git.ipfire.org Git - thirdparty/kernel/linux.git/commit

author	Jens Wiklander <jens.wiklander@linaro.org>
	Wed, 13 Aug 2025 06:02:52 +0000 (08:02 +0200)
committer	Jens Wiklander <jens.wiklander@linaro.org>
	Thu, 11 Sep 2025 09:22:20 +0000 (11:22 +0200)
commit	c924c65f52c300ba36373e140a43a8e723c3abdd
tree	9c997c925eb3651e130ee321e6adb122b1746f1f	tree \| snapshot
parent	a6ccb03fb77341df0573c5b3f82f82b4da1b87f5	commit \| diff

tee: implement protected DMA-heap

Implement DMA heap for protected DMA-buf allocation in the TEE
subsystem.

Protected memory refers to memory buffers behind a hardware enforced
firewall. It is not accessible to the kernel during normal circumstances
but rather only accessible to certain hardware IPs or CPUs executing in
higher or differently privileged mode than the kernel itself. This
interface allows to allocate and manage such protected memory buffers
via interaction with a TEE implementation.

The protected memory is allocated for a specific use-case, like Secure
Video Playback, Trusted UI, or Secure Video Recording where certain
hardware devices can access the memory.

The DMA-heaps are enabled explicitly by the TEE backend driver. The TEE
backend drivers needs to implement protected memory pool to manage the
protected memory.

Reviewed-by: Sumit Garg <sumit.garg@oss.qualcomm.com>
Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org>

drivers/tee/Kconfig		diff \| blob \| blame \| history
drivers/tee/Makefile		diff \| blob \| blame \| history
drivers/tee/tee_core.c		diff \| blob \| blame \| history
drivers/tee/tee_heap.c	[new file with mode: 0644]	blob
drivers/tee/tee_private.h		diff \| blob \| blame \| history
include/linux/tee_core.h		diff \| blob \| blame \| history