Re: [PATCH 6/7] x86/boot/compressed/64: Check SEV encryption in 32-bit boot-path

From: Joerg Roedel
Date: Tue Mar 09 2021 - 05:03:30 EST

Next message: Aurélien Aptel: "Re: [PATCH] CIFS: Prevent error log on spurious oplock break"
Previous message: Lukasz Luba: "Re: [PATCH 5/5] powercap/drivers/dtpm: Scale the power with the load"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, Mar 02, 2021 at 08:43:53PM +0100, Borislav Petkov wrote:
> On Wed, Feb 10, 2021 at 11:21:34AM +0100, Joerg Roedel wrote:
> > + /*
> > + * Store the sme_me_mask as an indicator that SEV is active. It will be
> > + * set again in startup_64().
>
> So why bother? Or does something needs it before that?

This was actually a bug. The startup32_check_sev_cbit() needs something
to skip the check when SEV is not active. Therefore the value is set
here in sme_me_mask, but the function later checks sev_status.

I fixed it by setting sev_status to 1 here (indicates SEV is active).

Regards,

Joerg

Next message: Aurélien Aptel: "Re: [PATCH] CIFS: Prevent error log on spurious oplock break"
Previous message: Lukasz Luba: "Re: [PATCH 5/5] powercap/drivers/dtpm: Scale the power with the load"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]