/linux-6.8/Documentation/devicetree/bindings/crypto/ |
D | inside-secure,safexcel.yaml | 1 # SPDX-License-Identifier: GPL-2.0-only OR BSD-2-Clause 3 --- 4 $id: http://devicetree.org/schemas/crypto/inside-secure,safexcel.yaml# 5 $schema: http://devicetree.org/meta-schemas/core.yaml# 7 title: Inside Secure SafeXcel cryptographic engine 10 - Antoine Tenart <atenart@kernel.org> 15 - const: inside-secure,safexcel-eip197b 16 - const: inside-secure,safexcel-eip197d 17 - const: inside-secure,safexcel-eip97ies 18 - const: inside-secure,safexcel-eip197 [all …]
|
/linux-6.8/drivers/nfc/microread/ |
D | Kconfig | 1 # SPDX-License-Identifier: GPL-2.0-only 6 This module contains the main code for Inside Secure microread 11 tristate "Inside Secure Microread device support (I2C)" 16 Inside microread chipsets. Select this if your platform is using 23 tristate "Inside Secure Microread device support (MEI)" 28 Inside microread chipsets. Select this if your microread chipset
|
D | mei.c | 1 // SPDX-License-Identifier: GPL-2.0 5 * HCI based Driver for Inside Secure microread NFC Chip 28 return -ENOMEM; in microread_mei_probe() 32 &phy->hdev); in microread_mei_probe() 46 microread_remove(phy->hdev); in microread_mei_remove()
|
/linux-6.8/Documentation/devicetree/bindings/rng/ |
D | omap_rng.yaml | 1 # SPDX-License-Identifier: (GPL-2.0-only OR BSD-2-Clause) 3 --- 5 $schema: http://devicetree.org/meta-schemas/core.yaml# 7 title: OMAP SoC and Inside-Secure HWRNG Module 10 - Jayesh Choudhary <j-choudhary@ti.com> 15 - ti,omap2-rng 16 - ti,omap4-rng 17 - inside-secure,safexcel-eip76 33 - description: EIP150 gateable clock 34 - description: Main gateable clock [all …]
|
/linux-6.8/drivers/s390/crypto/ |
D | zcrypt_ccamisc.h | 1 /* SPDX-License-Identifier: GPL-2.0+ */ 17 #define TOKTYPE_NON_CCA 0x00 /* Non-CCA key token */ 41 /* inside view of a CCA secure key token (only type 0x01 version 0x04) */ 57 /* inside view of a variable length symmetric cipher AES key token */ 81 /* AES-128 512 640 */ 82 /* AES-192 576 640 */ 83 /* AES-256 640 640 */ 97 /* inside view of an CCA secure ECC private key */ 107 u8 htype; /* hash method, 0x02 for SHA-256 */ 133 * Simple check if the token is a valid CCA secure AES data key [all …]
|
D | zcrypt_ep11misc.h | 1 /* SPDX-License-Identifier: GPL-2.0+ */ 29 /* inside view of an EP11 secure key blob */ 50 return (kb->version == EP11_STRUCT_MAGIC); in is_ep11_keyblob() 115 * Generate (random) EP11 AES secure key. 121 * Generate EP11 AES secure key with given clear key value. 129 * - apqn is online and is in fact an EP11 apqn 130 * - if cardnr is not FFFF only apqns with this cardnr 131 * - if domain is not FFFF only apqns with this domainnr 132 * - if minhwtype > 0 only apqns with hwtype >= minhwtype 133 * - if minapi > 0 only apqns with API_ord_nr >= minapi [all …]
|
D | zcrypt_ccamisc.c | 1 // SPDX-License-Identifier: GPL-2.0+ 49 * Simple check if the token is a valid CCA secure AES data key 60 if (t->type != TOKTYPE_CCA_INTERNAL) { in cca_check_secaeskeytoken() 63 __func__, (int)t->type, TOKTYPE_CCA_INTERNAL); in cca_check_secaeskeytoken() 64 return -EINVAL; in cca_check_secaeskeytoken() 66 if (t->version != TOKVER_CCA_AES) { in cca_check_secaeskeytoken() 69 __func__, (int)t->version, TOKVER_CCA_AES); in cca_check_secaeskeytoken() 70 return -EINVAL; in cca_check_secaeskeytoken() 72 if (keybitsize > 0 && t->bitsize != keybitsize) { in cca_check_secaeskeytoken() 75 __func__, (int)t->bitsize, keybitsize); in cca_check_secaeskeytoken() [all …]
|
/linux-6.8/Documentation/devicetree/bindings/arm/tegra/ |
