Home
last modified time | relevance | path

Searched +full:inside +full:- +full:secure (Results 1 – 25 of 113) sorted by relevance

12345

/linux-6.8/Documentation/devicetree/bindings/crypto/
Dinside-secure,safexcel.yaml1 # SPDX-License-Identifier: GPL-2.0-only OR BSD-2-Clause
3 ---
4 $id: http://devicetree.org/schemas/crypto/inside-secure,safexcel.yaml#
5 $schema: http://devicetree.org/meta-schemas/core.yaml#
7 title: Inside Secure SafeXcel cryptographic engine
10 - Antoine Tenart <atenart@kernel.org>
15 - const: inside-secure,safexcel-eip197b
16 - const: inside-secure,safexcel-eip197d
17 - const: inside-secure,safexcel-eip97ies
18 - const: inside-secure,safexcel-eip197
[all …]
/linux-6.8/drivers/nfc/microread/
DKconfig1 # SPDX-License-Identifier: GPL-2.0-only
6 This module contains the main code for Inside Secure microread
11 tristate "Inside Secure Microread device support (I2C)"
16 Inside microread chipsets. Select this if your platform is using
23 tristate "Inside Secure Microread device support (MEI)"
28 Inside microread chipsets. Select this if your microread chipset
Dmei.c1 // SPDX-License-Identifier: GPL-2.0
5 * HCI based Driver for Inside Secure microread NFC Chip
28 return -ENOMEM; in microread_mei_probe()
32 &phy->hdev); in microread_mei_probe()
46 microread_remove(phy->hdev); in microread_mei_remove()
/linux-6.8/Documentation/devicetree/bindings/rng/
Domap_rng.yaml1 # SPDX-License-Identifier: (GPL-2.0-only OR BSD-2-Clause)
3 ---
5 $schema: http://devicetree.org/meta-schemas/core.yaml#
7 title: OMAP SoC and Inside-Secure HWRNG Module
10 - Jayesh Choudhary <j-choudhary@ti.com>
15 - ti,omap2-rng
16 - ti,omap4-rng
17 - inside-secure,safexcel-eip76
33 - description: EIP150 gateable clock
34 - description: Main gateable clock
[all …]
/linux-6.8/drivers/s390/crypto/
Dzcrypt_ccamisc.h1 /* SPDX-License-Identifier: GPL-2.0+ */
17 #define TOKTYPE_NON_CCA 0x00 /* Non-CCA key token */
41 /* inside view of a CCA secure key token (only type 0x01 version 0x04) */
57 /* inside view of a variable length symmetric cipher AES key token */
81 /* AES-128 512 640 */
82 /* AES-192 576 640 */
83 /* AES-256 640 640 */
97 /* inside view of an CCA secure ECC private key */
107 u8 htype; /* hash method, 0x02 for SHA-256 */
133 * Simple check if the token is a valid CCA secure AES data key
[all …]
Dzcrypt_ep11misc.h1 /* SPDX-License-Identifier: GPL-2.0+ */
29 /* inside view of an EP11 secure key blob */
50 return (kb->version == EP11_STRUCT_MAGIC); in is_ep11_keyblob()
115 * Generate (random) EP11 AES secure key.
121 * Generate EP11 AES secure key with given clear key value.
