1 /* SPDX-License-Identifier: GPL-2.0-only WITH Linux-syscall-note */
3 * Userspace interface for AMD SEV and SNP guest driver.
5 * Copyright (C) 2021 Advanced Micro Devices, Inc.
7 * Author: Brijesh Singh <brijesh.singh@amd.com>
9 * SEV API specification is available at: https://developer.amd.com/sev/
12 #ifndef __UAPI_LINUX_SEV_GUEST_H_
13 #define __UAPI_LINUX_SEV_GUEST_H_
15 #include <linux/types.h>
17 #define SNP_REPORT_USER_DATA_SIZE 64
19 struct snp_report_req
{
20 /* user data that should be included in the report */
21 __u8 user_data
[SNP_REPORT_USER_DATA_SIZE
];
23 /* The vmpl level to be included in the report */
26 /* Must be zero filled */
30 struct snp_report_resp
{
31 /* response data, see SEV-SNP spec for the format */
35 struct snp_derived_key_req
{
36 __u32 root_key_select
;
38 __u64 guest_field_select
;
44 struct snp_derived_key_resp
{
45 /* response data, see SEV-SNP spec for the format */
49 struct snp_guest_request_ioctl
{
50 /* message version number (must be non-zero) */
53 /* Request and response structure address */
57 /* bits[63:32]: VMM error code, bits[31:0] firmware error code (see psp-sev.h) */
67 struct snp_ext_report_req
{
68 struct snp_report_req data
;
70 /* where to copy the certificate blob */
73 /* length of the certificate blob */
77 #define SNP_GUEST_REQ_IOC_TYPE 'S'
79 /* Get SNP attestation report */
80 #define SNP_GET_REPORT _IOWR(SNP_GUEST_REQ_IOC_TYPE, 0x0, struct snp_guest_request_ioctl)
82 /* Get a derived key from the root */
83 #define SNP_GET_DERIVED_KEY _IOWR(SNP_GUEST_REQ_IOC_TYPE, 0x1, struct snp_guest_request_ioctl)
85 /* Get SNP extended report as defined in the GHCB specification version 2. */
86 #define SNP_GET_EXT_REPORT _IOWR(SNP_GUEST_REQ_IOC_TYPE, 0x2, struct snp_guest_request_ioctl)
88 /* Guest message request EXIT_INFO_2 constants */
89 #define SNP_GUEST_FW_ERR_MASK GENMASK_ULL(31, 0)
90 #define SNP_GUEST_VMM_ERR_SHIFT 32
91 #define SNP_GUEST_VMM_ERR(x) (((u64)x) << SNP_GUEST_VMM_ERR_SHIFT)
92 #define SNP_GUEST_FW_ERR(x) ((x) & SNP_GUEST_FW_ERR_MASK)
93 #define SNP_GUEST_ERR(vmm_err, fw_err) (SNP_GUEST_VMM_ERR(vmm_err) | \
94 SNP_GUEST_FW_ERR(fw_err))
96 #define SNP_GUEST_VMM_ERR_INVALID_LEN 1
97 #define SNP_GUEST_VMM_ERR_BUSY 2
99 #endif /* __UAPI_LINUX_SEV_GUEST_H_ */