform status. The
status includes API major, minor version and more. See the SEV-SNP
specification for further details.”…””}”(hje  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h K—hj’  hžhubeh}”(h]”Œsnp-platform-status”ah ]”h"]”Œ2.4 snp_platform_status”ah$]”h&]”uh1h´hj=  hžhhŸh³h K‘ubhµ)”}”(hhh]”(hº)”}”(hŒ2.5 SNP_COMMIT”h]”hŒ2.5 SNP_COMMIT”…””}”(hj~  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1h¹hj{  hžhhŸh³h Kœubj  )”}”(hhh]”(j’  )”}”(hhh]”(j—  )”}”(hŒ
Technology”h]”hŒ
Technology”…””}”(hj’  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j–  hj  hŸh³h K ubj§  )”}”(hŒsev-snp”h]”hÛ)”}”(hj¢  h]”hŒsev-snp”…””}”(hj¤  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h Khj   ubah}”(h]”h ]”h"]”h$]”h&]”uh1j¦  hj  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‘  hŸh³h KhjŒ  hžhubj’  )”}”(hhh]”(j—  )”}”(hŒType”h]”hŒType”…””}”(hjÀ  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j–  hj½  hŸh³h K ubj§  )”}”(hŒhypervisor ioctl cmd”h]”hÛ)”}”(hjÐ  h]”hŒhypervisor ioctl cmd”…””}”(hjÒ  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h KžhjÎ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j¦  hj½  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‘  hŸh³h KžhjŒ  hžhubj’  )”}”(hhh]”(j—  )”}”(hŒReturns (out)”h]”hŒReturns (out)”…””}”(hjî  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j–  hjë  hŸh³h K ubj§  )”}”(hŒ!0 on success, -negative on error
”h]”hÛ)”}”(hŒ 0 on success, -negative on error”h]”hŒ 0 on success, -negative on error”…””}”(hj   hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h KŸhjü  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j¦  hjë  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‘  hŸh³h KŸhjŒ  hžhubeh}”(h]”h ]”h"]”h$]”h&]”uh1jŒ  hj{  hžhhŸh³h KubhÛ)”}”(hX
  SNP_COMMIT is used to commit the currently installed firmware using the
SEV-SNP firmware SNP_COMMIT command. This prevents roll-back to a previously
committed firmware version. This will also update the reported TCB to match
that of the currently installed firmware.”h]”hX
  SNP_COMMIT is used to commit the currently installed firmware using the
SEV-SNP firmware SNP_COMMIT command. This prevents roll-back to a previously
committed firmware version. This will also update the reported TCB to match
that of the currently installed firmware.”…””}”(hj   hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h K¡hj{  hžhubeh}”(h]”Œ
snp-commit”ah ]”h"]”Œ2.5 snp_commit”ah$]”h&]”uh1h´hj=  hžhhŸh³h Kœubhµ)”}”(hhh]”(hº)”}”(hŒ2.6 SNP_SET_CONFIG”h]”hŒ2.6 SNP_SET_CONFIG”…””}”(hj9  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1h¹hj6  hžhhŸh³h K§ubj  )”}”(hhh]”(j’  )”}”(hhh]”(j—  )”}”(hŒ
Technology”h]”hŒ
Technology”…””}”(hjM  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j–  hjJ  hŸh³h K ubj§  )”}”(hŒsev-snp”h]”hÛ)”}”(hj]  h]”hŒsev-snp”…””}”(hj_  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h K¨hj[  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j¦  hjJ  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‘  hŸh³h K¨hjG  hžhubj’  )”}”(hhh]”(j—  )”}”(hŒType”h]”hŒType”…””}”(hj{  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j–  hjx  hŸh³h K ubj§  )”}”(hŒhypervisor ioctl cmd”h]”hÛ)”}”(hj‹  h]”hŒhypervisor ioctl cmd”…””}”(hj  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h K©hj‰  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j¦  hjx  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‘  hŸh³h K©hjG  hžhubj’  )”}”(hhh]”(j—  )”}”(hŒParameters (in)”h]”hŒParameters (in)”…””}”(hj©  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j–  hj¦  hŸh³h K ubj§  )”}”(hŒstruct sev_user_data_snp_config”h]”hÛ)”}”(hj¹  h]”hŒstruct sev_user_data_snp_config”…””}”(hj»  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h Kªhj·  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j¦  hj¦  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‘  hŸh³h KªhjG  hžhubj’  )”}”(hhh]”(j—  )”}”(hŒReturns (out)”h]”hŒReturns (out)”…””}”(hj×  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j–  hjÔ  hŸh³h K ubj§  )”}”(hŒ!0 on success, -negative on error
”h]”hÛ)”}”(hŒ 0 on success, -negative on error”h]”hŒ 0 on success, -negative on error”…””}”(hjé  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h K«hjå  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j¦  hjÔ  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‘  hŸh³h K«hjG  hžhubeh}”(h]”h ]”h"]”h$]”h&]”uh1jŒ  hj6  hžhhŸh³h K¨ubhÛ)”}”(hX,  SNP_SET_CONFIG is used to set the system-wide configuration such as
