AMD "Trusted Memory Zone" Encrypted vRAM Support Coming To Their Linux GPU Driver

Written by Michael Larabel in Radeon on 11 September 2019 at 09:39 AM EDT. 26 Comments
RADEON
AMD Trusted Memory Zone support is a new feature being worked on for their open-source graphics driver that works in conjunction with the graphics hardware for being able to encrypt portions of the video memory.

Trusted Memory Zone (TMZ) support appears to be present going back to the original Vega graphics processors but this is the first time we're seeing it implemented on the Linux side. Trusted Memory Zone protects the contents of TMZ'ed pages from being read by the CPU (non-GPU) clients and fend off writes to the protected pages. AMD TMZ support is being used to offer secure buffer object support on Linux.

The Linux kernel driver will expose buffer object level protection and expose a new "encrypted" flag to user-space with the GEM memory management ioctl for allocating memory with the secure buffer TMZ bit in the PTE set. Only trusted blocks within the GPU (graphics, SDMA, VCN engines) are able to decrypt the encrypted data. Volleyed today were the AMDGPU kernel driver patches for this Trusted Memory Zone support while the user-space libdrm patches and the rest are coming.

The kernel portion is up for review here. Ultimately the support will be available out-of-the-box on supported GPUs, but for now it's hidden behind the amdgpu.tmz= module parameter until the support is completely baked. Due to the timing, the AMD TMZ support will land in Linux 5.5 at the earliest.
26 Comments
Related News
AMD Prepares More Next-Gen GPU Driver Support For Linux 6.10
Open-Source Radeon Driver Enables Support For Vulkan Video H.264/H.265 Encode
AMD Working To Release MES Documentation & Source Code
AMD Says They'll Be Open-Sourcing More Of Their GPU Software Stack & Hardware Docs
AMD's Longtime Open-Source Linux Graphics Driver Advocate Retires
AMD Releases Orochi 2.0 With More CUDA/HIP Functions Implemented For Better Portability
About The Author
Michael Larabel

Michael Larabel is the principal author of Phoronix.com and founded the site in 2004 with a focus on enriching the Linux hardware experience. Michael has written more than 20,000 articles covering the state of Linux hardware support, Linux performance, graphics drivers, and other topics. Michael is also the lead developer of the Phoronix Test Suite, Phoromatic, and OpenBenchmarking.org automated benchmarking software. He can be followed via Twitter, LinkedIn, or contacted via MichaelLarabel.com.

Popular News This Week
Linux 6.10 To Merge NTSYNC Driver For Emulating Windows NT Synchronization Primitives
Ubuntu Maker Canonical Announces New Collaboration With Qualcomm
Linus Torvalds Injects Tabs To Thwart Kconfig Parsers Not Correctly Handling Them
Fedora 41 Looks To "-O3" Optimizations For Its Python Build
APT 2.9 Released: Debian's APT 3.0 To Have A New UI With Colors, Columnar Display & More
KDE's KWin Merges Wayland Explicit Sync Support
Gentoo Linux Now An SPI Project
Open-Source Radeon Driver Enables Support For Vulkan Video H.264/H.265 Encode