2017-07-06 15:21:12 +02:00
|
|
|
/** @file
|
|
|
|
|
|
|
|
Secure Encrypted Virtualization (SEV) library helper function
|
|
|
|
|
2021-01-07 19:48:22 +01:00
|
|
|
Copyright (c) 2017 - 2020, AMD Incorporated. All rights reserved.<BR>
|
2017-07-06 15:21:12 +02:00
|
|
|
|
2019-04-04 01:06:33 +02:00
|
|
|
SPDX-License-Identifier: BSD-2-Clause-Patent
|
2017-07-06 15:21:12 +02:00
|
|
|
|
|
|
|
**/
|
|
|
|
|
|
|
|
#include <Library/BaseLib.h>
|
|
|
|
#include <Library/DebugLib.h>
|
2018-03-01 15:02:11 +01:00
|
|
|
#include <Library/MemEncryptSevLib.h>
|
2017-07-06 15:21:12 +02:00
|
|
|
#include <Register/Amd/Cpuid.h>
|
|
|
|
#include <Register/Amd/Msr.h>
|
2018-03-01 15:02:11 +01:00
|
|
|
#include <Register/Cpuid.h>
|
2017-07-06 15:21:12 +02:00
|
|
|
|
|
|
|
#include "VirtualMemory.h"
|
|
|
|
|
|
|
|
/**
|
|
|
|
This function clears memory encryption bit for the memory region specified by
|
2018-03-01 14:41:01 +01:00
|
|
|
BaseAddress and NumPages from the current page table context.
|
2017-07-06 15:21:12 +02:00
|
|
|
|
2018-03-01 14:32:23 +01:00
|
|
|
@param[in] Cr3BaseAddress Cr3 Base Address (if zero then use
|
|
|
|
current CR3)
|
|
|
|
@param[in] BaseAddress The physical address that is the start
|
|
|
|
address of a memory region.
|
2018-03-01 14:41:01 +01:00
|
|
|
@param[in] NumPages The number of pages from start memory
|
2018-03-01 14:32:23 +01:00
|
|
|
region.
|
2017-07-06 15:21:12 +02:00
|
|
|
@param[in] Flush Flush the caches before clearing the bit
|
|
|
|
(mostly TRUE except MMIO addresses)
|
|
|
|
|
2018-03-01 14:32:23 +01:00
|
|
|
@retval RETURN_SUCCESS The attributes were cleared for the
|
|
|
|
memory region.
|
2017-07-06 15:21:12 +02:00
|
|
|
@retval RETURN_INVALID_PARAMETER Number of pages is zero.
|
2018-03-01 14:32:23 +01:00
|
|
|
@retval RETURN_UNSUPPORTED Clearing the memory encryption attribute
|
|
|
|
is not supported
|
2018-03-01 14:41:01 +01:00
|
|
|
**/
|
2017-07-06 15:21:12 +02:00
|
|
|
RETURN_STATUS
|
|
|
|
EFIAPI
|
|
|
|
MemEncryptSevClearPageEncMask (
|
|
|
|
IN PHYSICAL_ADDRESS Cr3BaseAddress,
|
|
|
|
IN PHYSICAL_ADDRESS BaseAddress,
|
|
|
|
IN UINTN NumPages,
|
|
|
|
IN BOOLEAN Flush
|
|
|
|
)
|
|
|
|
{
|
2018-03-01 14:32:23 +01:00
|
|
|
return InternalMemEncryptSevSetMemoryDecrypted (
|
|
|
|
Cr3BaseAddress,
|
|
|
|
BaseAddress,
|
|
|
|
EFI_PAGES_TO_SIZE (NumPages),
|
|
|
|
Flush
|
|
|
|
);
|
2017-07-06 15:21:12 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
2018-03-01 14:41:01 +01:00
|
|
|
This function sets memory encryption bit for the memory region specified by
|
|
|
|
BaseAddress and NumPages from the current page table context.
