• Brijesh Singh's avatar
    crypto: ccp: Add Secure Encrypted Virtualization (SEV) command support · 200664d5
    Brijesh Singh authored
    AMD's new Secure Encrypted Virtualization (SEV) feature allows the
    memory contents of virtual machines to be transparently encrypted with a
    key unique to the VM. The programming and management of the encryption
    keys are handled by the AMD Secure Processor (AMD-SP) which exposes the
    commands for these tasks. The complete spec is available at:
    Extend the AMD-SP driver to provide the following support:
     - an in-kernel API to communicate with the SEV firmware. The API can be
       used by the hypervisor to create encryption context for a SEV guest.
     - a userspace IOCTL to manage the platform certificates.
    Cc: Paolo Bonzini <pbonzini@redhat.com>
    Cc: "Radim Krčmář" <rkrcmar@redhat.com>
    Cc: Borislav Petkov <bp@suse.de>
    Cc: Herbert Xu <herbert@gondor.apana.org.au>
    Cc: Gary Hook <gary.hook@amd.com>
    Cc: Tom Lendacky <thomas.lendacky@amd.com>
    Cc: linux-crypto@vger.kernel.org
    Cc: kvm@vger.kernel.org
    Cc: linux-kernel@vger.kernel.org
    Improvements-by: default avatarBorislav Petkov <bp@suse.de>
    Signed-off-by: default avatarBrijesh Singh <brijesh.singh@amd.com>
sp-dev.h 3.77 KB