reported TCB version in the attestation report. The command is similar
to SNP_CONFIG command defined in the SEV-SNP spec. The current values of
the firmware parameters affected by this command can be queried via
SNP_PLATFORM_STATUS.”h]”hX,  SNP_SET_CONFIG is used to set the system-wide configuration such as
reported TCB version in the attestation report. The command is similar
to SNP_CONFIG command defined in the SEV-SNP spec. The current values of
the firmware parameters affected by this command can be queried via
SNP_PLATFORM_STATUS.”…””}”(hj	  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h K­hj6  hžhubeh}”(h]”Œsnp-set-config”ah ]”h"]”Œ2.6 snp_set_config”ah$]”h&]”uh1h´hj=  hžhhŸh³h K§ubhµ)”}”(hhh]”(hº)”}”(hŒ2.7 SNP_VLEK_LOAD”h]”hŒ2.7 SNP_VLEK_LOAD”…””}”(hj"  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1h¹hj  hžhhŸh³h K´ubj  )”}”(hhh]”(j’  )”}”(hhh]”(j—  )”}”(hŒ
Technology”h]”hŒ
Technology”…””}”(hj6  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j–  hj3  hŸh³h K ubj§  )”}”(hŒsev-snp”h]”hÛ)”}”(hjF  h]”hŒsev-snp”…””}”(hjH  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h KµhjD  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j¦  hj3  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‘  hŸh³h Kµhj0  hžhubj’  )”}”(hhh]”(j—  )”}”(hŒType”h]”hŒType”…””}”(hjd  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j–  hja  hŸh³h K ubj§  )”}”(hŒhypervisor ioctl cmd”h]”hÛ)”}”(hjt  h]”hŒhypervisor ioctl cmd”…””}”(hjv  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h K¶hjr  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j¦  hja  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‘  hŸh³h K¶hj0  hžhubj’  )”}”(hhh]”(j—  )”}”(hŒParameters (in)”h]”hŒParameters (in)”…””}”(hj’  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j–  hj  hŸh³h K ubj§  )”}”(hŒ"struct sev_user_data_snp_vlek_load”h]”hÛ)”}”(hj¢  h]”hŒ"struct sev_user_data_snp_vlek_load”…””}”(hj¤  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h K·hj   ubah}”(h]”h ]”h"]”h$]”h&]”uh1j¦  hj  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‘  hŸh³h K·hj0  hžhubj’  )”}”(hhh]”(j—  )”}”(hŒReturns (out)”h]”hŒReturns (out)”…””}”(hjÀ  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j–  hj½  hŸh³h K ubj§  )”}”(hŒ!0 on success, -negative on error
”h]”hÛ)”}”(hŒ 0 on success, -negative on error”h]”hŒ 0 on success, -negative on error”…””}”(hjÒ  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h K¸hjÎ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j¦  hj½  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‘  hŸh³h K¸hj0  hžhubeh}”(h]”h ]”h"]”h$]”h&]”uh1jŒ  hj  hžhhŸh³h KµubhÛ)”}”(hX€  When requesting an attestation report a guest is able to specify whether
it wants SNP firmware to sign the report using either a Versioned Chip
Endorsement Key (VCEK), which is derived from chip-unique secrets, or a
Versioned Loaded Endorsement Key (VLEK) which is obtained from an AMD
Key Derivation Service (KDS) and derived from seeds allocated to
enrolled cloud service providers.”h]”hX€  When requesting an attestation report a guest is able to specify whether
it wants SNP firmware to sign the report using either a Versioned Chip
Endorsement Key (VCEK), which is derived from chip-unique secrets, or a
Versioned Loaded Endorsement Key (VLEK) which is obtained from an AMD
Key Derivation Service (KDS) and derived from seeds allocated to
enrolled cloud service providers.”…””}”(hjò  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h Kºhj  hžhubhÛ)”}”(hŒÜIn the case of VLEK keys, the SNP_VLEK_LOAD SNP command is used to load
them into the system after obtaining them from the KDS, and corresponds
closely to the SNP_VLEK_LOAD firmware command specified in the SEV-SNP
spec.”h]”hŒÜIn the case of VLEK keys, the SNP_VLEK_LOAD SNP command is used to load
them into the system after obtaining them from the KDS, and corresponds
closely to the SNP_VLEK_LOAD firmware command specified in the SEV-SNP
