Re: [PATCH] crypto: ccp - Retry SEV INIT command in case of integrity check failure.

From: Singh, Brijesh
Date: Tue Oct 22 2019 - 21:37:00 EST

Next message: Zhenzhong Duan: "Re: [PATCH v7 3/5] x86/kvm: Add "nopvspin" parameter to disable PV spinlocks"
Previous message: Zhenzhong Duan: "Re: [PATCH v7 2/5] x86/kvm: Change print code to use pr_*() format"
In reply to: David Rientjes: "Re: [PATCH] crypto: ccp - Retry SEV INIT command in case of integrity check failure."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 10/17/19 3:35 PM, Kalra, Ashish wrote:
> From: Ashish Kalra <ashish.kalra@xxxxxxx>
>
> SEV INIT command loads the SEV related persistent data from NVS
> and initializes the platform context. The firmware validates the
> persistent state. If validation fails, the firmware will reset
> the persisent state and return an integrity check failure status.
>
> At this point, a subsequent INIT command should succeed, so retry
> the command. The INIT command retry is only done during driver
> initialization.
>
> Additional enums along with SEV_RET_SECURE_DATA_INVALID are added
> to sev_ret_code to maintain continuity and relevance of enum values.
>
> Signed-off-by: Ashish Kalra <ashish.kalra@xxxxxxx>

Reviewed-by: Brijesh Singh <brijesh.singh@xxxxxxx>

thanks

Next message: Zhenzhong Duan: "Re: [PATCH v7 3/5] x86/kvm: Add "nopvspin" parameter to disable PV spinlocks"
Previous message: Zhenzhong Duan: "Re: [PATCH v7 2/5] x86/kvm: Change print code to use pr_*() format"
In reply to: David Rientjes: "Re: [PATCH] crypto: ccp - Retry SEV INIT command in case of integrity check failure."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]