Linux 5.6 Adds TEE For AMD's Secure Processor To Run "Trusted Applications" On Raven APUs

Written by Michael Larabel in AMD on 28 December 2019 at 07:57 AM EST. 6 Comments
AMD
Last month I wrote about AMD working on TEE driver support to load "trusted applications" onto the AMD Secure Processor under Linux. That work is now queued for introduction with Linux 5.6 and wired through for Raven Ridge APUs.

The AMD TEE (Trusted Execution Environment) support is for loading sensitive data and secure/trusted applications for running on the Arm-based AMD Secure Processor / PSP that's found embedded into modern AMD CPUs. While found on embedded through server AMD CPUs, with the Linux 5.6 support it appears all focused on Raven Ridge APUs - possibly due to Google Chromebook requirements, just as we've seen HDCP content protection support for Linux with Raven Ridge in recent kernels. The Chromebook angle would also explain why it's taken years for AMD to enable their Secure Processor usage with TEE under Linux until recently, just like their belated HDCP support and other work that has appeared to be pushed along by Google's interests.

The TEE support for Raven APUs with Linux 5.6 provides a "secure environment" for running Trusted Applications (TAs) and requires using their specific TEE interface for loading the binaries into the trusted environment, mapping shared memory, and related functionality.

Until the Linux 5.6 kernel cycle kicks off in about one month, the AMD TEE / Secure Processor patches are currently queued as part of the cryptodev code.
6 Comments
Related News
AMD Prepping Fixes & Enhancements For P-State CPUFreq Driver
AMD SEV-SNP Hypervisor Support Nears The Mainline Linux Kernel
AMD Announces Versal Gen 2 Adaptive SoCs - AI Focused & Newer Arm Cores
SolidRun Launches Bedrock R8000 As First Industrial PCs With Ryzen Embedded 8000 Series
AMD Announces Ryzen Embedded 8000 Series With Focus On Industrial AI
AMD XDNA Linux Driver For Ryzen AI, Zen 5 Compiler Support & Other AMD Q1 Highlights
About The Author
Michael Larabel

Michael Larabel is the principal author of Phoronix.com and founded the site in 2004 with a focus on enriching the Linux hardware experience. Michael has written more than 20,000 articles covering the state of Linux hardware support, Linux performance, graphics drivers, and other topics. Michael is also the lead developer of the Phoronix Test Suite, Phoromatic, and OpenBenchmarking.org automated benchmarking software. He can be followed via Twitter, LinkedIn, or contacted via MichaelLarabel.com.

Popular News This Week
Rust-Written LAVD Kernel Scheduler Shows Promising Results For Linux Gaming
Linus Torvalds Injects Tabs To Thwart Kconfig Parsers Not Correctly Handling Them
Former Nouveau Lead Developer Joins NVIDIA, Continues Working On Open-Source Driver
Fedora Linux 40 Cleared For Release Next Week
Mozilla Finally Begins Offering Firefox ARM64 Linux Binaries
Ubuntu 24.04 Supports Easy Installation Of OpenZFS Root File-System With Encryption
openSUSE Factory Achieves Bit-By-Bit Reproducible Builds
Linux 6.10 Preps A Kernel Panic Screen - Sort Of A "Blue Screen of Death"