spec.”…””}”(hj 	  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h KÁhj  hžhubeh}”(h]”Œsnp-vlek-load”ah ]”h"]”Œ2.7 snp_vlek_load”ah$]”h&]”uh1h´hj=  hžhhŸh³h K´ubeh}”(h]”Œapi-description”ah ]”h"]”Œ2. api description”ah$]”h&]”uh1h´hh¶hžhhŸh³h Kubhµ)”}”(hhh]”(hº)”}”(hŒ3. SEV-SNP CPUID Enforcement”h]”hŒ3. SEV-SNP CPUID Enforcement”…””}”(hj!	  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1h¹hj	  hžhhŸh³h KÇubhÛ)”}”(hŒòSEV-SNP guests can access a special page that contains a table of CPUID values
that have been validated by the PSP as part of the SNP_LAUNCH_UPDATE firmware
command. It provides the following assurances regarding the validity of CPUID
values:”h]”hŒòSEV-SNP guests can access a special page that contains a table of CPUID values
that have been validated by the PSP as part of the SNP_LAUNCH_UPDATE firmware
command. It provides the following assurances regarding the validity of CPUID
values:”…””}”(hj/	  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h KÉhj	  hžhubhë)”}”(hX™  - Its address is obtained via bootloader/firmware (via CC blob), and those
  binaries will be measured as part of the SEV-SNP attestation report.
- Its initial state will be encrypted/pvalidated, so attempts to modify
  it during run-time will result in garbage being written, or #VC exceptions
  being generated due to changes in validation state if the hypervisor tries
  to swap the backing page.
- Attempts to bypass PSP checks by the hypervisor by using a normal page, or
  a non-CPUID encrypted page will change the measurement provided by the
  SEV-SNP attestation report.
- The CPUID page contents are *not* measured, but attempts to modify the
  expected contents of a CPUID page as part of guest initialization will be
  gated by the PSP CPUID enforcement policy checks performed on the page
  during SNP_LAUNCH_UPDATE, and noticeable later if the guest owner
  implements their own checks of the CPUID values.
”h]”hñ)”}”(hhh]”(hö)”}”(hŒIts address is obtained via bootloader/firmware (via CC blob), and those
binaries will be measured as part of the SEV-SNP attestation report.”h]”hÛ)”}”(hŒIts address is obtained via bootloader/firmware (via CC blob), and those
binaries will be measured as part of the SEV-SNP attestation report.”h]”hŒIts address is obtained via bootloader/firmware (via CC blob), and those
binaries will be measured as part of the SEV-SNP attestation report.”…””}”(hjH	  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h KÎhjD	  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hõhjA	  ubhö)”}”(hŒõIts initial state will be encrypted/pvalidated, so attempts to modify
it during run-time will result in garbage being written, or #VC exceptions
being generated due to changes in validation state if the hypervisor tries
to swap the backing page.”h]”hÛ)”}”(hŒõIts initial state will be encrypted/pvalidated, so attempts to modify
it during run-time will result in garbage being written, or #VC exceptions
being generated due to changes in validation state if the hypervisor tries
to swap the backing page.”h]”hŒõIts initial state will be encrypted/pvalidated, so attempts to modify
it during run-time will result in garbage being written, or #VC exceptions
being generated due to changes in validation state if the hypervisor tries
to swap the backing page.”…””}”(hj`	  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h KÐhj\	  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hõhjA	  ubhö)”}”(hŒ­Attempts to bypass PSP checks by the hypervisor by using a normal page, or
a non-CPUID encrypted page will change the measurement provided by the
SEV-SNP attestation report.”h]”hÛ)”}”(hŒ­Attempts to bypass PSP checks by the hypervisor by using a normal page, or
a non-CPUID encrypted page will change the measurement provided by the
SEV-SNP attestation report.”h]”hŒ­Attempts to bypass PSP checks by the hypervisor by using a normal page, or
a non-CPUID encrypted page will change the measurement provided by the
SEV-SNP attestation report.”…””}”(hjx	  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h KÔhjt	  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hõhjA	  ubhö)”}”(hXK  The CPUID page contents are *not* measured, but attempts to modify the
expected contents of a CPUID page as part of guest initialization will be
gated by the PSP CPUID enforcement policy checks performed on the page
during SNP_LAUNCH_UPDATE, and noticeable later if the guest owner
implements their own checks of the CPUID values.
