OvmfPkg/MemEncryptSevLib: add MemEncryptSevSnpEnabled()

author Brijesh Singh <brijesh.singh@amd.com>

Thu, 9 Dec 2021 03:27:37 +0000 (11:27 +0800)

committer mergify[bot] <37929162+mergify[bot]@users.noreply.github.com>

Thu, 9 Dec 2021 06:28:10 +0000 (06:28 +0000)
author Brijesh Singh <brijesh.singh@amd.com>
Thu, 9 Dec 2021 03:27:37 +0000 (11:27 +0800)
committer mergify[bot] <37929162+mergify[bot]@users.noreply.github.com>
Thu, 9 Dec 2021 06:28:10 +0000 (06:28 +0000)
diff --git a/OvmfPkg/Include/Library/MemEncryptSevLib.h b/OvmfPkg/Include/Library/MemEncryptSevLib.h

index e1ec161d21593db68b2a5818d3ffe0ecaf26da28..3c77d71df754c9605c77500f34da3e87fbba8156 100644 (file)
--- a/OvmfPkg/Include/Library/MemEncryptSevLib.h
+++ b/OvmfPkg/Include/Library/MemEncryptSevLib.h
@@ -47,6 +47,18 @@ typedef enum {
    MemEncryptSevAddressRangeError,\r
  } MEM_ENCRYPT_SEV_ADDRESS_RANGE_STATE;\r
  \r
+/**\r
+  Returns a boolean to indicate whether SEV-SNP is enabled\r
+\r
+  @retval TRUE           SEV-SNP is enabled\r
+  @retval FALSE          SEV-SNP is not enabled\r
+**/\r
+BOOLEAN\r
+EFIAPI\r
+MemEncryptSevSnpIsEnabled (\r
+  VOID\r
+  );\r
+\r
  /**\r
    Returns a boolean to indicate whether SEV-ES is enabled.\r
  \r
diff --git a/OvmfPkg/Library/BaseMemEncryptSevLib/DxeMemEncryptSevLibInternal.c b/OvmfPkg/Library/BaseMemEncryptSevLib/DxeMemEncryptSevLibInternal.c

index 4fee7b2ab34556b2f849d4f171d7a465f21617c2..15fcd5529587ca9f6a31afac2bde3c1d04541fef 100644 (file)
--- a/OvmfPkg/Library/BaseMemEncryptSevLib/DxeMemEncryptSevLibInternal.c
+++ b/OvmfPkg/Library/BaseMemEncryptSevLib/DxeMemEncryptSevLibInternal.c
@@ -19,6 +19,7 @@
  \r
  STATIC BOOLEAN  mSevStatus        = FALSE;\r
  STATIC BOOLEAN  mSevEsStatus      = FALSE;\r
+STATIC BOOLEAN  mSevSnpStatus     = FALSE;\r
  STATIC BOOLEAN  mSevStatusChecked = FALSE;\r
  \r
  STATIC UINT64   mSevEncryptionMask      = 0;\r
@@ -82,11 +83,37 @@ InternalMemEncryptSevStatus (
      if (Msr.Bits.SevEsBit) {\r
        mSevEsStatus = TRUE;\r
      }\r
+\r
+    //\r
+    // Check MSR_0xC0010131 Bit 2 (Sev-Snp Enabled)\r
+    //\r
+    if (Msr.Bits.SevSnpBit) {\r
+      mSevSnpStatus = TRUE;\r
+    }\r
    }\r
  \r
    mSevStatusChecked = TRUE;\r
  }\r
  \r
+/**\r
+  Returns a boolean to indicate whether SEV-SNP is enabled.\r
+\r
+  @retval TRUE           SEV-SNP is enabled\r
+  @retval FALSE          SEV-SNP is not enabled\r
+**/\r
+BOOLEAN\r
+EFIAPI\r
+MemEncryptSevSnpIsEnabled (\r
+  VOID\r
+  )\r
+{\r
+  if (!mSevStatusChecked) {\r
+    InternalMemEncryptSevStatus ();\r
+  }\r
+\r
+  return mSevSnpStatus;\r
+}\r
+\r
  /**\r
    Returns a boolean to indicate whether SEV-ES is enabled.\r
  \r
diff --git a/OvmfPkg/Library/BaseMemEncryptSevLib/PeiMemEncryptSevLibInternal.c b/OvmfPkg/Library/BaseMemEncryptSevLib/PeiMemEncryptSevLibInternal.c

