From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from NAM10-MW2-obe.outbound.protection.outlook.com (NAM10-MW2-obe.outbound.protection.outlook.com [40.107.94.81])
 by mx.groups.io with SMTP id smtpd.web09.3116.1630670181294467550
 for <devel@edk2.groups.io>;
 Fri, 03 Sep 2021 04:56:21 -0700
Authentication-Results: mx.groups.io;
 dkim=fail reason="body hash did not verify" header.i=@amd.com header.s=selector1 header.b=GsJORkpu;
 spf=permerror, err=parse error for token &{10 18 %{i}._ip.%{h}._ehlo.%{d}._spf.vali.email}: invalid domain name (domain: amd.com, ip: 40.107.94.81, mailfrom: brijesh.singh@amd.com)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none;
 b=ErpbRC4hUMzR/IHjcC70j0HDJtuoBsq02wFsfpHB6AKorunoH5yj9DKccdva/RiCJKsRZA2P1GA6vCPpy8A+G7gZNF5Qm+v2q7+5rdwowwPEk7mEfa70G/lYKSt4Cc2XlTYdSOnc+JCwbQvOHWC6u6Cw6tBas19MY8UwuksHmPu/HRvURktTzgxbu/oWHouR40+QlrsbZ9Q7ljFuZCMFSIRxSd6i7/Rps55bSzQP2NNVhYUVGdCA5KrmaCjbKgPNPLarkn7htM8tZ5KjG1BrQEEpojGzRDU/B93lkqjk/zjsLXICfnH//2B2OT9My1arIMo6n9wr2fhLvk5K2x+qMg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com;
 s=arcselector9901;
 h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck;
 bh=2eoJMrtZh8+gHsdJcAOqRqHcrPwrSTDhr5d4plZBiuE=;
 b=fjEO9mZGcmZhHjYKe1DjO7DbPPavGxsgDGMQvCR3sSR40eAEsEoXB2dXezSO95TGXO3L3OkBU+Mh0bbKwY+19Zep9SfBAhqWoYPY9AcpTO+bnRRcmw459rwLDTHNW0jgcpR6nzvLEZeu+CbcgRHBt3rxAc7vm5C9NQi4NI72f8uT6OyO+0jt8A7LDM9hW8Y2SkfdOv7q5RAMfENxmfZ9trL2M2MJvelsz5ppSWjULBiQRz0dMgxeA3ITdwsZsCA4TdG5Bzs1AE1b/TylekdJtXQ95HsoitfniguXMs4W5BeP+cpqOr6v/s/MIB3CIoUf+0Q61RvLjh4LF9DzkzX1dQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass
 smtp.mailfrom=amd.com; dmarc=pass action=none header.from=amd.com; dkim=pass
 header.d=amd.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=amd.com; s=selector1;
 h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck;
 bh=2eoJMrtZh8+gHsdJcAOqRqHcrPwrSTDhr5d4plZBiuE=;
 b=GsJORkpuqSQuMIWRAooJ937STCqrJfknvPCqwTvSiuzfwqxGBT/P3ymT1XDBdXMFkpAQr4kOWBK+DHK3dBh3hDY655sCqVmq9tO0AEnv39QOiV1l12YYkmY4vYHxlkhdnk3xATKiabTA4g074YHHBjVB9s43e58EiMJrTkecJnM=
Authentication-Results: amd.com; dkim=none (message not signed)
 header.d=none;amd.com; dmarc=none action=none header.from=amd.com;
Received: from SN6PR12MB2718.namprd12.prod.outlook.com (2603:10b6:805:6f::22)
 by SN6PR12MB2767.namprd12.prod.outlook.com (2603:10b6:805:75::23) with
 Microsoft SMTP Server (version=TLS1_2,
 cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4457.24; Fri, 3 Sep
 2021 11:56:17 +0000
Received: from SN6PR12MB2718.namprd12.prod.outlook.com
 ([fe80::78b7:7336:d363:9be3]) by SN6PR12MB2718.namprd12.prod.outlook.com
 ([fe80::78b7:7336:d363:9be3%6]) with mapi id 15.20.4478.021; Fri, 3 Sep 2021
 11:56:17 +0000
Subject: Re: [edk2-devel] [PATCH v6 02/29] OvmfPkg: reserve CPUID page for SEV-SNP
To: devel@edk2.groups.io, kraxel@redhat.com
