sev 7.1.0

Library for AMD SEV
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95

// SPDX-License-Identifier: Apache-2.0

use crate::firmware::linux::guest::types::{
    DerivedKeyReq, DerivedKeyRsp, ExtReportReq, ReportReq, ReportRsp,
};

use std::marker::PhantomData;

use iocuddle::{Group, Ioctl, WriteRead};

pub enum GuestIoctl {
    GetReport = 0x0,
    GetDerivedKey = 0x1,
    GetExtReport = 0x2,
    _Undefined,
}

const SEV: Group = Group::new(b'S');

pub const SNP_GET_REPORT: Ioctl<WriteRead, &GuestRequest<ReportReq, ReportRsp>> =
    unsafe { SEV.write_read(GuestIoctl::GetReport as u8) };

pub const SNP_GET_DERIVED_KEY: Ioctl<WriteRead, &GuestRequest<DerivedKeyReq, DerivedKeyRsp>> =
    unsafe { SEV.write_read(GuestIoctl::GetDerivedKey as u8) };

pub const SNP_GET_EXT_REPORT: Ioctl<WriteRead, &GuestRequest<ExtReportReq, ReportRsp>> =
    unsafe { SEV.write_read(GuestIoctl::GetExtReport as u8) };

/// The default structure used for making requests to the PSP as a guest owner.
#[repr(C)]
pub struct GuestRequest<'a, 'b, Req, Rsp> {
    /// Message version number (must be non-zero)
    pub message_version: u32,
    /// Request structure address.
    pub request_data: u64,
    /// Response structure address.
    pub response_data: u64,
    /// Firmware error address.
    pub fw_err: u64,

    _phantom_req: PhantomData<&'a mut Req>,
    _phantom_rsp: PhantomData<&'b mut Rsp>,
}

impl<'a, 'b, Req, Rsp> GuestRequest<'a, 'b, Req, Rsp> {
    /// Creates a new request from the addresses provided.
    ///
    /// # Arguments:
    ///
    /// * `ver` - Option<u32> - Version of the message.
    /// * `req` - &Req - The reference a Request object.
    /// * `rsp` - &Rsp - The reference a Response object.
    pub fn new(ver: Option<u32>, req: &'a mut Req, rsp: &'b mut Rsp) -> Self {
        Self {
            message_version: ver.unwrap_or(1),
            request_data: req as *mut Req as u64,
            response_data: rsp as *mut Rsp as u64,
            fw_err: Default::default(),
            _phantom_req: PhantomData,
            _phantom_rsp: PhantomData,
        }
    }
}

#[cfg(test)]
mod tests {
    use super::*;

    #[test]
    fn test_guest_request_new() {
        let mut req = ReportReq::default();
        let mut rsp = ReportRsp::default();

        // Test with explicit version
        let guest_req = GuestRequest::new(Some(2), &mut req, &mut rsp);
        assert_eq!(guest_req.message_version, 2);
        assert_ne!(guest_req.request_data, 0);
        assert_ne!(guest_req.response_data, 0);
        assert_eq!(guest_req.fw_err, 0);

        // Test with default version
        let guest_req = GuestRequest::new(None, &mut req, &mut rsp);
        assert_eq!(guest_req.message_version, 1);
        assert_ne!(guest_req.request_data, 0);
        assert_ne!(guest_req.response_data, 0);
        assert_eq!(guest_req.fw_err, 0);
    }

    #[test]
    fn test_guest_ioctl_values() {
        assert_eq!(GuestIoctl::GetReport as u8, 0x0);
        assert_eq!(GuestIoctl::GetDerivedKey as u8, 0x1);
        assert_eq!(GuestIoctl::GetExtReport as u8, 0x2);
    }
}