Linux 5.6 Adds TEE For AMD's Secure Processor To Run "Trusted Applications" On Raven APUs

Written by Michael Larabel in AMD on 28 December 2019 at 07:57 AM EST. 6 Comments
AMD
Last month I wrote about AMD working on TEE driver support to load "trusted applications" onto the AMD Secure Processor under Linux. That work is now queued for introduction with Linux 5.6 and wired through for Raven Ridge APUs.

The AMD TEE (Trusted Execution Environment) support is for loading sensitive data and secure/trusted applications for running on the Arm-based AMD Secure Processor / PSP that's found embedded into modern AMD CPUs. While found on embedded through server AMD CPUs, with the Linux 5.6 support it appears all focused on Raven Ridge APUs - possibly due to Google Chromebook requirements, just as we've seen HDCP content protection support for Linux with Raven Ridge in recent kernels. The Chromebook angle would also explain why it's taken years for AMD to enable their Secure Processor usage with TEE under Linux until recently, just like their belated HDCP support and other work that has appeared to be pushed along by Google's interests.

The TEE support for Raven APUs with Linux 5.6 provides a "secure environment" for running Trusted Applications (TAs) and requires using their specific TEE interface for loading the binaries into the trusted environment, mapping shared memory, and related functionality.

Until the Linux 5.6 kernel cycle kicks off in about one month, the AMD TEE / Secure Processor patches are currently queued as part of the cryptodev code.
6 Comments
Related News
ASUS TUF GAMING X670E PLUS Seeing Linux Sensors Support
AMD Hardware Feedback Interface "HFI" Patches Updated For The Linux Kernel
AMD P-State Driver Improvements Getting Ready For Linux 6.14
New AMD XDNA Linux Driver Patches Add Ryzen AI NPU6 IP, Other Improvements
AMD NPU Firmware Upstreamed For The Ryzen AI AMDXDNA Driver Coming In Linux 6.14
AMD Per-Core Energy Counter Support Slated For Linux 6.14
About The Author
Michael Larabel

Michael Larabel is the principal author of Phoronix.com and founded the site in 2004 with a focus on enriching the Linux hardware experience. Michael has written more than 20,000 articles covering the state of Linux hardware support, Linux performance, graphics drivers, and other topics. Michael is also the lead developer of the Phoronix Test Suite, Phoromatic, and OpenBenchmarking.org automated benchmarking software. He can be followed via Twitter, LinkedIn, or contacted via MichaelLarabel.com.

Popular News This Week
OpenWrt Affected By Security Issue That Could Have Led To Compromised Build Artifacts
Linus Torvalds Comes Out Against "Completely Broken" x86_64 Feature Levels
Linux EFI Zboot Abandoning "Compression Library Museum", Focusing On Gzip & Zstd
COSMIC Alpha 4 Released For System76's Rust-Based Desktop
Ptyxis Becomes Ubuntu's Recommended Replacement To GNOME Terminal
How AMD Is Taking Standard C/C++ Code To Run Directly On GPUs
GNU Shepherd 1.0 Service Manager Released As "Solid Tool" Alternative To systemd
KDE Starts December By Landing A Number Of New Features