main/doxygen/sev__snp__cpuid_8h_source.html

// Copyright (c) Microsoft Corporation. All rights reserved.

// Licensed under the Apache 2.0 License.

#pragma once


#include "ccf/ds/hex.h"

#include "ccf/ds/json.h"


#include <cstdint>

#include <stdexcept>

#include <string>


namespace ccf::pal::snp

{


#pragma pack(push, 1)

  // AMD CPUID specification. Chapter 2 Fn0000_0001_EAX

  // Milan: 0x00A00F11

  // Genoa: 0x00A10F11

  // Turin: 0x00B00F21

  // Note: The CPUID is little-endian so the hex_string is reversed


  struct CPUID

  {

    uint8_t stepping : 4;

    uint8_t base_model : 4;

    uint8_t base_family : 4;

    uint8_t reserved : 4;

    uint8_t extended_model : 4;

    uint8_t extended_family : 8;

    uint8_t reserved2 : 4;


    bool operator==(const CPUID&) const = default;


    [[nodiscard]] std::string hex_str() const

    {

      CPUID buf = *this;

      auto* buf_ptr = reinterpret_cast<uint8_t*>(&buf);

      const std::span<const uint8_t> tcb_bytes{

        buf_ptr, buf_ptr + sizeof(CPUID)};

      return fmt::format(

        "{:02x}", fmt::join(tcb_bytes.rbegin(), tcb_bytes.rend(), ""));

    }


    [[nodiscard]] uint8_t get_family_id() const

    {

      return this->base_family + this->extended_family;

    }


    [[nodiscard]] uint8_t get_model_id() const

    {

      return (this->extended_model << 4) | this->base_model;

    }


  };


#pragma pack(pop)

  DECLARE_JSON_TYPE(CPUID);

  DECLARE_JSON_REQUIRED_FIELDS(

    CPUID, stepping, base_model, base_family, extended_model, extended_family);

  static_assert(

    sizeof(CPUID) == sizeof(uint32_t), "Cannot cast CPUID to uint32_t");

  static CPUID cpuid_from_hex(const std::string& hex_str)

  {

    CPUID ret{};

    auto* buf_ptr = reinterpret_cast<uint8_t*>(&ret);

    ccf::ds::from_hex(hex_str, buf_ptr, buf_ptr + sizeof(CPUID));

    std::reverse(

      buf_ptr, buf_ptr + sizeof(CPUID)); // fix little endianness of AMD

    return ret;

  }


  // On SEVSNP cpuid cannot be trusted and must later be validated against an

  // attestation.

  static CPUID get_cpuid_untrusted()

  {

    uint32_t ieax = 1;

    uint64_t iebx = 0;

    uint64_t iecx = 0;

    uint64_t iedx = 0;

    uint32_t oeax = 0;

    uint64_t oebx = 0;

    uint64_t oecx = 0;

    uint64_t oedx = 0;

    // pass in e{b,c,d}x to prevent cpuid from blatting other registers

    asm volatile("cpuid"

                 : "=a"(oeax), "=b"(oebx), "=c"(oecx), "=d"(oedx)

                 : "a"(ieax), "b"(iebx), "c"(iecx), "d"(iedx));

    auto cpuid = *reinterpret_cast<CPUID*>(&oeax);

    return cpuid;

  }


  enum class ProductName : uint8_t

  {

    Milan,

    Genoa,

    Turin

  };


  inline std::string to_string(ProductName product)

  {

    switch (product)

    {

      case ProductName::Milan:

        return "Milan";

      case ProductName::Genoa:

        return "Genoa";

      case ProductName::Turin:

        return "Turin";

      default:

        throw std::logic_error("Unknown SEV-SNP product");

    }

  }


  DECLARE_JSON_ENUM(

    ProductName,

    {

      {ProductName::Milan, "Milan"},

      {ProductName::Genoa, "Genoa"},

      {ProductName::Turin, "Turin"},

    });


  using AMDFamily = uint8_t;

  using AMDModel = uint8_t;


  inline ProductName get_sev_snp_product(AMDFamily family, AMDModel model)