”h]”hÛ)”}”(hXJ  The CPUID page contents are *not* measured, but attempts to modify the
expected contents of a CPUID page as part of guest initialization will be
gated by the PSP CPUID enforcement policy checks performed on the page
during SNP_LAUNCH_UPDATE, and noticeable later if the guest owner
implements their own checks of the CPUID values.”h]”(hŒThe CPUID page contents are ”…””}”(hj	  hžhhŸNh NubhŒemphasis”“”)”}”(hŒ*not*”h]”hŒnot”…””}”(hjš	  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j˜	  hj	  ubhX)   measured, but attempts to modify the
expected contents of a CPUID page as part of guest initialization will be
gated by the PSP CPUID enforcement policy checks performed on the page
during SNP_LAUNCH_UPDATE, and noticeable later if the guest owner
implements their own checks of the CPUID values.”…””}”(hj	  hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h K×hjŒ	  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hõhjA	  ubeh}”(h]”h ]”h"]”h$]”h&]”j-  j.  uh1hðhŸh³h KÎhj=	  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hêhŸh³h KÎhj	  hžhubhÛ)”}”(hX  It is important to note that this last assurance is only useful if the kernel
has taken care to make use of the SEV-SNP CPUID throughout all stages of boot.
Otherwise, guest owner attestation provides no assurance that the kernel wasn't
fed incorrect values at some point during boot.”h]”hX  It is important to note that this last assurance is only useful if the kernel
has taken care to make use of the SEV-SNP CPUID throughout all stages of boot.
Otherwise, guest owner attestation provides no assurance that the kernel wasnâ€™t
fed incorrect values at some point during boot.”…””}”(hjÄ	  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h KÝhj	  hžhubeh}”(h]”Œsev-snp-cpuid-enforcement”ah ]”h"]”Œ3. sev-snp cpuid enforcement”ah$]”h&]”uh1h´hh¶hžhhŸh³h KÇubhµ)”}”(hhh]”(hº)”}”(hŒ%4. SEV Guest Driver Communication Key”h]”hŒ%4. SEV Guest Driver Communication Key”…””}”(hjÝ	  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1h¹hjÚ	  hžhhŸh³h KãubhÛ)”}”(hX  Communication between an SEV guest and the SEV firmware in the AMD Secure
Processor (ASP, aka PSP) is protected by a VM Platform Communication Key
(VMPCK). By default, the sev-guest driver uses the VMPCK associated with the
VM Privilege Level (VMPL) at which the guest is running. Should this key be
wiped by the sev-guest driver (see the driver for reasons why a VMPCK can be
wiped), a different key can be used by reloading the sev-guest driver and
specifying the desired key using the vmpck_id module parameter.”h]”hX  Communication between an SEV guest and the SEV firmware in the AMD Secure
Processor (ASP, aka PSP) is protected by a VM Platform Communication Key
(VMPCK). By default, the sev-guest driver uses the VMPCK associated with the
VM Privilege Level (VMPL) at which the guest is running. Should this key be
wiped by the sev-guest driver (see the driver for reasons why a VMPCK can be
wiped), a different key can be used by reloading the sev-guest driver and
