include/linux/cc_platform.h

*4882a593Smuzhiyun/* SPDX-License-Identifier: GPL-2.0-only */
*4882a593Smuzhiyun/*
*4882a593Smuzhiyun * Confidential Computing Platform Capability checks
*4882a593Smuzhiyun *
*4882a593Smuzhiyun * Copyright (C) 2021 Advanced Micro Devices, Inc.
*4882a593Smuzhiyun *
*4882a593Smuzhiyun * Author: Tom Lendacky <thomas.lendacky@amd.com>
*4882a593Smuzhiyun */
*4882a593Smuzhiyun
*4882a593Smuzhiyun#ifndef _LINUX_CC_PLATFORM_H
*4882a593Smuzhiyun#define _LINUX_CC_PLATFORM_H
*4882a593Smuzhiyun
*4882a593Smuzhiyun#include <linux/types.h>
*4882a593Smuzhiyun#include <linux/stddef.h>
*4882a593Smuzhiyun
*4882a593Smuzhiyun/**
*4882a593Smuzhiyun * enum cc_attr - Confidential computing attributes
*4882a593Smuzhiyun *
*4882a593Smuzhiyun * These attributes represent confidential computing features that are
*4882a593Smuzhiyun * currently active.
*4882a593Smuzhiyun */
*4882a593Smuzhiyunenum cc_attr {
*4882a593Smuzhiyun	/**
*4882a593Smuzhiyun	 * @CC_ATTR_MEM_ENCRYPT: Memory encryption is active
*4882a593Smuzhiyun	 *
*4882a593Smuzhiyun	 * The platform/OS is running with active memory encryption. This
*4882a593Smuzhiyun	 * includes running either as a bare-metal system or a hypervisor
*4882a593Smuzhiyun	 * and actively using memory encryption or as a guest/virtual machine
*4882a593Smuzhiyun	 * and actively using memory encryption.
*4882a593Smuzhiyun	 *
*4882a593Smuzhiyun	 * Examples include SME, SEV and SEV-ES.
*4882a593Smuzhiyun	 */
*4882a593Smuzhiyun	CC_ATTR_MEM_ENCRYPT,
*4882a593Smuzhiyun
*4882a593Smuzhiyun	/**
*4882a593Smuzhiyun	 * @CC_ATTR_HOST_MEM_ENCRYPT: Host memory encryption is active
*4882a593Smuzhiyun	 *
*4882a593Smuzhiyun	 * The platform/OS is running as a bare-metal system or a hypervisor
*4882a593Smuzhiyun	 * and actively using memory encryption.
*4882a593Smuzhiyun	 *
*4882a593Smuzhiyun	 * Examples include SME.
*4882a593Smuzhiyun	 */
*4882a593Smuzhiyun	CC_ATTR_HOST_MEM_ENCRYPT,
*4882a593Smuzhiyun
*4882a593Smuzhiyun	/**
*4882a593Smuzhiyun	 * @CC_ATTR_GUEST_MEM_ENCRYPT: Guest memory encryption is active
*4882a593Smuzhiyun	 *
*4882a593Smuzhiyun	 * The platform/OS is running as a guest/virtual machine and actively
*4882a593Smuzhiyun	 * using memory encryption.
*4882a593Smuzhiyun	 *
*4882a593Smuzhiyun	 * Examples include SEV and SEV-ES.
*4882a593Smuzhiyun	 */
*4882a593Smuzhiyun	CC_ATTR_GUEST_MEM_ENCRYPT,
*4882a593Smuzhiyun
*4882a593Smuzhiyun	/**
*4882a593Smuzhiyun	 * @CC_ATTR_GUEST_STATE_ENCRYPT: Guest state encryption is active
*4882a593Smuzhiyun	 *
*4882a593Smuzhiyun	 * The platform/OS is running as a guest/virtual machine and actively
*4882a593Smuzhiyun	 * using memory encryption and register state encryption.
*4882a593Smuzhiyun	 *
*4882a593Smuzhiyun	 * Examples include SEV-ES.
*4882a593Smuzhiyun	 */
*4882a593Smuzhiyun	CC_ATTR_GUEST_STATE_ENCRYPT,
*4882a593Smuzhiyun};
*4882a593Smuzhiyun
*4882a593Smuzhiyun#ifdef CONFIG_ARCH_HAS_CC_PLATFORM
*4882a593Smuzhiyun
*4882a593Smuzhiyun/**
*4882a593Smuzhiyun * cc_platform_has() - Checks if the specified cc_attr attribute is active
*4882a593Smuzhiyun * @attr: Confidential computing attribute to check
*4882a593Smuzhiyun *
*4882a593Smuzhiyun * The cc_platform_has() function will return an indicator as to whether the
*4882a593Smuzhiyun * specified Confidential Computing attribute is currently active.
*4882a593Smuzhiyun *
*4882a593Smuzhiyun * Context: Any context
*4882a593Smuzhiyun * Return:
*4882a593Smuzhiyun * * TRUE  - Specified Confidential Computing attribute is active
*4882a593Smuzhiyun * * FALSE - Specified Confidential Computing attribute is not active
*4882a593Smuzhiyun */
*4882a593Smuzhiyunbool cc_platform_has(enum cc_attr attr);
*4882a593Smuzhiyun
*4882a593Smuzhiyun#else	/* !CONFIG_ARCH_HAS_CC_PLATFORM */
*4882a593Smuzhiyun
*4882a593Smuzhiyunstatic inline bool cc_platform_has(enum cc_attr attr) { return false; }
*4882a593Smuzhiyun
*4882a593Smuzhiyun#endif	/* CONFIG_ARCH_HAS_CC_PLATFORM */
*4882a593Smuzhiyun
*4882a593Smuzhiyun#endif	/* _LINUX_CC_PLATFORM_H */