129 * - apqn is online and is in fact an EP11 apqn
130 * - if cardnr is not FFFF only apqns with this cardnr
131 * - if domain is not FFFF only apqns with this domainnr
132 * - if minhwtype > 0 only apqns with hwtype >= minhwtype
133 * - if minapi > 0 only apqns with API_ord_nr >= minapi
[all …]
Dzcrypt_ccamisc.c1 // SPDX-License-Identifier: GPL-2.0+
49 * Simple check if the token is a valid CCA secure AES data key
60 if (t->type != TOKTYPE_CCA_INTERNAL) { in cca_check_secaeskeytoken()
63 __func__, (int)t->type, TOKTYPE_CCA_INTERNAL); in cca_check_secaeskeytoken()
64 return -EINVAL; in cca_check_secaeskeytoken()
66 if (t->version != TOKVER_CCA_AES) { in cca_check_secaeskeytoken()
69 __func__, (int)t->version, TOKVER_CCA_AES); in cca_check_secaeskeytoken()
70 return -EINVAL; in cca_check_secaeskeytoken()
72 if (keybitsize > 0 && t->bitsize != keybitsize) { in cca_check_secaeskeytoken()
75 __func__, (int)t->bitsize, keybitsize); in cca_check_secaeskeytoken()
[all …]
/linux-6.8/Documentation/devicetree/bindings/arm/tegra/
Dnvidia,tegra194-cbb.yaml1 # SPDX-License-Identifier: (GPL-2.0-only OR BSD-2-Clause)
3 ---
4 $id: http://devicetree.org/schemas/arm/tegra/nvidia,tegra194-cbb.yaml#
5 $schema: http://devicetree.org/meta-schemas/core.yaml#
10 - Sumit Gupta <sumitg@nvidia.com>
15 multiple hierarchical sub-NOCs (Network-on-Chip) and connects various
19 by the NOCs inside the CBB. NOCs reporting errors are cluster NOCs
20 "AON-NOC, SCE-NOC, RCE-NOC, BPMP-NOC, CV-NOC" and "CBB Central NOC"
28 - For CCPLEX (CPU Complex) initiator, the driver sets ERD bit. So, the
31 - For other initiators, the ERD is disabled. So, the access issuing
[all …]
/linux-6.8/drivers/crypto/inside-secure/
Dsafexcel.c1 // SPDX-License-Identifier: GPL-2.0
5 * Antoine Tenart <antoine.tenart@free-electrons.com>
10 #include <linux/dma-mapping.h>
45 writel(0, priv->base + EIP197_FLUE_IFC_LUT(i)); in eip197_trc_cache_setupvirt()
51 for (i = 0; i < priv->config.rings; i++) { in eip197_trc_cache_setupvirt()
52 writel(0, priv->base + EIP197_FLUE_CACHEBASE_LO(i)); in eip197_trc_cache_setupvirt()
53 writel(0, priv->base + EIP197_FLUE_CACHEBASE_HI(i)); in eip197_trc_cache_setupvirt()
55 priv->base + EIP197_FLUE_CONFIG(i)); in eip197_trc_cache_setupvirt()
57 writel(0, priv->base + EIP197_FLUE_OFFSETS); in eip197_trc_cache_setupvirt()
58 writel(0, priv->base + EIP197_FLUE_ARC4_OFFSET); in eip197_trc_cache_setupvirt()
[all …]
/linux-6.8/drivers/crypto/
DKconfig1 # SPDX-License-Identifier: GPL-2.0-only
39 called padlock-aes.
53 called padlock-sha.
61 Say 'Y' here to use the AMD Geode LX processor on-board AES
65 will be called geode-aes.
106 Please note that creation of protected keys from secure keys
131 and uses triple-DES to generate secure random numbers like the
132 ANSI X9.17 standard. User-space programs access the
133 pseudo-random-number device through the char device /dev/prandom.
149 sub-units. One set provides the Modular Arithmetic Unit,
[all …]
DMakefile1 # SPDX-License-Identifier: GPL-2.0
2 obj-$(CONFIG_CRYPTO_DEV_ALLWINNER) += allwinner/
3 obj-$(CONFIG_CRYPTO_DEV_ASPEED) += aspeed/
4 obj-$(CONFIG_CRYPTO_DEV_ATMEL_AES) += atmel-aes.o
5 obj-$(CONFIG_CRYPTO_DEV_ATMEL_SHA) += atmel-sha.o
6 obj-$(CONFIG_CRYPTO_DEV_ATMEL_TDES) += atmel-tdes.o
7 # __init ordering requires atmel-i2c being before atmel-ecc and atmel-sha204a.
8 obj-$(CONFIG_CRYPTO_DEV_ATMEL_I2C) += atmel-i2c.o
9 obj-$(CONFIG_CRYPTO_DEV_ATMEL_ECC) += atmel-ecc.o
10 obj-$(CONFIG_CRYPTO_DEV_ATMEL_SHA204A) += atmel-sha204a.o
[all …]
/linux-6.8/Documentation/arch/arm/
Dtcm.rst2 ARM TCM (Tightly-Coupled Memory) handling in Linux
7 Some ARM SoCs have a so-called TCM (Tightly-Coupled Memory).
8 This is usually just a few (4-64) KiB of RAM inside the ARM
11 Due to being embedded inside the CPU, the TCM has a
12 Harvard-architecture, so there is an ITCM (instruction TCM)
24 determine if ITCM (bits 1-0) and/or DTCM (bit 17-16) is present
47 be able to lock and hide one of the banks for use by the secure
52 - FIQ and other interrupt handlers that need deterministic
55 - Idle loops where all external RAM is set to self-refresh
56 retention mode, so only on-chip RAM is accessible by
[all …]
/linux-6.8/arch/x86/kvm/
DKconfig1 # SPDX-License-Identifier: GPL-2.0
14 operating systems inside virtual machines (guests).
