From mboxrd@z Thu Jan  1 00:00:00 1970
Authentication-Results: mx.groups.io;
 dkim=pass header.i=@amdcloud.onmicrosoft.com header.s=selector2-amdcloud-onmicrosoft-com header.b=SyDwoDgE;
 spf=none, err=SPF record not found (domain: amd.com, ip: 40.107.78.74, mailfrom: thomas.lendacky@amd.com)
Received: from NAM03-BY2-obe.outbound.protection.outlook.com (NAM03-BY2-obe.outbound.protection.outlook.com [40.107.78.74])
 by groups.io with SMTP; Thu, 19 Sep 2019 12:52:28 -0700
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none;
 b=aUAkxe1ecbvuZMu9COnr/6cI04jSgrb55ejSfa8tdphPHpmRVQ+ul3AyGCuRAjTaO/Qth6Fh5KKjbZwzavPE03iNiMmoxXIk6lQFM2La9oaoRzBSAKAJ5+dro5iieg4WXSKrN+56qRZvB1uqwubUwhD+OniXP0GEsWgLkznZLb6L4XPmsVoqkWhqlccQLVKfHKAzlzKoAxCUcqphAgigYaa3dP1UfIOW3Oa6cGaQeOfyzG8X/32wi9lfE4kBIOVtJ4OlHUW5Yr1RWpUlxFHE72Fh7rQv/19tlEarDe0zT3fOOTT6ungM7ZRxsOw8zU9uhNFcYRHqsCXxXZfd+9BM6A==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com;
 s=arcselector9901;
 h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck;
 bh=kv1EXIxr+fLzY+r1GMHLEyXCVxLXt8v2k34AK3ZY8Xs=;
 b=n7YAuWy1hA4y41czAvmjplug7LONY9MpjPFBK9o5ZacHDNL24wRzDhSwKYAoXbTuqjmuqcXWISAcw07TfKd7B2XS4AHIoWLeVXVBEJa8Tpufr+eCFNGvw+34IUAzBMGx+cRw3zLuNIx7lMMmMVD2p85elh+HRN+qqEAmRBxestwr9mjbRhhXJAmvkAVBRRa2FPpX+VHeZX76N4cecALN8EWln9jL3/Z7jlcPw6iIzfhcoyRUGhcGbQess5kWJ8wa4IhOey4WtDctfliTxGyXHY+xOikpnBpbQJBSKHi+0T2tD2RDugJ/ejXQ71cA+lFs85BUVfQWL69Aws7QcQYKJA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass
 smtp.mailfrom=amd.com; dmarc=pass action=none header.from=amd.com; dkim=pass
 header.d=amd.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=amdcloud.onmicrosoft.com; s=selector2-amdcloud-onmicrosoft-com;
 h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck;
 bh=kv1EXIxr+fLzY+r1GMHLEyXCVxLXt8v2k34AK3ZY8Xs=;
 b=SyDwoDgEijxMKdGv3r1s3dxqXMNJB/XWR3KbUFdES7uE1v5nRm3aLuvx0hXsSDfo8FDs0e0AvRvABsrttIvy3yAY5rLGLoItSW4V79Ps40vYyCgwebTuAHEczG6wz9vgW62+yozy0CUMa96g2GzaYXBwELOqX88x0H7wFqngdaU=
Received: from DM6PR12MB3163.namprd12.prod.outlook.com (20.179.104.150) by
 DM6PR12MB3228.namprd12.prod.outlook.com (20.179.105.96) with Microsoft SMTP
 Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id
 15.20.2263.13; Thu, 19 Sep 2019 19:52:26 +0000
Received: from DM6PR12MB3163.namprd12.prod.outlook.com
 ([fe80::400e:f0c3:7ca:2fcc]) by DM6PR12MB3163.namprd12.prod.outlook.com
 ([fe80::400e:f0c3:7ca:2fcc%6]) with mapi id 15.20.2284.009; Thu, 19 Sep 2019
 19:52:26 +0000
From: "Lendacky, Thomas" <thomas.lendacky@amd.com>
To: "devel@edk2.groups.io" <devel@edk2.groups.io>
CC: Jordan Justen <jordan.l.justen@intel.com>, Laszlo Ersek
	<lersek@redhat.com>, Ard Biesheuvel <ard.biesheuvel@linaro.org>, Michael D
 Kinney <michael.d.kinney@intel.com>, Liming Gao <liming.gao@intel.com>, Eric
 Dong <eric.dong@intel.com>, Ray Ni <ray.ni@intel.com>, "Singh, Brijesh"
	<brijesh.singh@amd.com>
Subject: [RFC PATCH v2 02/44] OvmfPkg/MemEncryptSevLib: Add an SEV-ES guest indicator function
Thread-Topic: [RFC PATCH v2 02/44] OvmfPkg/MemEncryptSevLib: Add an SEV-ES
 guest indicator function
Thread-Index: AQHVbyPDZ1/NzxAWkU2QuybFuRRTKA==
Date: Thu, 19 Sep 2019 19:52:26 +0000
Message-ID: 
 <ca1bb88e858b0637880269ea901244a082b8b2cf.1568922728.git.thomas.lendacky@amd.com>