|
2017-07-06 15:21:12 +02:00
|
|
|
|
2018-03-01 14:32:23 +01:00
|
|
|
@param[in] Cr3BaseAddress Cr3 Base Address (if zero then use
|
|
|
|
current CR3)
|
|
|
|
@param[in] BaseAddress The physical address that is the start
|
|
|
|
address of a memory region.
|
2018-03-01 14:41:01 +01:00
|
|
|
@param[in] NumPages The number of pages from start memory
|
2018-03-01 14:32:23 +01:00
|
|
|
region.
|
2018-03-01 14:41:01 +01:00
|
|
|
@param[in] Flush Flush the caches before setting the bit
|
2017-07-06 15:21:12 +02:00
|
|
|
(mostly TRUE except MMIO addresses)
|
|
|
|
|
2018-03-01 14:41:01 +01:00
|
|
|
@retval RETURN_SUCCESS The attributes were set for the memory
|
|
|
|
region.
|
2017-07-06 15:21:12 +02:00
|
|
|
@retval RETURN_INVALID_PARAMETER Number of pages is zero.
|
2018-03-01 14:41:01 +01:00
|
|
|
@retval RETURN_UNSUPPORTED Setting the memory encryption attribute
|
2018-03-01 14:32:23 +01:00
|
|
|
is not supported
|
2018-03-01 14:41:01 +01:00
|
|
|
**/
|
2017-07-06 15:21:12 +02:00
|
|
|
RETURN_STATUS
|
|
|
|
EFIAPI
|
|
|
|
MemEncryptSevSetPageEncMask (
|
|
|
|
IN PHYSICAL_ADDRESS Cr3BaseAddress,
|
|
|
|
IN PHYSICAL_ADDRESS BaseAddress,
|
|
|
|
IN UINTN NumPages,
|
|
|
|
IN BOOLEAN Flush
|
|
|
|
)
|
|
|
|
{
|
2018-03-01 14:32:23 +01:00
|
|
|
return InternalMemEncryptSevSetMemoryEncrypted (
|
|
|
|
Cr3BaseAddress,
|
|
|
|
BaseAddress,
|
|
|
|
EFI_PAGES_TO_SIZE (NumPages),
|
|
|
|
Flush
|
|
|
|
);
|
2017-07-06 15:21:12 +02:00
|
|
|
}
|
2021-01-07 19:48:22 +01:00
|
|
|
|
|
|
|
/**
|
|
|
|
Returns the encryption state of the specified virtual address range.
|
|
|
|
|
|
|
|
@param[in] Cr3BaseAddress Cr3 Base Address (if zero then use
|
|
|
|
current CR3)
|
|
|
|
@param[in] BaseAddress Base address to check
|
|
|
|
@param[in] Length Length of virtual address range
|
|
|
|
|
|
|
|
@retval MemEncryptSevAddressRangeUnencrypted Address range is mapped
|
|
|
|
unencrypted
|
|
|
|
@retval MemEncryptSevAddressRangeEncrypted Address range is mapped
|
|
|
|
encrypted
|
|
|
|
@retval MemEncryptSevAddressRangeMixed Address range is mapped mixed
|
|
|
|
@retval MemEncryptSevAddressRangeError Address range is not mapped
|
|
|
|
**/
|
|
|
|
MEM_ENCRYPT_SEV_ADDRESS_RANGE_STATE
|
|
|
|
EFIAPI
|
|
|
|
MemEncryptSevGetAddressRangeState (
|
|
|
|
IN PHYSICAL_ADDRESS Cr3BaseAddress,
|
|
|
|
IN PHYSICAL_ADDRESS BaseAddress,
|
|
|
|
IN UINTN Length
|
|
|
|
)
|
|
|
|
{
|
|
|
|
return InternalMemEncryptSevGetAddressRangeState (
|
|
|
|
Cr3BaseAddress,
|
|
|
|
BaseAddress,
|
|
|
|
Length
|
|
|
|
);
|
|
|
|
}
|