22 tristate "Kernel-based Virtual Machine (KVM) support"
64 bool "Compile KVM with -Werror"
65 # Disallow KVM's -Werror if KASAN is enabled, e.g. to guard against
69 # Building KVM with -Werror and KASAN is still doable via enabling
70 # the kernel-wide WERROR=y.
73 Add -Werror to the build flags for KVM.
78 bool "Enable support for KVM software-protected VMs"
83 Enable support for KVM software-protected VMs. Currently, software-
[all …]
/linux-6.8/Documentation/devicetree/bindings/mfd/
Dnxp,bbnsm.yaml1 # SPDX-License-Identifier: (GPL-2.0-only OR BSD-2-Clause)
3 ---
5 $schema: http://devicetree.org/meta-schemas/core.yaml#
7 title: NXP Battery-Backed Non-Secure Module
10 - Jacky Bai <ping.bai@nxp.com>
13 NXP BBNSM serves as non-volatile logic and storage for the system.
17 significant 32 bits of the real-time counter match the value in the
19 The ON/OFF logic inside the BBNSM allows for connecting directly to
26 - enum:
27 - nxp,imx93-bbnsm
[all …]
/linux-6.8/arch/s390/include/uapi/asm/
Dpkey.h1 /* SPDX-License-Identifier: GPL-2.0 WITH Linux-syscall-note */
23 #define SECKEYBLOBSIZE 64 /* secure key blob size is always 64 bytes */
83 /* Struct to hold a CCA AES secure key blob */
85 __u8 seckey[SECKEYBLOBSIZE]; /* the secure key blob */
115 * Generate CCA AES secure key.
121 struct pkey_seckey seckey; /* out: the secure key blob */
126 * Construct CCA AES secure key from clear key value
133 struct pkey_seckey seckey; /* out: the secure key blob */
138 * Fabricate AES protected key from a CCA AES secure key
143 struct pkey_seckey seckey; /* in: the secure key blob */
[all …]
/linux-6.8/Documentation/arch/x86/
Damd-memory-encryption.rst1 .. SPDX-License-Identifier: GPL-2.0
7 Secure Memory Encryption (SME) and Secure Encrypted Virtualization (SEV) are
19 memory. Private memory is encrypted with the guest-specific key, while shared
37 as private. All the DMA operations inside the guest must be performed on shared
39 is operating in 64-bit or 32-bit PAE mode, in all other modes the SEV hardware
78 - Supported:
81 - Enabled:
84 - Active:
87 kernel is non-zero).
99 Secure Nested Paging (SNP)
[all …]
/linux-6.8/arch/nios2/include/asm/
Dthread_info.h2 * NiosII low-level thread information
31 * - this struct should fit entirely inside of one cache line
32 * - this struct shares the supervisor stack pages
33 * - if the contents of this structure are changed, the assembly constants
62 return (struct thread_info *)(sp & ~(THREAD_SIZE - 1)); in current_thread_info()
68 * - these are process state flags that various assembly files may need to
70 * - pending work-to-be-done flags are in LSW
71 * - other flags in MSW
78 #define TIF_SECCOMP 5 /* secure computing */
/linux-6.8/arch/s390/include/asm/
Dthread_info.h1 /* SPDX-License-Identifier: GPL-2.0 */
13 #include <asm/asm-offsets.h>
27 #define STACK_INIT_OFFSET (THREAD_SIZE - STACK_FRAME_OVERHEAD - __PT_SIZE)
35 * - this struct should fit entirely inside of one cache line
36 * - this struct shares the supervisor stack pages
37 * - if the contents of this structure are changed, the assembly constants must also be changed
67 #define TIF_UPROBE 3 /* breakpointed or single-stepping */
85 #define TIF_SECCOMP 26 /* secure computing */
/linux-6.8/arch/microblaze/include/asm/
Dthread_info.h1 /* SPDX-License-Identifier: GPL-2.0 */
22 * - this struct should fit entirely inside of one cache line
23 * - this struct shares the supervisor stack pages
24 * - if the contents of this structure are changed, the assembly constants
38 /* non-volatile registers */
62 unsigned long status; /* thread-synchronous flags */
85 return (struct thread_info *)(sp & ~(THREAD_SIZE-1)); in current_thread_info()
93 * - these are process state flags that various assembly files may
95 * - pending work-to-be-done flags are in LSW
96 * - other flags in MSW
[all …]
/linux-6.8/arch/xtensa/include/asm/
Dthread_info.h2 * include/asm-xtensa/thread_info.h
8 * Copyright (C) 2001 - 2005 Tensilica Inc.