CC: James Bottomley <jejb@linux.ibm.com>, Min Xu <min.m.xu@intel.com>,
 Jiewen Yao <jiewen.yao@intel.com>, Tom Lendacky <thomas.lendacky@amd.com>,
 Jordan Justen <jordan.l.justen@intel.com>,
 Ard Biesheuvel <ardb+tianocore@kernel.org>,
 Erdem Aktas <erdemaktas@google.com>, Michael Roth <Michael.Roth@amd.com>
References: <20210901161646.24763-1-brijesh.singh@amd.com>
 <20210901161646.24763-3-brijesh.singh@amd.com>
 <20210902080448.jjigp62hsfo4o2h6@sirius.home.kraxel.org>
 <f3de87ac-7926-a71d-69ee-dc033ebb15df@amd.com>
 <b3088369-8ded-ee68-60bd-4d4030c481bb@amd.com>
 <20210903062802.v6pctzlaidockzm6@sirius.home.kraxel.org>
From: "Brijesh Singh" <brijesh.singh@amd.com>
Message-ID: <4b978d1b-8cf2-ad84-8198-d891d8e074dd@amd.com>
Date: Fri, 3 Sep 2021 06:56:16 -0500
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:78.0)
 Gecko/20100101 Thunderbird/78.13.0
In-Reply-To: <20210903062802.v6pctzlaidockzm6@sirius.home.kraxel.org>
X-ClientProxiedBy: SN1PR12CA0066.namprd12.prod.outlook.com
 (2603:10b6:802:20::37) To SN6PR12MB2718.namprd12.prod.outlook.com
 (2603:10b6:805:6f::22)
Return-Path: brijesh.singh@amd.com
MIME-Version: 1.0
Received: from Brijeshs-MacBook-Pro.local (70.112.153.56) by SN1PR12CA0066.namprd12.prod.outlook.com (2603:10b6:802:20::37) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4478.17 via Frontend Transport; Fri, 3 Sep 2021 11:56:16 +0000
X-MS-PublicTrafficType: Email
X-MS-Office365-Filtering-Correlation-Id: 3934a143-cbca-4d4a-5493-08d96ed1d635
X-MS-TrafficTypeDiagnostic: SN6PR12MB2767:
X-MS-Exchange-Transport-Forked: True
X-Microsoft-Antispam-PRVS: 
	<SN6PR12MB2767D02CF8102AE7EE5489AEE5CF9@SN6PR12MB2767.namprd12.prod.outlook.com>
X-MS-Oob-TLC-OOBClassifiers: OLM:4941;
X-MS-Exchange-SenderADCheck: 1
X-MS-Exchange-AntiSpam-Relay: 0
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info: 
	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
X-Forefront-Antispam-Report: 
	CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:SN6PR12MB2718.namprd12.prod.outlook.com;PTR:;CAT:NONE;SFS:(4636009)(136003)(39860400002)(366004)(376002)(396003)(346002)(66476007)(478600001)(31686004)(8676002)(31696002)(316002)(2616005)(956004)(66946007)(83380400001)(44832011)(6506007)(66556008)(38350700002)(38100700002)(52116002)(6486002)(53546011)(5660300002)(4326008)(86362001)(8936002)(54906003)(186003)(6512007)(26005)(36756003)(2906002)(4744005)(45980500001)(43740500002);DIR:OUT;SFP:1101;
X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 1
X-MS-Exchange-AntiSpam-MessageData-0: 
	=?us-ascii?Q?4oIBKV1Wi1+0ayNvwJPPgxpV3aRK+hrV3v8VSutGGwG+6CnpJjDQa9oS1/Qn?=
 =?us-ascii?Q?WBpnWiq/2c5Xdrd26eSKZpmU+EOhwgU741LdbTMX0Yzb82QvtdKjR/vE45bH?=
 =?us-ascii?Q?CRvEevVpSrW5zQ9Ie586Aia3KbwOg7U8YMfADm94rz0xJCEPH1Ki2tqhXrPK?=
 =?us-ascii?Q?BgbLUwAObExSaPj3ui4ZH5ydvsE6Ga5i3uOmIfTGTg47l57wdHAUkWMBLSeQ?=
