linux/arch/x86/kvm/vmx/tdx_arch.h

/* SPDX-License-Identifier: GPL-2.0 */
/* architectural constants/data definitions for TDX SEAMCALLs */

#ifndef __KVM_X86_TDX_ARCH_H
#define __KVM_X86_TDX_ARCH_H

#include <linux/types.h>

/* TDX control structure (TDR/TDCS/TDVPS) field access codes */
#define TDX_NON_ARCH			BIT_ULL(63)
#define TDX_CLASS_SHIFT			56
#define TDX_FIELD_MASK			GENMASK_ULL(31, 0)

#define __BUILD_TDX_FIELD(non_arch, class, field)	\
	(((non_arch) ? TDX_NON_ARCH : 0) |		\
	 ((u64)(class) << TDX_CLASS_SHIFT) |		\
	 ((u64)(field) & TDX_FIELD_MASK))

#define BUILD_TDX_FIELD(class, field)			\
	__BUILD_TDX_FIELD(false, (class), (field))

#define BUILD_TDX_FIELD_NON_ARCH(class, field)		\
	__BUILD_TDX_FIELD(true, (class), (field))


/* Class code for TD */
#define TD_CLASS_EXECUTION_CONTROLS	17ULL

/* Class code for TDVPS */
#define TDVPS_CLASS_VMCS		0ULL
#define TDVPS_CLASS_GUEST_GPR		16ULL
#define TDVPS_CLASS_OTHER_GUEST		17ULL
#define TDVPS_CLASS_MANAGEMENT		32ULL

enum tdx_tdcs_execution_control {
	TD_TDCS_EXEC_TSC_OFFSET = 10,
	TD_TDCS_EXEC_TSC_MULTIPLIER = 11,
};

enum tdx_vcpu_guest_other_state {
	TD_VCPU_STATE_DETAILS_NON_ARCH = 0x100,
};

#define TDX_VCPU_STATE_DETAILS_INTR_PENDING	BIT_ULL(0)

static inline bool tdx_vcpu_state_details_intr_pending(u64 vcpu_state_details)
{
	return !!(vcpu_state_details & TDX_VCPU_STATE_DETAILS_INTR_PENDING);
}

/* @field is any of enum tdx_tdcs_execution_control */
#define TDCS_EXEC(field)		BUILD_TDX_FIELD(TD_CLASS_EXECUTION_CONTROLS, (field))

/* @field is the VMCS field encoding */
#define TDVPS_VMCS(field)		BUILD_TDX_FIELD(TDVPS_CLASS_VMCS, (field))

/* @field is any of enum tdx_guest_other_state */
#define TDVPS_STATE(field)		BUILD_TDX_FIELD(TDVPS_CLASS_OTHER_GUEST, (field))
#define TDVPS_STATE_NON_ARCH(field)	BUILD_TDX_FIELD_NON_ARCH(TDVPS_CLASS_OTHER_GUEST, (field))

/* Management class fields */
enum tdx_vcpu_guest_management {
	TD_VCPU_PEND_NMI = 11,
};

/* @field is any of enum tdx_vcpu_guest_management */
#define TDVPS_MANAGEMENT(field)		BUILD_TDX_FIELD(TDVPS_CLASS_MANAGEMENT, (field))

#define TDX_EXTENDMR_CHUNKSIZE		256

struct tdx_cpuid_value {
	u32 eax;
	u32 ebx;
	u32 ecx;
	u32 edx;
} __packed;

#define TDX_TD_ATTR_DEBUG		BIT_ULL(0)
#define TDX_TD_ATTR_SEPT_VE_DISABLE	BIT_ULL(28)
#define TDX_TD_ATTR_PKS			BIT_ULL(30)
#define TDX_TD_ATTR_KL			BIT_ULL(31)
#define TDX_TD_ATTR_PERFMON		BIT_ULL(63)

