| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Fri, 23 Jun 2017 16:23:59 -0500
From: Brijesh Singh <brijesh.singh@....com>
To: Pavel Machek <pavel@....cz>
Cc: brijesh.singh@....com, linux-crypto@...r.kernel.org,
linux-kernel@...r.kernel.org, "Hook, Gary" <Gary.Hook@....com>,
thomas.lendacky@....com, herbert@...dor.apana.org.au,
davem@...emloft.net
Subject: Re: [PATCH 0/3] Introduce AMD Secure Processor device
On 06/22/2017 08:25 AM, Pavel Machek wrote:
> On Thu 2017-06-22 06:42:01, Brijesh Singh wrote:
>> CCP device (drivers/crypto/ccp/ccp.ko) is part of AMD Secure Processor,
>> which is not dedicated solely to crypto. The AMD Secure Processor includes
>> CCP and PSP (Platform Secure Processor) devices.
>>
>> This patch series adds a framework that allows functional component of the
>> AMD Secure Processor to be initialized and handled appropriately. The series
>> does not makes any logic modification into CCP - it refactors the code to
>> integerate CCP into AMD secure processor framework.
>
> Ok, so this is just preparation. When finished, what services will it provide
> to Linux userland?
Yes, this is in preparation to add PSP [1] and SEV (Secure Encrypted Virtualization)
[2] support. When finished, the SEV will provide:
a) in-kernel API to communicate with SEV FW inside the AMD Secure Processor
b) userspace ioctl to manage the platform keys/certificates
I have posted PSP and SEV patches as part of SEV RFC, see below
[1] http://marc.info/?l=linux-mm&m=148846780431232&w=2
[2] http://marc.info/?l=linux-mm&m=148847075032602&w=2
-Brijesh
Powered by blists - more mailing lists