Hi all,
I find that the latest Arm A-profile manual (DDI0487_J_a) mention several registers/instructions related to memory encryption (e.g., MECID-related registers). So can I ask two questions about it?
1. Is the FVP (I use the Base RevC AEM) support Memory Encryption Context (MEC) and Memory Protection Engine (MPE)? They are critical to memory encryption. If no, do we have some solutions to simulate them and verify memory encryption? 2. Does current TF-A support managing MPE, or other hardware related to memory encryption?
Besides that, one problem for curiosity (only related to FVP).
3. I find some PCI-E device can use hardware encryption (example, NVIDIA H100 GPU). Can we attach this device to FVP's PCI-E port? Assume it has already connected to my Host PC via PCI-E.
Sincerely, WANG Chenxu
Hi Chenxu Wang,
The situation did not change since we last answered queries around Memory Protection Engine: https://lists.trustedfirmware.org/archives/list/tf-a@lists.trustedfirmware.o... https://lists.trustedfirmware.org/archives/list/tf-a@lists.trustedfirmware.o...
See below brief answers to the 3 questions:
On question 1. I appreciate the FVP Base model might have some support as I see MEC related option (e.g. cluster0.mec_support_level) Although this option is not exercised in TF-A firmware stacks.
q.2. TF-A firmware components do not support MEC / MPE as of now. That may be planned in future.
q.3. I am not aware of such capability but better reach Arm support around extended FVP usage.
Regards, Olivier.
________________________________ From: Chenxu Wang via TF-A tf-a@lists.trustedfirmware.org Sent: 11 September 2023 10:56 To: tf-a@lists.trustedfirmware.org tf-a@lists.trustedfirmware.org Subject: [TF-A] Questions about memory encryption in FVP & TF-A
Hi all,
I find that the latest Arm A-profile manual (DDI0487_J_a) mention several registers/instructions related to memory encryption (e.g., MECID-related registers). So can I ask two questions about it?
1. Is the FVP (I use the Base RevC AEM) support Memory Encryption Context (MEC) and Memory Protection Engine (MPE)? They are critical to memory encryption. If no, do we have some solutions to simulate them and verify memory encryption? 2. Does current TF-A support managing MPE, or other hardware related to memory encryption?
Besides that, one problem for curiosity (only related to FVP).
3. I find some PCI-E device can use hardware encryption (example, NVIDIA H100 GPU). Can we attach this device to FVP's PCI-E port? Assume it has already connected to my Host PC via PCI-E.
Sincerely, WANG Chenxu -- TF-A mailing list -- tf-a@lists.trustedfirmware.org To unsubscribe send an email to tf-a-leave@lists.trustedfirmware.org
tf-a@lists.trustedfirmware.org