#define TDX_EXT_EXIT_QUAL_TYPE_MASK	GENMASK(3, 0)
#define TDX_EXT_EXIT_QUAL_TYPE_PENDING_EPT_VIOLATION  6
/*
 * TD_PARAMS is provided as an input to TDH_MNG_INIT, the size of which is 1024B.
 */
struct td_params {
	u64 attributes;
	u64 xfam;
	u16 max_vcpus;
	u8 reserved0[6];

	u64 eptp_controls;
	u64 config_flags;
	u16 tsc_frequency;
	u8  reserved1[38];

	u64 mrconfigid[6];
	u64 mrowner[6];
	u64 mrownerconfig[6];
	u64 reserved2[4];

	union {
		DECLARE_FLEX_ARRAY(struct tdx_cpuid_value, cpuid_values);
		u8 reserved3[768];
	};
} __packed __aligned(1024);

/*
 * Guest uses MAX_PA for GPAW when set.
 * 0: GPA.SHARED bit is GPA[47]
 * 1: GPA.SHARED bit is GPA[51]
 */
#define TDX_CONFIG_FLAGS_MAX_GPAW      BIT_ULL(0)

/*
 * TDH.VP.ENTER, TDG.VP.VMCALL preserves RBP
 * 0: RBP can be used for TDG.VP.VMCALL input. RBP is clobbered.
 * 1: RBP can't be used for TDG.VP.VMCALL input. RBP is preserved.
 */
#define TDX_CONFIG_FLAGS_NO_RBP_MOD	BIT_ULL(2)


/*
 * TDX requires the frequency to be defined in units of 25MHz, which is the
 * frequency of the core crystal clock on TDX-capable platforms, i.e. the TDX
 * module can only program frequencies that are multiples of 25MHz.  The
 * frequency must be between 100mhz and 10ghz (inclusive).
 */
#define TDX_TSC_KHZ_TO_25MHZ(tsc_in_khz)	((tsc_in_khz) / (25 * 1000))
#define TDX_TSC_25MHZ_TO_KHZ(tsc_in_25mhz)	((tsc_in_25mhz) * (25 * 1000))
#define TDX_MIN_TSC_FREQUENCY_KHZ		(100 * 1000)
#define TDX_MAX_TSC_FREQUENCY_KHZ		(10 * 1000 * 1000)

/* Additional Secure EPT entry information */
#define TDX_SEPT_LEVEL_MASK		GENMASK_ULL(2, 0)
#define TDX_SEPT_STATE_MASK		GENMASK_ULL(15, 8)
#define TDX_SEPT_STATE_SHIFT		8

enum tdx_sept_entry_state {
	TDX_SEPT_FREE = 0,
	TDX_SEPT_BLOCKED = 1,
	TDX_SEPT_PENDING = 2,
	TDX_SEPT_PENDING_BLOCKED = 3,
	TDX_SEPT_PRESENT = 4,
};

static inline u8 tdx_get_sept_level(u64 sept_entry_info)
{
	return sept_entry_info & TDX_SEPT_LEVEL_MASK;
}

static inline u8 tdx_get_sept_state(u64 sept_entry_info)
{
	return (sept_entry_info & TDX_SEPT_STATE_MASK) >> TDX_SEPT_STATE_SHIFT;
}

#define MD_FIELD_ID_FEATURES0_TOPOLOGY_ENUM	BIT_ULL(20)

/*
 * TD scope metadata field ID.
 */
#define TD_MD_FIELD_ID_CPUID_VALUES		0x9410000300000000ULL