 =?us-ascii?Q?rcmLYIjvBdU8/Lxb0zPckU4bC3pZQ9nnnVVhoH6DQxMaMYI0GpUbV6c7wf6F?=
 =?us-ascii?Q?baJa/Jd/FkekOHm6BxPK7jtIYArln2kzL8hODskN07oKceTdAxd3u81iEZT8?=
 =?us-ascii?Q?kbrBxgnve2ERma74dEIClD8NoEddCMcXAhRv0wOmRoQXVSHjYQnC8i5xer5Y?=
 =?us-ascii?Q?ftXT5FEdAo68MODos32VzT1WbsBghH3DnGoyDMjUcJMqlvau2TZcDVH2Q8eu?=
 =?us-ascii?Q?jc3RD3/c9L0YnwLLOOofqugzO4Hh1WAcMl8KUgM3199QAtU0Kzi6BQMl/uw7?=
 =?us-ascii?Q?hhGYZvfEPzwa/k2mVKTjnYi3kpguwuc1Htc7nmeFxy5tMSJG2lrZE5Ps0QoO?=
 =?us-ascii?Q?N+ULQklA8bMgw+i6WrGNgso2nHBOd3Uw2zF4mlFvRt9G4e506GHXcvzlEW8Q?=
 =?us-ascii?Q?l272a8dsHjDDVCVBcj3sL/jxUIYHtbYl5CiKq8nAOqTcuZhGrXMMW/gv8k7l?=
 =?us-ascii?Q?zcxdp76rJZTj3QzP/m4eRPlNxIyz8wwUdxu2WZt9y+xWPYasYMRTmGpm3+G2?=
 =?us-ascii?Q?ZD+KaaAFW1Y/OlYNfODaXmK9fNYHGQxPCJqIb9yyfySC+V0sMz9W/EJLNtOl?=
 =?us-ascii?Q?wcRwwdJTaXF37F0G5gM9NwuiP7yxKRtPY/auPe6sEGPInVWgLEAxuj4R77+J?=
 =?us-ascii?Q?aMD7nUybXi3ban61g9UFAnozs4D4wdscPQPa516B7H2PX4EU/UF045a8QfR8?=
 =?us-ascii?Q?RYENvH1acdimCd5sHhhZOErNKoNfcTFPhEGwBBWhiuGxgzCTI0j/FshAFbt6?=
 =?us-ascii?Q?+9syHO2bLY51XTFJlaLJ/pTNgOBJykYcWhdYI6iCtmOS7vaCSbRM56ZLzWAU?=
 =?us-ascii?Q?KnACrKxyNvOeqIx4orfJJt/WXW0AYh7O/yk7hCsDXOU8dCgvUzXYzC0V/RyH?=
 =?us-ascii?Q?jt44EIQul3XKgRjD2GNFC0JXvxboQ1jUGBDr3GVDyZv3Pya9rX1i+1Yw1915?=
 =?us-ascii?Q?4UC89zlb4hLeT9PGoS4uhXvOBJnUXNehbAi7xoNzfZI0j8n5ED+B6vWfzJyX?=
 =?us-ascii?Q?K6TAYGm2FQ6lZOGtdRtYAH+g9ynr+9Ar30SiuVnv7Ic1umOpdL8jWee3cxar?=
 =?us-ascii?Q?dMPrN0PfK3Lj7Fl125ZSg+Zy?=
X-OriginatorOrg: amd.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 3934a143-cbca-4d4a-5493-08d96ed1d635
X-MS-Exchange-CrossTenant-AuthSource: SN6PR12MB2718.namprd12.prod.outlook.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 03 Sep 2021 11:56:17.3483
 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-CrossTenant-Id: 3dd8961f-e488-4e60-8e11-a82d994e183d
X-MS-Exchange-CrossTenant-MailboxType: HOSTED
X-MS-Exchange-CrossTenant-UserPrincipalName: IvwpQMm16XkY0ivX+k67Lc+hxpm/qi417wC5X6OL8/d3FnydtZwIyaAWDiEoWg0Xlb5zPWdFgXeqI+SoHj4ivw==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: SN6PR12MB2767
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: quoted-printable
Content-Language: en-US


On 9/3/21 1:28 AM, Gerd Hoffmann via groups.io wrote:
>   Hi,
>
>>>> Is this snp-specific?  Or could this also be used without snp?
>>> This is SNP specific format and cannot be used without SNP.
>> I should clarify the statement, the format itself does not contain
>> anything=C2=A0 SNP specific. However, the CPUID page format is documente=
d in
>> the SNP specific spec.
> Who populates the page?  qemu?  sev-snp firmware?

The page is populated by the QEMU and filtered by the SEV-SNP firmware.
At the end of SNP launch flow, a CPUID page will be encrypted, and
measurement of the page metadata is included in the attestation report
so that the guest owner can validate whether the hypervisor used the
CPUID page during the launch.

thanks