From: Janosch Frank <frankja@linux.ibm.com>
To: Steffen Eiden <seiden@linux.ibm.com>,
Thomas Huth <thuth@redhat.com>,
Claudio Imbrenda <imbrenda@linux.ibm.com>,
David Hildenbrand <david@redhat.com>
Cc: kvm@vger.kernel.org, linux-s390@vger.kernel.org
Subject: Re: [kvm-unit-tests PATCH v3 1/5] s390x: uv-host: Add attestation test
Date: Wed, 23 Mar 2022 09:18:53 +0100 [thread overview]
Message-ID: <43eac0fb-4635-1e19-90ce-38386aa5b216@linux.ibm.com> (raw)
In-Reply-To: <20220222145456.9956-2-seiden@linux.ibm.com>
On 2/22/22 15:54, Steffen Eiden wrote:
> Adds an invalid command test for attestation in the uv-host.
I'm still fine with this test but I'd suggest changing the title to:
s390x: uv-host: Add invalid command attestation check
Just so it doesn't sound the same as the last patch in the series.
>
> Signed-off-by: Steffen Eiden <seiden@linux.ibm.com>
> Reviewed-by: Janosch Frank <frankja@linux.ibm.com>
> Reviewed-by: Claudio Imbrenda <imbrenda@linux.ibm.com>
> ---
> lib/s390x/asm/uv.h | 23 ++++++++++++++++++++++-
> s390x/uv-host.c | 1 +
> 2 files changed, 23 insertions(+), 1 deletion(-)
>
> diff --git a/lib/s390x/asm/uv.h b/lib/s390x/asm/uv.h
> index 70bf65c4..c330c0f8 100644
> --- a/lib/s390x/asm/uv.h
> +++ b/lib/s390x/asm/uv.h
> @@ -1,7 +1,7 @@
> /*
> * s390x Ultravisor related definitions
> *
> - * Copyright (c) 2020 IBM Corp
> + * Copyright IBM Corp. 2020, 2022
> *
> * Authors:
> * Janosch Frank <frankja@linux.ibm.com>
> @@ -47,6 +47,7 @@
> #define UVC_CMD_UNPIN_PAGE_SHARED 0x0342
> #define UVC_CMD_SET_SHARED_ACCESS 0x1000
> #define UVC_CMD_REMOVE_SHARED_ACCESS 0x1001
> +#define UVC_CMD_ATTESTATION 0x1020
>
> /* Bits in installed uv calls */
> enum uv_cmds_inst {
> @@ -71,6 +72,7 @@ enum uv_cmds_inst {
> BIT_UVC_CMD_UNSHARE_ALL = 20,
> BIT_UVC_CMD_PIN_PAGE_SHARED = 21,
> BIT_UVC_CMD_UNPIN_PAGE_SHARED = 22,
> + BIT_UVC_CMD_ATTESTATION = 28,
> };
>
> struct uv_cb_header {
> @@ -178,6 +180,25 @@ struct uv_cb_cfs {
> u64 paddr;
> } __attribute__((packed)) __attribute__((aligned(8)));
>
> +/* Retrieve Attestation Measurement */
> +struct uv_cb_attest {
> + struct uv_cb_header header; /* 0x0000 */
> + uint64_t reserved08[2]; /* 0x0008 */
> + uint64_t arcb_addr; /* 0x0018 */
> + uint64_t continuation_token; /* 0x0020 */
> + uint8_t reserved28[6]; /* 0x0028 */
> + uint16_t user_data_length; /* 0x002e */
> + uint8_t user_data[256]; /* 0x0030 */
> + uint32_t reserved130[3]; /* 0x0130 */
> + uint32_t measurement_length; /* 0x013c */
> + uint64_t measurement_address; /* 0x0140 */
> + uint8_t config_uid[16]; /* 0x0148 */
> + uint32_t reserved158; /* 0x0158 */
> + uint32_t add_data_length; /* 0x015c */
> + uint64_t add_data_address; /* 0x0160 */
> + uint64_t reserved168[4]; /* 0x0168 */
> +} __attribute__((packed)) __attribute__((aligned(8)));
> +
> /* Set Secure Config Parameter */
> struct uv_cb_ssc {
> struct uv_cb_header header;
> diff --git a/s390x/uv-host.c b/s390x/uv-host.c
> index de2e4850..fe49d7b9 100644
> --- a/s390x/uv-host.c
> +++ b/s390x/uv-host.c
> @@ -418,6 +418,7 @@ static struct cmd_list invalid_cmds[] = {
> { "bogus", 0x4242, sizeof(struct uv_cb_header), -1},
> { "share", UVC_CMD_SET_SHARED_ACCESS, sizeof(struct uv_cb_share), BIT_UVC_CMD_SET_SHARED_ACCESS },
> { "unshare", UVC_CMD_REMOVE_SHARED_ACCESS, sizeof(struct uv_cb_share), BIT_UVC_CMD_REMOVE_SHARED_ACCESS },
> + { "attest", UVC_CMD_ATTESTATION, sizeof(struct uv_cb_attest), BIT_UVC_CMD_ATTESTATION },
> { NULL, 0, 0 },
> };
>
next prev parent reply other threads:[~2022-03-23 8:19 UTC|newest]
Thread overview: 14+ messages / expand[flat|nested] mbox.gz Atom feed top
2022-02-22 14:54 [kvm-unit-tests PATCH v3 0/5] s390x: Attestation tests Steffen Eiden
2022-02-22 14:54 ` [kvm-unit-tests PATCH v3 1/5] s390x: uv-host: Add attestation test Steffen Eiden
2022-03-23 8:18 ` Janosch Frank [this message]
2022-02-22 14:54 ` [kvm-unit-tests PATCH v3 2/5] s390x: lib: Add QUI getter Steffen Eiden
2022-02-23 15:37 ` Claudio Imbrenda
2022-03-23 8:07 ` Janosch Frank
2022-02-22 14:54 ` [kvm-unit-tests PATCH v3 3/5] s390x: uv-guest: remove duplicated checks Steffen Eiden
2022-02-22 14:54 ` [kvm-unit-tests PATCH v3 4/5] s390x: uv-guest: add share bit test Steffen Eiden
2022-02-23 15:36 ` Claudio Imbrenda
2022-03-23 8:16 ` Janosch Frank
2022-02-22 14:54 ` [kvm-unit-tests PATCH v3 5/5] s390x: uv-guest: Add attestation tests Steffen Eiden
2022-02-23 15:48 ` Claudio Imbrenda
2022-03-23 8:39 ` Janosch Frank
2022-03-23 10:07 ` Claudio Imbrenda
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=43eac0fb-4635-1e19-90ce-38386aa5b216@linux.ibm.com \
--to=frankja@linux.ibm.com \
--cc=david@redhat.com \
--cc=imbrenda@linux.ibm.com \
--cc=kvm@vger.kernel.org \
--cc=linux-s390@vger.kernel.org \
--cc=seiden@linux.ibm.com \
--cc=thuth@redhat.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.