#endif /* __KVM_X86_TDX_ARCH_H */
KVM: TDX: Define TDX architectural definitions Define architectural definitions for KVM to issue the TDX SEAMCALLs. Structures and values that are architecturally defined in the TDX module specifications the chapter of ABI Reference. Co-developed-by: Tony Lindgren <tony.lindgren@linux.intel.com> Signed-off-by: Tony Lindgren <tony.lindgren@linux.intel.com> Co-developed-by: Sean Christopherson <sean.j.christopherson@intel.com> Signed-off-by: Sean Christopherson <sean.j.christopherson@intel.com> Signed-off-by: Isaku Yamahata <isaku.yamahata@intel.com> Signed-off-by: Rick Edgecombe <rick.p.edgecombe@intel.com> Reviewed-by: Paolo Bonzini <pbonzini@redhat.com> Reviewed-by: Xiaoyao Li <xiaoyao.li@intel.com> --- - Drop old duplicate defines, the x86 core exports what's needed (Kai) Signed-off-by: Paolo Bonzini <pbonzini@redhat.com> 2024-10-30 12:00:25 -07:00			`/* SPDX-License-Identifier: GPL-2.0 */`
			`/* architectural constants/data definitions for TDX SEAMCALLs */`

			`#ifndef __KVM_X86_TDX_ARCH_H`
			`#define __KVM_X86_TDX_ARCH_H`

			`#include <linux/types.h>`

			`/* TDX control structure (TDR/TDCS/TDVPS) field access codes */`
			`#define TDX_NON_ARCH BIT_ULL(63)`
			`#define TDX_CLASS_SHIFT 56`
			`#define TDX_FIELD_MASK GENMASK_ULL(31, 0)`

			`#define __BUILD_TDX_FIELD(non_arch, class, field) \`
			`(((non_arch) ? TDX_NON_ARCH : 0) \| \`
			`((u64)(class) << TDX_CLASS_SHIFT) \| \`
			`((u64)(field) & TDX_FIELD_MASK))`

			`#define BUILD_TDX_FIELD(class, field) \`
			`__BUILD_TDX_FIELD(false, (class), (field))`

			`#define BUILD_TDX_FIELD_NON_ARCH(class, field) \`
			`__BUILD_TDX_FIELD(true, (class), (field))`


			`/* Class code for TD */`
			`#define TD_CLASS_EXECUTION_CONTROLS 17ULL`

			`/* Class code for TDVPS */`
			`#define TDVPS_CLASS_VMCS 0ULL`
			`#define TDVPS_CLASS_GUEST_GPR 16ULL`
			`#define TDVPS_CLASS_OTHER_GUEST 17ULL`
			`#define TDVPS_CLASS_MANAGEMENT 32ULL`

			`enum tdx_tdcs_execution_control {`
			`TD_TDCS_EXEC_TSC_OFFSET = 10,`
			`TD_TDCS_EXEC_TSC_MULTIPLIER = 11,`
			`};`

KVM: TDX: Handle TDX PV HLT hypercall Handle TDX PV HLT hypercall and the interrupt status due to it. TDX guest status is protected, KVM can't get the interrupt status of TDX guest and it assumes interrupt is always allowed unless TDX guest calls TDVMCALL with HLT, which passes the interrupt blocked flag. If the guest halted with interrupt enabled, also query pending RVI by checking bit 0 of TD_VCPU_STATE_DETAILS_NON_ARCH field via a seamcall. Update vt_interrupt_allowed() for TDX based on interrupt blocked flag passed by HLT TDVMCALL. Do not wakeup TD vCPU if interrupt is blocked for VT-d PI. For NMIs, KVM cannot determine the NMI blocking status for TDX guests, so KVM always assumes NMIs are not blocked. In the unlikely scenario where a guest invokes the PV HLT hypercall within an NMI handler, this could result in a spurious wakeup. The guest should implement the PV HLT hypercall within a loop if it truly requires no interruptions, since NMI could be unblocked by an IRET due to an exception occurring before the PV HLT is executed in the NMI handler. Suggested-by: Sean Christopherson <seanjc@google.com> Signed-off-by: Isaku Yamahata <isaku.yamahata@intel.com> Co-developed-by: Binbin Wu <binbin.wu@linux.intel.com> Signed-off-by: Binbin Wu <binbin.wu@linux.intel.com> Message-ID: <20250227012021.1778144-7-binbin.wu@linux.intel.com> Signed-off-by: Paolo Bonzini <pbonzini@redhat.com> 2025-02-27 09:20:07 +08:00			`enum tdx_vcpu_guest_other_state {`
			`TD_VCPU_STATE_DETAILS_NON_ARCH = 0x100,`
			`};`

