forked from Minki/linux
2a6170dfe7
The Platform Security Processor (PSP) is part of the AMD Secure Processor (AMD-SP) functionality. The PSP is a dedicated processor that provides support for key management commands in Secure Encrypted Virtualization (SEV) mode, along with software-based Trusted Execution Environment (TEE) to enable third-party trusted applications. Note that the key management functionality provided by the SEV firmware can be used outside of the kvm-amd driver hence it doesn't need to depend on CONFIG_KVM_AMD. Cc: Paolo Bonzini <pbonzini@redhat.com> Cc: "Radim Krčmář" <rkrcmar@redhat.com> Cc: Borislav Petkov <bp@suse.de> Cc: Herbert Xu <herbert@gondor.apana.org.au> Cc: Gary Hook <gary.hook@amd.com> Cc: Tom Lendacky <thomas.lendacky@amd.com> Cc: linux-crypto@vger.kernel.org Cc: kvm@vger.kernel.org Cc: linux-kernel@vger.kernel.org Improvements-by: Borislav Petkov <bp@suse.de> Signed-off-by: Brijesh Singh <brijesh.singh@amd.com> Reviewed-by: Borislav Petkov <bp@suse.de>
47 lines
1.5 KiB
Plaintext
47 lines
1.5 KiB
Plaintext
config CRYPTO_DEV_CCP_DD
|
|
tristate "Secure Processor device driver"
|
|
depends on CPU_SUP_AMD || ARM64
|
|
default m
|
|
help
|
|
Provides AMD Secure Processor device driver.
|
|
If you choose 'M' here, this module will be called ccp.
|
|
|
|
config CRYPTO_DEV_SP_CCP
|
|
bool "Cryptographic Coprocessor device"
|
|
default y
|
|
depends on CRYPTO_DEV_CCP_DD
|
|
select HW_RANDOM
|
|
select DMA_ENGINE
|
|
select DMADEVICES
|
|
select CRYPTO_SHA1
|
|
select CRYPTO_SHA256
|
|
help
|
|
Provides the support for AMD Cryptographic Coprocessor (CCP) device
|
|
which can be used to offload encryption operations such as SHA, AES
|
|
and more.
|
|
|
|
config CRYPTO_DEV_CCP_CRYPTO
|
|
tristate "Encryption and hashing offload support"
|
|
default m
|
|
depends on CRYPTO_DEV_CCP_DD
|
|
depends on CRYPTO_DEV_SP_CCP
|
|
select CRYPTO_HASH
|
|
select CRYPTO_BLKCIPHER
|
|
select CRYPTO_AUTHENC
|
|
select CRYPTO_RSA
|
|
help
|
|
Support for using the cryptographic API with the AMD Cryptographic
|
|
Coprocessor. This module supports offload of SHA and AES algorithms.
|
|
If you choose 'M' here, this module will be called ccp_crypto.
|
|
|
|
config CRYPTO_DEV_SP_PSP
|
|
bool "Platform Security Processor (PSP) device"
|
|
default y
|
|
depends on CRYPTO_DEV_CCP_DD && X86_64
|
|
help
|
|
Provide support for the AMD Platform Security Processor (PSP).
|
|
The PSP is a dedicated processor that provides support for key
|
|
management commands in Secure Encrypted Virtualization (SEV) mode,
|
|
along with software-based Trusted Execution Environment (TEE) to
|
|
enable third-party trusted applications.
|