D | nvidia,tegra194-cbb.yaml | 1 # SPDX-License-Identifier: (GPL-2.0-only OR BSD-2-Clause) 3 --- 4 $id: http://devicetree.org/schemas/arm/tegra/nvidia,tegra194-cbb.yaml# 5 $schema: http://devicetree.org/meta-schemas/core.yaml# 10 - Sumit Gupta <sumitg@nvidia.com> 15 multiple hierarchical sub-NOCs (Network-on-Chip) and connects various 19 by the NOCs inside the CBB. NOCs reporting errors are cluster NOCs 20 "AON-NOC, SCE-NOC, RCE-NOC, BPMP-NOC, CV-NOC" and "CBB Central NOC" 28 - For CCPLEX (CPU Complex) initiator, the driver sets ERD bit. So, the 31 - For other initiators, the ERD is disabled. So, the access issuing [all …]
|
/linux-6.8/drivers/crypto/inside-secure/ |
D | safexcel.c | 1 // SPDX-License-Identifier: GPL-2.0 5 * Antoine Tenart <antoine.tenart@free-electrons.com> 10 #include <linux/dma-mapping.h> 45 writel(0, priv->base + EIP197_FLUE_IFC_LUT(i)); in eip197_trc_cache_setupvirt() 51 for (i = 0; i < priv->config.rings; i++) { in eip197_trc_cache_setupvirt() 52 writel(0, priv->base + EIP197_FLUE_CACHEBASE_LO(i)); in eip197_trc_cache_setupvirt() 53 writel(0, priv->base + EIP197_FLUE_CACHEBASE_HI(i)); in eip197_trc_cache_setupvirt() 55 priv->base + EIP197_FLUE_CONFIG(i)); in eip197_trc_cache_setupvirt() 57 writel(0, priv->base + EIP197_FLUE_OFFSETS); in eip197_trc_cache_setupvirt() 58 writel(0, priv->base + EIP197_FLUE_ARC4_OFFSET); in eip197_trc_cache_setupvirt() [all …]
|
/linux-6.8/drivers/crypto/ |
D | Kconfig | 1 # SPDX-License-Identifier: GPL-2.0-only 39 called padlock-aes. 53 called padlock-sha. 61 Say 'Y' here to use the AMD Geode LX processor on-board AES 65 will be called geode-aes. 106 Please note that creation of protected keys from secure keys 131 and uses triple-DES to generate secure random numbers like the 132 ANSI X9.17 standard. User-space programs access the 133 pseudo-random-number device through the char device /dev/prandom. 149 sub-units. One set provides the Modular Arithmetic Unit, [all …]
|
D | Makefile | 1 # SPDX-License-Identifier: GPL-2.0 2 obj-$(CONFIG_CRYPTO_DEV_ALLWINNER) += allwinner/ 3 obj-$(CONFIG_CRYPTO_DEV_ASPEED) += aspeed/ 4 obj-$(CONFIG_CRYPTO_DEV_ATMEL_AES) += atmel-aes.o 5 obj-$(CONFIG_CRYPTO_DEV_ATMEL_SHA) += atmel-sha.o 6 obj-$(CONFIG_CRYPTO_DEV_ATMEL_TDES) += atmel-tdes.o 7 # __init ordering requires atmel-i2c being before atmel-ecc and atmel-sha204a. 8 obj-$(CONFIG_CRYPTO_DEV_ATMEL_I2C) += atmel-i2c.o 9 obj-$(CONFIG_CRYPTO_DEV_ATMEL_ECC) += atmel-ecc.o 10 obj-$(CONFIG_CRYPTO_DEV_ATMEL_SHA204A) += atmel-sha204a.o [all …]
|
/linux-6.8/Documentation/arch/arm/ |
D | tcm.rst | 2 ARM TCM (Tightly-Coupled Memory) handling in Linux 7 Some ARM SoCs have a so-called TCM (Tightly-Coupled Memory). 8 This is usually just a few (4-64) KiB of RAM inside the ARM 11 Due to being embedded inside the CPU, the TCM has a 12 Harvard-architecture, so there is an ITCM (instruction TCM) 24 determine if ITCM (bits 1-0) and/or DTCM (bit 17-16) is present 47 be able to lock and hide one of the banks for use by the secure 52 - FIQ and other interrupt handlers that need deterministic 55 - Idle loops where all external RAM is set to self-refresh 56 retention mode, so only on-chip RAM is accessible by [all …]
|
/linux-6.8/arch/x86/kvm/ |
D | Kconfig | 1 # SPDX-License-Identifier: GPL-2.0 14 operating systems inside virtual machines (guests). 22 tristate "Kernel-based Virtual Machine (KVM) support" 64 bool "Compile KVM with -Werror" 65 # Disallow KVM's -Werror if KASAN is enabled, e.g. to guard against 69 # Building KVM with -Werror and KASAN is still doable via enabling 70 # the kernel-wide WERROR=y. 73 Add -Werror to the build flags for KVM. 78 bool "Enable support for KVM software-protected VMs" 83 Enable support for KVM software-protected VMs. Currently, software- [all …]