			`#define TDX_VCPU_STATE_DETAILS_INTR_PENDING BIT_ULL(0)`

			`static inline bool tdx_vcpu_state_details_intr_pending(u64 vcpu_state_details)`
			`{`
			`return !!(vcpu_state_details & TDX_VCPU_STATE_DETAILS_INTR_PENDING);`
			`}`

KVM: TDX: Define TDX architectural definitions Define architectural definitions for KVM to issue the TDX SEAMCALLs. Structures and values that are architecturally defined in the TDX module specifications the chapter of ABI Reference. Co-developed-by: Tony Lindgren <tony.lindgren@linux.intel.com> Signed-off-by: Tony Lindgren <tony.lindgren@linux.intel.com> Co-developed-by: Sean Christopherson <sean.j.christopherson@intel.com> Signed-off-by: Sean Christopherson <sean.j.christopherson@intel.com> Signed-off-by: Isaku Yamahata <isaku.yamahata@intel.com> Signed-off-by: Rick Edgecombe <rick.p.edgecombe@intel.com> Reviewed-by: Paolo Bonzini <pbonzini@redhat.com> Reviewed-by: Xiaoyao Li <xiaoyao.li@intel.com> --- - Drop old duplicate defines, the x86 core exports what's needed (Kai) Signed-off-by: Paolo Bonzini <pbonzini@redhat.com> 2024-10-30 12:00:25 -07:00			`/* @field is any of enum tdx_tdcs_execution_control */`
			`#define TDCS_EXEC(field) BUILD_TDX_FIELD(TD_CLASS_EXECUTION_CONTROLS, (field))`

			`/* @field is the VMCS field encoding */`
			`#define TDVPS_VMCS(field) BUILD_TDX_FIELD(TDVPS_CLASS_VMCS, (field))`

			`/* @field is any of enum tdx_guest_other_state */`
			`#define TDVPS_STATE(field) BUILD_TDX_FIELD(TDVPS_CLASS_OTHER_GUEST, (field))`
			`#define TDVPS_STATE_NON_ARCH(field) BUILD_TDX_FIELD_NON_ARCH(TDVPS_CLASS_OTHER_GUEST, (field))`

			`/* Management class fields */`
			`enum tdx_vcpu_guest_management {`
			`TD_VCPU_PEND_NMI = 11,`
			`};`

			`/* @field is any of enum tdx_vcpu_guest_management */`
			`#define TDVPS_MANAGEMENT(field) BUILD_TDX_FIELD(TDVPS_CLASS_MANAGEMENT, (field))`

			`#define TDX_EXTENDMR_CHUNKSIZE 256`

			`struct tdx_cpuid_value {`
			`u32 eax;`
			`u32 ebx;`
			`u32 ecx;`
			`u32 edx;`
			`} __packed;`

			`#define TDX_TD_ATTR_DEBUG BIT_ULL(0)`
			`#define TDX_TD_ATTR_SEPT_VE_DISABLE BIT_ULL(28)`
			`#define TDX_TD_ATTR_PKS BIT_ULL(30)`
			`#define TDX_TD_ATTR_KL BIT_ULL(31)`
			`#define TDX_TD_ATTR_PERFMON BIT_ULL(63)`