index c4aa74a0a2dd119cf32a1963e83b61c6876d8c52..d68ff08c3ea673a42bb425673d122c9993499f33 100644 (file)
--- a/OvmfPkg/Library/BaseMemEncryptSevLib/PeiMemEncryptSevLibInternal.c
+++ b/OvmfPkg/Library/BaseMemEncryptSevLib/PeiMemEncryptSevLibInternal.c
@@ -19,6 +19,7 @@
  \r
  STATIC BOOLEAN  mSevStatus        = FALSE;\r
  STATIC BOOLEAN  mSevEsStatus      = FALSE;\r
+STATIC BOOLEAN  mSevSnpStatus     = FALSE;\r
  STATIC BOOLEAN  mSevStatusChecked = FALSE;\r
  \r
  STATIC UINT64   mSevEncryptionMask      = 0;\r
@@ -82,11 +83,37 @@ InternalMemEncryptSevStatus (
      if (Msr.Bits.SevEsBit) {\r
        mSevEsStatus = TRUE;\r
      }\r
+\r
+    //\r
+    // Check MSR_0xC0010131 Bit 2 (Sev-Snp Enabled)\r
+    //\r
+    if (Msr.Bits.SevSnpBit) {\r
+      mSevSnpStatus = TRUE;\r
+    }\r
    }\r
  \r
    mSevStatusChecked = TRUE;\r
  }\r
  \r
+/**\r
+  Returns a boolean to indicate whether SEV-SNP is enabled.\r
+\r
+  @retval TRUE           SEV-SNP is enabled\r
+  @retval FALSE          SEV-SNP is not enabled\r
+**/\r
+BOOLEAN\r
+EFIAPI\r
+MemEncryptSevSnpIsEnabled (\r
+  VOID\r
+  )\r
+{\r
+  if (!mSevStatusChecked) {\r
+    InternalMemEncryptSevStatus ();\r
+  }\r
+\r
+  return mSevSnpStatus;\r
+}\r
+\r
  /**\r
    Returns a boolean to indicate whether SEV-ES is enabled.\r
  \r
diff --git a/OvmfPkg/Library/BaseMemEncryptSevLib/SecMemEncryptSevLibInternal.c b/OvmfPkg/Library/BaseMemEncryptSevLib/SecMemEncryptSevLibInternal.c

index b5b365641499bba7b872acfe5c8190de2d464f30..5d912b2a4a5e4a043f8e8aa758bd55237a8540af 100644 (file)
--- a/OvmfPkg/Library/BaseMemEncryptSevLib/SecMemEncryptSevLibInternal.c
+++ b/OvmfPkg/Library/BaseMemEncryptSevLib/SecMemEncryptSevLibInternal.c
@@ -62,6 +62,25 @@ InternalMemEncryptSevStatus (
    return ReadSevMsr ? AsmReadMsr32 (MSR_SEV_STATUS) : 0;\r
  }\r
  \r
+/**\r
+  Returns a boolean to indicate whether SEV-SNP is enabled.\r
+\r
+  @retval TRUE           SEV-SNP is enabled\r
+  @retval FALSE          SEV-SNP is not enabled\r
+**/\r
+BOOLEAN\r
+EFIAPI\r
+MemEncryptSevSnpIsEnabled (\r
+  VOID\r
+  )\r
+{\r
+  MSR_SEV_STATUS_REGISTER  Msr;\r
+\r
+  Msr.Uint32 = InternalMemEncryptSevStatus ();\r
+\r
+  return Msr.Bits.SevSnpBit ? TRUE : FALSE;\r
+}\r
+\r
  /**\r
    Returns a boolean to indicate whether SEV-ES is enabled.\r
  \r
author	Brijesh Singh <brijesh.singh@amd.com>
	Thu, 9 Dec 2021 03:27:37 +0000 (11:27 +0800)
committer	mergify[bot] <37929162+mergify[bot]@users.noreply.github.com>
	Thu, 9 Dec 2021 06:28:10 +0000 (06:28 +0000)
OvmfPkg/Include/Library/MemEncryptSevLib.h		patch \| blob \| blame \| history
OvmfPkg/Library/BaseMemEncryptSevLib/DxeMemEncryptSevLibInternal.c		patch \| blob \| blame \| history
OvmfPkg/Library/BaseMemEncryptSevLib/PeiMemEncryptSevLibInternal.c		patch \| blob \| blame \| history
OvmfPkg/Library/BaseMemEncryptSevLib/SecMemEncryptSevLibInternal.c		patch \| blob \| blame \| history