|
/linux-6.8/Documentation/devicetree/bindings/mfd/ |
D | nxp,bbnsm.yaml | 1 # SPDX-License-Identifier: (GPL-2.0-only OR BSD-2-Clause) 3 --- 5 $schema: http://devicetree.org/meta-schemas/core.yaml# 7 title: NXP Battery-Backed Non-Secure Module 10 - Jacky Bai <ping.bai@nxp.com> 13 NXP BBNSM serves as non-volatile logic and storage for the system. 17 significant 32 bits of the real-time counter match the value in the 19 The ON/OFF logic inside the BBNSM allows for connecting directly to 26 - enum: 27 - nxp,imx93-bbnsm [all …]
|
/linux-6.8/arch/s390/include/uapi/asm/ |
D | pkey.h | 1 /* SPDX-License-Identifier: GPL-2.0 WITH Linux-syscall-note */ 23 #define SECKEYBLOBSIZE 64 /* secure key blob size is always 64 bytes */ 83 /* Struct to hold a CCA AES secure key blob */ 85 __u8 seckey[SECKEYBLOBSIZE]; /* the secure key blob */ 115 * Generate CCA AES secure key. 121 struct pkey_seckey seckey; /* out: the secure key blob */ 126 * Construct CCA AES secure key from clear key value 133 struct pkey_seckey seckey; /* out: the secure key blob */ 138 * Fabricate AES protected key from a CCA AES secure key 143 struct pkey_seckey seckey; /* in: the secure key blob */ [all …]
|
/linux-6.8/Documentation/arch/x86/ |
D | amd-memory-encryption.rst | 1 .. SPDX-License-Identifier: GPL-2.0 7 Secure Memory Encryption (SME) and Secure Encrypted Virtualization (SEV) are 19 memory. Private memory is encrypted with the guest-specific key, while shared 37 as private. All the DMA operations inside the guest must be performed on shared 39 is operating in 64-bit or 32-bit PAE mode, in all other modes the SEV hardware 78 - Supported: 81 - Enabled: 84 - Active: 87 kernel is non-zero). 99 Secure Nested Paging (SNP) [all …]
|
/linux-6.8/arch/nios2/include/asm/ |
D | thread_info.h | 2 * NiosII low-level thread information 31 * - this struct should fit entirely inside of one cache line 32 * - this struct shares the supervisor stack pages 33 * - if the contents of this structure are changed, the assembly constants 62 return (struct thread_info *)(sp & ~(THREAD_SIZE - 1)); in current_thread_info() 68 * - these are process state flags that various assembly files may need to 70 * - pending work-to-be-done flags are in LSW 71 * - other flags in MSW 78 #define TIF_SECCOMP 5 /* secure computing */
|
/linux-6.8/arch/s390/include/asm/ |
D | thread_info.h | 1 /* SPDX-License-Identifier: GPL-2.0 */ 13 #include <asm/asm-offsets.h> 27 #define STACK_INIT_OFFSET (THREAD_SIZE - STACK_FRAME_OVERHEAD - __PT_SIZE) 35 * - this struct should fit entirely inside of one cache line 36 * - this struct shares the supervisor stack pages 37 * - if the contents of this structure are changed, the assembly constants must also be changed 67 #define TIF_UPROBE 3 /* breakpointed or single-stepping */ 85 #define TIF_SECCOMP 26 /* secure computing */
|
/linux-6.8/arch/microblaze/include/asm/ |
D | thread_info.h | 1 /* SPDX-License-Identifier: GPL-2.0 */ 22 * - this struct should fit entirely inside of one cache line 23 * - this struct shares the supervisor stack pages 24 * - if the contents of this structure are changed, the assembly constants 38 /* non-volatile registers */ 62 unsigned long status; /* thread-synchronous flags */ 85 return (struct thread_info *)(sp & ~(THREAD_SIZE-1)); in current_thread_info() 93 * - these are process state flags that various assembly files may 95 * - pending work-to-be-done flags are in LSW 96 * - other flags in MSW [all …]
|
/linux-6.8/arch/xtensa/include/asm/ |