KVM: TDX: Detect unexpected SEPT violations due to pending SPTEs Detect SEPT violations that occur when an SEPT entry is in PENDING state while the TD is configured not to receive #VE on SEPT violations. A TD guest can be configured not to receive #VE by setting SEPT_VE_DISABLE to 1 in tdh_mng_init() or modifying pending_ve_disable to 1 in TDCS when flexible_pending_ve is permitted. In such cases, the TDX module will not inject #VE into the TD upon encountering an EPT violation caused by an SEPT entry in the PENDING state. Instead, TDX module will exit to VMM and set extended exit qualification type to PENDING_EPT_VIOLATION and exit qualification bit 6:3 to 0. Since #VE will not be injected to such TDs, they are not able to be notified to accept a GPA. TD accessing before accepting a private GPA is regarded as an error within the guest. Detect such guest error by inspecting the (extended) exit qualification bits and make such VM dead. Cc: Xiaoyao Li <xiaoyao.li@intel.com> Cc: Rick Edgecombe <rick.p.edgecombe@intel.com> Signed-off-by: Yan Zhao <yan.y.zhao@intel.com> Signed-off-by: Binbin Wu <binbin.wu@linux.intel.com> Message-ID: <20250227012021.1778144-3-binbin.wu@linux.intel.com> Signed-off-by: Paolo Bonzini <pbonzini@redhat.com> 2025-02-27 09:20:03 +08:00			`#define TDX_EXT_EXIT_QUAL_TYPE_MASK GENMASK(3, 0)`
			`#define TDX_EXT_EXIT_QUAL_TYPE_PENDING_EPT_VIOLATION 6`
KVM: TDX: Define TDX architectural definitions Define architectural definitions for KVM to issue the TDX SEAMCALLs. Structures and values that are architecturally defined in the TDX module specifications the chapter of ABI Reference. Co-developed-by: Tony Lindgren <tony.lindgren@linux.intel.com> Signed-off-by: Tony Lindgren <tony.lindgren@linux.intel.com> Co-developed-by: Sean Christopherson <sean.j.christopherson@intel.com> Signed-off-by: Sean Christopherson <sean.j.christopherson@intel.com> Signed-off-by: Isaku Yamahata <isaku.yamahata@intel.com> Signed-off-by: Rick Edgecombe <rick.p.edgecombe@intel.com> Reviewed-by: Paolo Bonzini <pbonzini@redhat.com> Reviewed-by: Xiaoyao Li <xiaoyao.li@intel.com> --- - Drop old duplicate defines, the x86 core exports what's needed (Kai) Signed-off-by: Paolo Bonzini <pbonzini@redhat.com> 2024-10-30 12:00:25 -07:00			`/*`
			`* TD_PARAMS is provided as an input to TDH_MNG_INIT, the size of which is 1024B.`
			`*/`
			`struct td_params {`
			`u64 attributes;`
			`u64 xfam;`
			`u16 max_vcpus;`
			`u8 reserved0[6];`

			`u64 eptp_controls;`
			`u64 config_flags;`
			`u16 tsc_frequency;`
			`u8 reserved1[38];`

			`u64 mrconfigid[6];`
			`u64 mrowner[6];`
			`u64 mrownerconfig[6];`
			`u64 reserved2[4];`

			`union {`
			`DECLARE_FLEX_ARRAY(struct tdx_cpuid_value, cpuid_values);`
			`u8 reserved3[768];`
			`};`
			`} __packed __aligned(1024);`

			`/*`
			`* Guest uses MAX_PA for GPAW when set.`
			`* 0: GPA.SHARED bit is GPA[47]`
			`* 1: GPA.SHARED bit is GPA[51]`
			`*/`
			`#define TDX_CONFIG_FLAGS_MAX_GPAW BIT_ULL(0)`

			`/*`
			`* TDH.VP.ENTER, TDG.VP.VMCALL preserves RBP`
			`* 0: RBP can be used for TDG.VP.VMCALL input. RBP is clobbered.`
			`* 1: RBP can't be used for TDG.VP.VMCALL input. RBP is preserved.`
			`*/`
			`#define TDX_CONFIG_FLAGS_NO_RBP_MOD BIT_ULL(2)`