References: <cover.1568922728.git.thomas.lendacky@amd.com>
In-Reply-To: <cover.1568922728.git.thomas.lendacky@amd.com>
Accept-Language: en-US
X-MS-Has-Attach: 
X-MS-TNEF-Correlator: 
x-mailer: git-send-email 2.17.1
x-clientproxiedby: SN4PR0501CA0146.namprd05.prod.outlook.com
 (2603:10b6:803:2c::24) To DM6PR12MB3163.namprd12.prod.outlook.com
 (2603:10b6:5:182::22)
authentication-results: spf=none (sender IP is )
 smtp.mailfrom=Thomas.Lendacky@amd.com; 
x-ms-exchange-messagesentrepresentingtype: 1
x-originating-ip: [165.204.78.1]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 721b94ea-aa7d-4b22-66c7-08d73d3ae585
x-ms-office365-filtering-ht: Tenant
x-microsoft-antispam: 
 BCL:0;PCL:0;RULEID:(2390118)(7020095)(4652040)(8989299)(5600167)(711020)(4605104)(1401327)(4618075)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(2017052603328)(7193020);SRVR:DM6PR12MB3228;
x-ms-traffictypediagnostic: DM6PR12MB3228:
x-ms-exchange-purlcount: 1
x-ms-exchange-transport-forked: True
x-microsoft-antispam-prvs: 
 <DM6PR12MB3228CAD63D6D45F7EE69B5C6EC890@DM6PR12MB3228.namprd12.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:4125;
x-forefront-prvs: 016572D96D
x-forefront-antispam-report: 
 SFV:NSPM;SFS:(10009020)(4636009)(366004)(376002)(396003)(136003)(39860400002)(346002)(189003)(199004)(4326008)(26005)(446003)(25786009)(52116002)(71200400001)(71190400001)(8936002)(81156014)(81166006)(256004)(8676002)(186003)(50226002)(2351001)(2616005)(102836004)(486006)(11346002)(476003)(66066001)(386003)(6506007)(66446008)(14454004)(76176011)(99286004)(6486002)(36756003)(5640700003)(66556008)(118296001)(3846002)(316002)(7736002)(2501003)(1730700003)(6116002)(5660300002)(478600001)(54906003)(6916009)(966005)(6436002)(2906002)(64756008)(305945005)(86362001)(6512007)(6306002)(66476007)(66946007);DIR:OUT;SFP:1101;SCL:1;SRVR:DM6PR12MB3228;H:DM6PR12MB3163.namprd12.prod.outlook.com;FPR:;SPF:None;LANG:en;PTR:InfoNoRecords;MX:1;A:1;
received-spf: None (protection.outlook.com: amd.com does not designate
 permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: 
 Ha15/3lxibhmrTgWlddwik56tUh6BPEZXbtVTVTb/bGqHVzepZ87VoZC2S0eb/aEn9SfDtk5GzhZ28XP0ZsHBhfDUuOEbA27KvSSG9IHSejYm6JlxxL5+cwO9ha2S+HZKPEOaE9j4YzDv5yAp/D9XbB1l5KyxpKpylTSlm64/YSvaTvR//GhLqfhBoFLeglOs+2txL5T43/pw4pyHsjNl0hMWMNhhZi4vN/q+xkrXgMd6dZFLB3Mnjilnb/xGPhbrCXrXDgzDlLcneNl7yaOXFR3zzHuu/MBmQeR3jMOpf3Jx0+Kl5/LSmDSpLh6iR8qMZmLLE8h6ITZv/fm+EkLuZYBzvd+LM+S4203An8E+EnZcVfTf1cxtOxdSGwn/loZ0DKJASTIr9/4TmvjBBX0K0Ce4AxtpdzmU66ojNIrgvs=
MIME-Version: 1.0
X-OriginatorOrg: amd.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 721b94ea-aa7d-4b22-66c7-08d73d3ae585
X-MS-Exchange-CrossTenant-originalarrivaltime: 19 Sep 2019 19:52:26.7135
 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 3dd8961f-e488-4e60-8e11-a82d994e183d
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: T24rVF1juw9n70s2MiAEQDHH4jP+tVJ+LEMizDdB1KePKHn0QZ9iZLECphHSzTB2NwnH7oBZzQEh5APERgo2uA==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM6PR12MB3228
Content-Language: en-US
Content-Type: text/plain; charset="us-ascii"
Content-ID: <8D313CC151E15949B269B851781C72D9@namprd12.prod.outlook.com>
Content-Transfer-Encoding: quoted-printable