D | thread_info.h | 2 * include/asm-xtensa/thread_info.h 8 * Copyright (C) 2001 - 2005 Tensilica Inc. 25 * - this struct should fit entirely inside of one cache line 26 * - this struct shares the supervisor stack pages 27 * - if the contents of this structure are changed, the assembly constants 51 unsigned long status; /* thread-synchronous flags */ 65 * If i-th bit is set then coprocessor state is loaded into the 113 * - these are process state flags that various assembly files may need to access 125 #define TIF_SECCOMP 10 /* secure computing */ 143 #define THREAD_SIZE_ORDER (KERNEL_STACK_SHIFT - PAGE_SHIFT)
|
/linux-6.8/security/integrity/ima/ |
D | Kconfig | 1 # SPDX-License-Identifier: GPL-2.0-only 25 an aggregate integrity value over this list inside the 70 limited to 255 characters. The 'ima-ng' measurement list 76 bool "ima-ng (default)" 78 bool "ima-sig" 83 default "ima-ng" if IMA_NG_TEMPLATE 84 default "ima-sig" if IMA_SIG_TEMPLATE 154 <http://linux-ima.sourceforge.net> 164 based on run time secure boot flags. 212 Kernel module signatures can only be verified by IMA-appraisal, [all …]
|
/linux-6.8/Documentation/virt/kvm/x86/ |
D | amd-memory-encryption.rst | 1 .. SPDX-License-Identifier: GPL-2.0 4 Secure Encrypted Virtualization (SEV) 10 Secure Encrypted Virtualization (SEV) is a feature found on AMD processors. 12 SEV is an extension to the AMD-V architecture which supports running 46 Hence, the ASID for the SEV-enabled guests must be from 1 to a maximum value 53 Secure Processor (AMD-SP). Firmware running inside the AMD-SP provides a secure 56 information, see the SEV Key Management spec [api-spec]_ 62 likely return ``EFAULT``). If non-NULL, the argument to KVM_MEMORY_ENCRYPT_OP 79 are defined in ``<linux/psp-dev.h>``. 85 --------------- [all …]
|
/linux-6.8/arch/powerpc/ |
D | Kconfig | 1 # SPDX-License-Identifier: GPL-2.0 5 def_bool PPC64 && $(cc-option, -mabi=elfv2) 8 def_bool PPC64 && $(cc-option, -mcpu=power10 -mprefixed) 11 # Clang has a bug (https://github.com/llvm/llvm-project/issues/62372) 12 # where pcrel code is not generated if -msoft-float, -mno-altivec, or 13 # -mno-vsx options are also given. Without these options, fp/vec 16 def_bool PPC64 && CC_IS_GCC && $(cc-option, -mcpu=power10 -mpcrel) 35 # On Book3S 64, the default virtual address space for 64-bit processes 38 # between bottom-up and top-down allocations for applications that 41 default 29 if PPC_BOOK3S_64 && PPC_64K_PAGES # 29 = 45 (32T) - 16 (64K) [all …]
|
/linux-6.8/arch/arm/mach-omap2/ |
D | pm34xx.c | 1 // SPDX-License-Identifier: GPL-2.0-only 5 * Copyright (C) 2006-2008 Nokia Corporation 13 * Richard Woodruff <r-woodruff2@ti.com> 42 #include "cm-regbits-34xx.h" 43 #include "prm-regbits-34xx.h" 47 #include "omap-secure.h" 97 * FIXME: This function should be called before entering off-mode after 98 * OMAP3 secure services have been accessed. Currently it is only called 99 * once during boot sequence, but this works as we are not using secure 110 * otherwise the WFI executed inside the ROM code in omap3_save_secure_ram_context() [all …]
|
/linux-6.8/drivers/char/hw_random/ |
D | omap-rng.c | 2 * omap-rng.c - RNG driver for TI OMAP CPU family 137 * struct omap_rng_pdata - RNG IP block-specific data 163 return __raw_readl(priv->base + priv->pdata->regs[reg]); in omap_rng_read() 169 __raw_writel(val, priv->base + priv->pdata->regs[reg]); in omap_rng_write() 179 priv = (struct omap_rng_dev *)rng->priv; in omap_rng_do_read() 181 if (max < priv->pdata->data_size) in omap_rng_do_read() 185 present = priv->pdata->data_present(priv); in omap_rng_do_read() 194 memcpy_fromio(data, priv->base + priv->pdata->regs[RNG_OUTPUT_0_REG], in omap_rng_do_read() 195 priv->pdata->data_size); in omap_rng_do_read() 197 if (priv->pdata->regs[RNG_INTACK_REG]) in omap_rng_do_read() [all …]
|