| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <cover.1753389962.git.ashish.kalra@amd.com> Date: Thu, 24 Jul 2025 21:13:48 +0000 From: Ashish Kalra <Ashish.Kalra@....com> To: <thomas.lendacky@....com>, <john.allen@....com>, <herbert@...dor.apana.org.au>, <davem@...emloft.net> CC: <seanjc@...gle.com>, <pbonzini@...hat.com>, <michael.roth@....com>, <linux-crypto@...r.kernel.org>, <linux-kernel@...r.kernel.org> Subject: [PATCH 0/2] crypto: ccp - Add AMD Seamless Firmware Servicing (SFS) driver From: Ashish Kalra <ashish.kalra@....com> AMD Seamless Firmware Servicing (SFS) is a secure method to allow non-persistent updates to running firmware and settings without requiring BIOS reflash and/or system reset. SFS does not address anything that runs on the x86 processors and it can be used to update ASP firmware, modules, register settings and update firmware for other microprocessors like TMPM, etc. SFS driver support adds ioctl support to communicate the SFS commands to the ASP/PSP by using the TEE mailbox interface. The Seamless Firmware Servicing (SFS) driver is added as a PSP sub-device. Includes a pre-patch for the SEV driver to add new API interface to extend the hypervisor fixed pages list passed to SNP_INIT_EX to allow other PSP sub-devices such as the SFS driver to add their HV_Fixed pages to this list. For detailed information, please look at the SFS specifications: https://www.amd.com/content/dam/amd/en/documents/epyc-technical-docs/specifications/58604.pdf Ashish Kalra (2): crypto: ccp - Add new API for extending HV_Fixed Pages crypto: ccp - Add AMD Seamless Firmware Servicing (SFS) driver drivers/crypto/ccp/Makefile | 3 +- drivers/crypto/ccp/psp-dev.c | 20 ++ drivers/crypto/ccp/psp-dev.h | 8 +- drivers/crypto/ccp/sev-dev.c | 88 ++++++++ drivers/crypto/ccp/sev-dev.h | 3 + drivers/crypto/ccp/sfs.c | 316 ++++++++++++++++++++++++++++ drivers/crypto/ccp/sfs.h | 53 +++++ include/linux/psp-platform-access.h | 2 + include/uapi/linux/psp-sfs.h | 87 ++++++++ 9 files changed, 578 insertions(+), 2 deletions(-) create mode 100644 drivers/crypto/ccp/sfs.c create mode 100644 drivers/crypto/ccp/sfs.h create mode 100644 include/uapi/linux/psp-sfs.h -- 2.34.1
Powered by blists - more mailing lists