From: Tom Lendacky <thomas.lendacky@amd.com>

BZ: https://bugzilla.tianocore.org/show_bug.cgi?id=3D2198

Create a function that can be used to determine if the VM is running
as an SEV-ES guest.

Cc: Jordan Justen <jordan.l.justen@intel.com>
Cc: Laszlo Ersek <lersek@redhat.com>
Cc: Ard Biesheuvel <ard.biesheuvel@linaro.org>
Signed-off-by: Tom Lendacky <thomas.lendacky@amd.com>
---
 OvmfPkg/Include/Library/MemEncryptSevLib.h    | 12 +++
 .../MemEncryptSevLibInternal.c                | 77 ++++++++++++-------
 2 files changed, 62 insertions(+), 27 deletions(-)

diff --git a/OvmfPkg/Include/Library/MemEncryptSevLib.h b/OvmfPkg/Include/L=
ibrary/MemEncryptSevLib.h
index 64dd6977b0f8..a50a0de9c870 100644
--- a/OvmfPkg/Include/Library/MemEncryptSevLib.h
+++ b/OvmfPkg/Include/Library/MemEncryptSevLib.h
@@ -13,6 +13,18 @@
=20
 #include <Base.h>
=20
+/**
+  Returns a boolean to indicate whether SEV-ES is enabled
+
+  @retval TRUE           SEV-ES is enabled
+  @retval FALSE          SEV-ES is not enabled
+**/
+BOOLEAN
+EFIAPI
+MemEncryptSevEsIsEnabled (
+  VOID
+  );
+
 /**
   Returns a boolean to indicate whether SEV is enabled
=20
diff --git a/OvmfPkg/Library/BaseMemEncryptSevLib/MemEncryptSevLibInternal.=
c b/OvmfPkg/Library/BaseMemEncryptSevLib/MemEncryptSevLibInternal.c
index 96a66e373f11..9c1d68e017fe 100644
--- a/OvmfPkg/Library/BaseMemEncryptSevLib/MemEncryptSevLibInternal.c
+++ b/OvmfPkg/Library/BaseMemEncryptSevLib/MemEncryptSevLibInternal.c
@@ -20,19 +20,17 @@
 #include <Uefi/UefiBaseType.h>
=20
 STATIC BOOLEAN mSevStatus =3D FALSE;
+STATIC BOOLEAN mSevEsStatus =3D FALSE;
 STATIC BOOLEAN mSevStatusChecked =3D FALSE;
=20
 /**
=20
-  Returns a boolean to indicate whether SEV is enabled
-
-  @retval TRUE           SEV is enabled
-  @retval FALSE          SEV is not enabled
+  Reads and sets the status of SEV features
   **/
 STATIC
-BOOLEAN
+VOID
 EFIAPI
-InternalMemEncryptSevIsEnabled (
+InternalMemEncryptSevStatus (
   VOID
   )
 {
@@ -56,32 +54,57 @@ InternalMemEncryptSevIsEnabled (
       //
       Msr.Uint32 =3D AsmReadMsr32 (MSR_SEV_STATUS);
       if (Msr.Bits.SevBit) {
-        return TRUE;
+        mSevStatus =3D TRUE;
+      }
+
+      if (Eax.Bits.SevEsBit) {
+        //
+        // Check MSR_0xC0010131 Bit 1 (Sev-Es Enabled)
+        //
+        if (Msr.Bits.SevEsBit) {
+          mSevEsStatus =3D TRUE;
+        }
       }
     }
   }
=20
-  return FALSE;
-}
-
-/**
-  Returns a boolean to indicate whether SEV is enabled
-
-  @retval TRUE           SEV is enabled
-  @retval FALSE          SEV is not enabled
-**/
-BOOLEAN
-EFIAPI
-MemEncryptSevIsEnabled (
-  VOID
-  )
-{
-  if (mSevStatusChecked) {
-    return mSevStatus;
-  }
-
-  mSevStatus =3D InternalMemEncryptSevIsEnabled();
   mSevStatusChecked =3D TRUE;
+}
+
+/**
+  Returns a boolean to indicate whether SEV-ES is enabled
+
+  @retval TRUE           SEV-ES is enabled
+  @retval FALSE          SEV-ES is not enabled
+**/
+BOOLEAN
+EFIAPI
+MemEncryptSevEsIsEnabled (
+  VOID
+  )
+{
+  if (!mSevStatusChecked) {
+    InternalMemEncryptSevStatus();
+  }
+
+  return mSevEsStatus;
+}
+
+/**
+  Returns a boolean to indicate whether SEV is enabled
+
+  @retval TRUE           SEV is enabled
+  @retval FALSE          SEV is not enabled
+**/
+BOOLEAN
+EFIAPI
+MemEncryptSevIsEnabled (
+  VOID
+  )
+{
+  if (!mSevStatusChecked) {
+    InternalMemEncryptSevStatus();
+  }
=20
   return mSevStatus;
 }
--=20
2.17.1