25 * - this struct should fit entirely inside of one cache line
26 * - this struct shares the supervisor stack pages
27 * - if the contents of this structure are changed, the assembly constants
51 unsigned long status; /* thread-synchronous flags */
65 * If i-th bit is set then coprocessor state is loaded into the
113 * - these are process state flags that various assembly files may need to access
125 #define TIF_SECCOMP 10 /* secure computing */
143 #define THREAD_SIZE_ORDER (KERNEL_STACK_SHIFT - PAGE_SHIFT)
/linux-6.8/security/integrity/ima/
DKconfig1 # SPDX-License-Identifier: GPL-2.0-only
25 an aggregate integrity value over this list inside the
70 limited to 255 characters. The 'ima-ng' measurement list
76 bool "ima-ng (default)"
78 bool "ima-sig"
83 default "ima-ng" if IMA_NG_TEMPLATE
84 default "ima-sig" if IMA_SIG_TEMPLATE
154 <http://linux-ima.sourceforge.net>
164 based on run time secure boot flags.
212 Kernel module signatures can only be verified by IMA-appraisal,
[all …]
/linux-6.8/Documentation/virt/kvm/x86/
Damd-memory-encryption.rst1 .. SPDX-License-Identifier: GPL-2.0
4 Secure Encrypted Virtualization (SEV)
10 Secure Encrypted Virtualization (SEV) is a feature found on AMD processors.
12 SEV is an extension to the AMD-V architecture which supports running
46 Hence, the ASID for the SEV-enabled guests must be from 1 to a maximum value
53 Secure Processor (AMD-SP). Firmware running inside the AMD-SP provides a secure
56 information, see the SEV Key Management spec [api-spec]_
62 likely return ``EFAULT``). If non-NULL, the argument to KVM_MEMORY_ENCRYPT_OP
79 are defined in ``<linux/psp-dev.h>``.
85 ---------------
[all …]
/linux-6.8/arch/powerpc/
DKconfig1 # SPDX-License-Identifier: GPL-2.0
5 def_bool PPC64 && $(cc-option, -mabi=elfv2)
8 def_bool PPC64 && $(cc-option, -mcpu=power10 -mprefixed)
11 # Clang has a bug (https://github.com/llvm/llvm-project/issues/62372)
12 # where pcrel code is not generated if -msoft-float, -mno-altivec, or
13 # -mno-vsx options are also given. Without these options, fp/vec
16 def_bool PPC64 && CC_IS_GCC && $(cc-option, -mcpu=power10 -mpcrel)
35 # On Book3S 64, the default virtual address space for 64-bit processes
38 # between bottom-up and top-down allocations for applications that
41 default 29 if PPC_BOOK3S_64 && PPC_64K_PAGES # 29 = 45 (32T) - 16 (64K)
[all …]
/linux-6.8/arch/arm/mach-omap2/
Dpm34xx.c1 // SPDX-License-Identifier: GPL-2.0-only
5 * Copyright (C) 2006-2008 Nokia Corporation
13 * Richard Woodruff <r-woodruff2@ti.com>
42 #include "cm-regbits-34xx.h"
43 #include "prm-regbits-34xx.h"
47 #include "omap-secure.h"
97 * FIXME: This function should be called before entering off-mode after
98 * OMAP3 secure services have been accessed. Currently it is only called
99 * once during boot sequence, but this works as we are not using secure
110 * otherwise the WFI executed inside the ROM code in omap3_save_secure_ram_context()
[all …]
/linux-6.8/drivers/char/hw_random/
Domap-rng.c2 * omap-rng.c - RNG driver for TI OMAP CPU family
137 * struct omap_rng_pdata - RNG IP block-specific data
163 return __raw_readl(priv->base + priv->pdata->regs[reg]); in omap_rng_read()
169 __raw_writel(val, priv->base + priv->pdata->regs[reg]); in omap_rng_write()
179 priv = (struct omap_rng_dev *)rng->priv; in omap_rng_do_read()
181 if (max < priv->pdata->data_size) in omap_rng_do_read()
185 present = priv->pdata->data_present(priv); in omap_rng_do_read()
194 memcpy_fromio(data, priv->base + priv->pdata->regs[RNG_OUTPUT_0_REG], in omap_rng_do_read()
195 priv->pdata->data_size); in omap_rng_do_read()
197 if (priv->pdata->regs[RNG_INTACK_REG]) in omap_rng_do_read()
[all …]

12345