Hi Chenxu Wang,

The situation did not change since we last answered queries around Memory Protection Engine:
https://lists.trustedfirmware.org/archives/list/tf-a@lists.trustedfirmware.org/message/BTMKV5U73EZFSS66SWFPO4WXSFGMHLYG/
https://lists.trustedfirmware.org/archives/list/tf-a@lists.trustedfirmware.org/message/ZS6354RMW4KCLSWZU7BEPWQI62ALSTT3/

See below brief answers to the 3 questions:

On question 1. I appreciate the FVP Base model might have some support as I see MEC related option (e.g. cluster0.mec_support_level)
Although this option is not exercised in TF-A firmware stacks.

q.2. TF-A firmware components do not support MEC / MPE as of now. That may be planned in future.

q.3. I am not aware of such capability but better reach Arm support around extended FVP usage.

Regards,
Olivier.





From: Chenxu Wang via TF-A <tf-a@lists.trustedfirmware.org>
Sent: 11 September 2023 10:56
To: tf-a@lists.trustedfirmware.org <tf-a@lists.trustedfirmware.org>
Subject: [TF-A] Questions about memory encryption in FVP & TF-A
 
Hi all,

I find that the latest Arm A-profile manual (DDI0487_J_a) mention
several registers/instructions related to memory encryption (e.g.,
MECID-related registers). So can I ask two questions about it?

1. Is the FVP (I use the Base RevC AEM) support Memory Encryption
Context (MEC) and Memory Protection Engine (MPE)? They are critical to
memory encryption. If no, do we have some solutions to simulate them
and verify memory encryption?
2. Does current TF-A support managing MPE, or other hardware related
to memory encryption?

Besides that, one problem for curiosity (only related to FVP).

3. I find some PCI-E device can use hardware encryption (example,
NVIDIA H100 GPU). Can we attach this device to FVP's PCI-E port?
Assume it has already connected to my Host PC via PCI-E.

Sincerely,
WANG Chenxu
--
TF-A mailing list -- tf-a@lists.trustedfirmware.org
To unsubscribe send an email to tf-a-leave@lists.trustedfirmware.org