			`/*`
			`* TDX requires the frequency to be defined in units of 25MHz, which is the`
			`* frequency of the core crystal clock on TDX-capable platforms, i.e. the TDX`
			`* module can only program frequencies that are multiples of 25MHz. The`
			`* frequency must be between 100mhz and 10ghz (inclusive).`
			`*/`
			`#define TDX_TSC_KHZ_TO_25MHZ(tsc_in_khz) ((tsc_in_khz) / (25 * 1000))`
			`#define TDX_TSC_25MHZ_TO_KHZ(tsc_in_25mhz) ((tsc_in_25mhz) * (25 * 1000))`
			`#define TDX_MIN_TSC_FREQUENCY_KHZ (100 * 1000)`
			`#define TDX_MAX_TSC_FREQUENCY_KHZ (10 * 1000 * 1000)`

KVM: TDX: Implement hooks to propagate changes of TDP MMU mirror page table Implement hooks in TDX to propagate changes of mirror page table to private EPT, including changes for page table page adding/removing, guest page adding/removing. TDX invokes corresponding SEAMCALLs in the hooks. - Hook link_external_spt propagates adding page table page into private EPT. - Hook set_external_spte tdx_sept_set_private_spte() in this patch only handles adding of guest private page when TD is finalized. Later patches will handle the case of adding guest private pages before TD finalization. - Hook free_external_spt It is invoked when page table page is removed in mirror page table, which currently must occur at TD tear down phase, after hkid is freed. - Hook remove_external_spte It is invoked when guest private page is removed in mirror page table, which can occur when TD is active, e.g. during shared <-> private conversion and slot move/deletion. This hook is ensured to be triggered before hkid is freed, because gmem fd is released along with all private leaf mappings zapped before freeing hkid at VM destroy. TDX invokes below SEAMCALLs sequentially: 1) TDH.MEM.RANGE.BLOCK (remove RWX bits from a private EPT entry), 2) TDH.MEM.TRACK (increases TD epoch) 3) TDH.MEM.PAGE.REMOVE (remove the private EPT entry and untrack the guest page). TDH.MEM.PAGE.REMOVE can't succeed without TDH.MEM.RANGE.BLOCK and TDH.MEM.TRACK being called successfully. SEAMCALL TDH.MEM.TRACK is called in function tdx_track() to enforce that TLB tracking will be performed by TDX module for private EPT. Signed-off-by: Isaku Yamahata <isaku.yamahata@intel.com> Co-developed-by: Rick Edgecombe <rick.p.edgecombe@intel.com> Signed-off-by: Rick Edgecombe <rick.p.edgecombe@intel.com> Co-developed-by: Yan Zhao <yan.y.zhao@intel.com> Signed-off-by: Yan Zhao <yan.y.zhao@intel.com> --- - Remove TDX_ERROR_SEPT_BUSY and Add tdx_operand_busy() helper (Binbin) Signed-off-by: Paolo Bonzini <pbonzini@redhat.com> 2024-11-12 15:38:04 +08:00			`/* Additional Secure EPT entry information */`
			`#define TDX_SEPT_LEVEL_MASK GENMASK_ULL(2, 0)`
			`#define TDX_SEPT_STATE_MASK GENMASK_ULL(15, 8)`
			`#define TDX_SEPT_STATE_SHIFT 8`

			`enum tdx_sept_entry_state {`
			`TDX_SEPT_FREE = 0,`
			`TDX_SEPT_BLOCKED = 1,`
			`TDX_SEPT_PENDING = 2,`
			`TDX_SEPT_PENDING_BLOCKED = 3,`
			`TDX_SEPT_PRESENT = 4,`
			`};`

			`static inline u8 tdx_get_sept_level(u64 sept_entry_info)`
			`{`
			`return sept_entry_info & TDX_SEPT_LEVEL_MASK;`
			`}`