specifying the desired key using the vmpck_id module parameter.”…””}”(hjë	  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h KåhjÚ	  hžhubhµ)”}”(hhh]”(hº)”}”(hŒ	Reference”h]”hŒ	Reference”…””}”(hjü	  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1h¹hjù	  hžhhŸh³h KïubhÛ)”}”(hŒ5SEV-SNP and GHCB specification: developer.amd.com/sev”h]”hŒ5SEV-SNP and GHCB specification: developer.amd.com/sev”…””}”(hj

  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h Kñhjù	  hžhubhÛ)”}”(hŒKThe driver is based on SEV-SNP firmware spec 0.9 and GHCB spec version 2.0.”h]”hŒKThe driver is based on SEV-SNP firmware spec 0.9 and GHCB spec version 2.0.”…””}”(hj
  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÚhŸh³h Kóhjù	  hžhubeh}”(h]”Œ	reference”ah ]”h"]”Œ	reference”ah$]”h&]”uh1h´hjÚ	  hžhhŸh³h Kïubeh}”(h]”Œ"sev-guest-driver-communication-key”ah ]”h"]”Œ%4. sev guest driver communication key”ah$]”h&]”uh1h´hh¶hžhhŸh³h Kãubeh}”(h]”Œ*the-definitive-sev-guest-api-documentation”ah ]”h"]”Œ*the definitive sev guest api documentation”ah$]”h&]”uh1h´hhhžhhŸh³h Kubeh}”(h]”h ]”h"]”h$]”h&]”Œsource”h³uh1hŒcurrent_source”NŒcurrent_line”NŒsettings”Œdocutils.frontend”ŒValues”“”)”}”(h¹NŒ	generator”NŒ	datestamp”NŒsource_link”NŒ
source_url”NŒtoc_backlinks”Œentry”Œfootnote_backlinks”KŒsectnum_xform”KŒstrip_comments”NŒstrip_elements_with_classes”NŒstrip_classes”NŒreport_level”KŒ
halt_level”KŒexit_status_level”KŒdebug”NŒwarning_stream”NŒ	traceback”ˆŒinput_encoding”Œ	utf-8-sig”Œinput_encoding_error_handler”Œstrict”Œoutput_encoding”Œutf-8”Œoutput_encoding_error_handler”ja
  Œerror_encoding”Œutf-8”Œerror_encoding_error_handler”Œbackslashreplace”Œlanguage_code”Œen”Œrecord_dependencies”NŒconfig”NŒ	id_prefix”hŒauto_id_prefix”Œid”Œdump_settings”NŒdump_internals”NŒdump_transforms”NŒdump_pseudo_xml”NŒexpose_internals”NŒstrict_visitor”NŒ_disable_config”NŒ_source”h³Œ_destination”NŒ_config_files”]”Œ7/var/lib/git/docbuild/linux/Documentation/docutils.conf”aŒfile_insertion_enabled”ˆŒraw_enabled”KŒline_length_limit”M'Œpep_references”NŒpep_base_url”Œhttps://peps.python.org/”Œpep_file_url_template”Œpep-%04d”Œrfc_references”NŒrfc_base_url”Œ&https://datatracker.ietf.org/doc/html/”Œ	tab_width”KŒtrim_footnote_reference_space”‰Œsyntax_highlight”Œlong”Œsmart_quotes”ˆŒsmartquotes_locales”]”Œcharacter_level_inline_markup”‰Œdoctitle_xform”‰Œdocinfo_xform”KŒsectsubtitle_xform”‰Œimage_loading”Œlink”Œembed_stylesheet”‰Œcloak_email_addresses”ˆŒsection_self_link”‰Œenv”NubŒreporter”NŒindirect_targets”]”Œsubstitution_defs”}”Œsubstitution_names”}”Œrefnames”}”Œrefids”}”Œnameids”}”(j;
  j8
  j:  j7  j	  j	  jw  jt  j|  jy  j  jŒ  jx  ju  j3  j0  j  j  j	  j	  j×	  jÔ	  j3
  j0
  j+
  j(
  uŒ	nametypes”}”(j;
  ‰j:  ‰j	  ‰jw  ‰j|  ‰j  ‰jx  ‰j3  ‰j  ‰j	  ‰j×	  ‰j3
  ‰j+
  ‰uh}”(j8
  h¶j7  hÉj	  j=  jt  j{  jy  jz  jŒ  j  ju  j’  j0  j{  j  j6  j	  j  jÔ	  j	  j0
  jÚ	  j(
  jù	  uŒfootnote_refs”}”Œcitation_refs”}”Œautofootnotes”]”Œautofootnote_refs”]”Œsymbol_footnotes”]”Œsymbol_footnote_refs”]”Œ	footnotes”]”Œ	citations”]”Œautofootnote_start”KŒsymbol_footnote_start”K Œ
id_counter”Œcollections”ŒCounter”“”}”…”R”Œparse_messages”]”Œtransform_messages”]”Œtransformer”NŒinclude_log”]”Œ
decoration”Nhžhub.