  {

    constexpr uint8_t milan_family = 0x19;

    constexpr uint8_t milan_model = 0x01;

    if (family == milan_family && model == milan_model)

    {

      return ProductName::Milan;

    }

    constexpr uint8_t genoa_family = 0x19;

    constexpr uint8_t genoa_model = 0x11;

    if (family == genoa_family && model == genoa_model)

    {

      return ProductName::Genoa;

    }

    constexpr uint8_t turin_family = 0x1A;

    constexpr uint8_t turin_model = 0x02;

    if (family == turin_family && model == turin_model)

    {

      return ProductName::Turin;

    }

    throw std::logic_error(fmt::format(

      "SEV-SNP: Unsupported CPUID family {} model {}", family, model));

  }


  inline ProductName get_sev_snp_product(const CPUID& cpuid)

  {

    return get_sev_snp_product(cpuid.get_family_id(), cpuid.get_model_id());

  }


  inline std::string get_cpuid_of_snp_sev_product(ProductName product)

  {

    switch (product)

    {

      case ProductName::Milan:

        return "00a00f11";

      case ProductName::Genoa:

        return "00a10f11";

      case ProductName::Turin:

        return "00b00f11";

      default:

        throw std::logic_error(fmt::format(

          "SEV-SNP: Unsupported product for CPUID: {}", to_string(product)));

    }

  }


}

hex.h

json.h

DECLARE_JSON_REQUIRED_FIELDS
#define DECLARE_JSON_REQUIRED_FIELDS(TYPE,...)
Definition json.h:718

DECLARE_JSON_TYPE
#define DECLARE_JSON_TYPE(TYPE)
Definition json.h:667

DECLARE_JSON_ENUM
#define DECLARE_JSON_ENUM(TYPE,...)
Definition json.h:841

ccf::pal::snp
Definition attestation_sev_snp.h:24

ccf::pal::snp::to_string
std::string to_string(ProductName product)
Definition sev_snp_cpuid.h:93

ccf::pal::snp::AMDModel
uint8_t AMDModel
Definition sev_snp_cpuid.h:117

ccf::pal::snp::get_sev_snp_product
ProductName get_sev_snp_product(AMDFamily family, AMDModel model)
Definition sev_snp_cpuid.h:119

ccf::pal::snp::AMDFamily
uint8_t AMDFamily
Definition sev_snp_cpuid.h:116

ccf::pal::snp::ProductName
ProductName
Definition sev_snp_cpuid.h:87

ccf::pal::snp::ProductName::Turin
@ Turin

ccf::pal::snp::ProductName::Milan
@ Milan

ccf::pal::snp::ProductName::Genoa
@ Genoa

ccf::pal::snp::get_cpuid_of_snp_sev_product
std::string get_cpuid_of_snp_sev_product(ProductName product)
Definition sev_snp_cpuid.h:148

ccf::pal::snp::CPUID
Definition sev_snp_cpuid.h:22

ccf::pal::snp::CPUID::get_family_id
uint8_t get_family_id() const
Definition sev_snp_cpuid.h:41

ccf::pal::snp::CPUID::extended_model
uint8_t extended_model
Definition sev_snp_cpuid.h:27

ccf::pal::snp::CPUID::extended_family
uint8_t extended_family
Definition sev_snp_cpuid.h:28

ccf::pal::snp::CPUID::hex_str
std::string hex_str() const
Definition sev_snp_cpuid.h:32

ccf::pal::snp::CPUID::base_family
uint8_t base_family
Definition sev_snp_cpuid.h:25

ccf::pal::snp::CPUID::get_model_id
uint8_t get_model_id() const
Definition sev_snp_cpuid.h:45

ccf::pal::snp::CPUID::reserved
uint8_t reserved
Definition sev_snp_cpuid.h:26

ccf::pal::snp::CPUID::operator==
bool operator==(const CPUID &) const =default

ccf::pal::snp::CPUID::stepping
uint8_t stepping
Definition sev_snp_cpuid.h:23

ccf::pal::snp::CPUID::base_model
uint8_t base_model
Definition sev_snp_cpuid.h:24

ccf::pal::snp::CPUID::reserved2
uint8_t reserved2
Definition sev_snp_cpuid.h:29