			`static inline u8 tdx_get_sept_state(u64 sept_entry_info)`
			`{`
			`return (sept_entry_info & TDX_SEPT_STATE_MASK) >> TDX_SEPT_STATE_SHIFT;`
			`}`

KVM: TDX: Get system-wide info about TDX module on initialization TDX KVM needs system-wide information about the TDX module. Generate the data based on tdx_sysinfo td_conf CPUID data. Signed-off-by: Isaku Yamahata <isaku.yamahata@intel.com> Co-developed-by: Xiaoyao Li <xiaoyao.li@intel.com> Signed-off-by: Xiaoyao Li <xiaoyao.li@intel.com> Co-developed-by: Tony Lindgren <tony.lindgren@linux.intel.com> Signed-off-by: Tony Lindgren <tony.lindgren@linux.intel.com> Signed-off-by: Rick Edgecombe <rick.p.edgecombe@intel.com> Reviewed-by: Binbin Wu <binbin.wu@linux.intel.com> --- - Clarify comment about EAX[23:16] in td_init_cpuid_entry2() (Xiaoyao) - Add comment for configurable CPUID bits (Xiaoyao) Signed-off-by: Paolo Bonzini <pbonzini@redhat.com> 2024-10-30 12:00:29 -07:00			`#define MD_FIELD_ID_FEATURES0_TOPOLOGY_ENUM BIT_ULL(20)`

KVM: x86: Introduce KVM_TDX_GET_CPUID Implement an IOCTL to allow userspace to read the CPUID bit values for a configured TD. The TDX module doesn't provide the ability to set all CPUID bits. Instead some are configured indirectly, or have fixed values. But it does allow for the final resulting CPUID bits to be read. This information will be useful for userspace to understand the configuration of the TD, and set KVM's copy via KVM_SET_CPUID2. Signed-off-by: Xiaoyao Li <xiaoyao.li@intel.com> Co-developed-by: Tony Lindgren <tony.lindgren@linux.intel.com> Signed-off-by: Tony Lindgren <tony.lindgren@linux.intel.com> Signed-off-by: Rick Edgecombe <rick.p.edgecombe@intel.com> --- - Fix subleaf mask check (Binbin) - Search all possible sub-leafs (Francesco Lavra) - Reduce off-by-one error sensitve code (Francesco, Xiaoyao) - Handle buffers too small from userspace (Xiaoyao) - Read max CPUID from TD instead of using fixed values (Xiaoyao) Signed-off-by: Paolo Bonzini <pbonzini@redhat.com> 2024-10-30 12:00:37 -07:00			`/*`
			`* TD scope metadata field ID.`
			`*/`
			`#define TD_MD_FIELD_ID_CPUID_VALUES 0x9410000300000000ULL`

KVM: TDX: Define TDX architectural definitions Define architectural definitions for KVM to issue the TDX SEAMCALLs. Structures and values that are architecturally defined in the TDX module specifications the chapter of ABI Reference. Co-developed-by: Tony Lindgren <tony.lindgren@linux.intel.com> Signed-off-by: Tony Lindgren <tony.lindgren@linux.intel.com> Co-developed-by: Sean Christopherson <sean.j.christopherson@intel.com> Signed-off-by: Sean Christopherson <sean.j.christopherson@intel.com> Signed-off-by: Isaku Yamahata <isaku.yamahata@intel.com> Signed-off-by: Rick Edgecombe <rick.p.edgecombe@intel.com> Reviewed-by: Paolo Bonzini <pbonzini@redhat.com> Reviewed-by: Xiaoyao Li <xiaoyao.li@intel.com> --- - Drop old duplicate defines, the x86 core exports what's needed (Kai) Signed-off-by: Paolo Bonzini <pbonzini@redhat.com> 2024-10-30 12:00:25 -07:00			`#endif /* __KVM_X86_TDX_ARCH_H */`