crypto: ccp - Add sysfs attribute for boot integrity (90f7520b) · Commits · git / linux-nf

Documentation/ABI/testing/sysfs-driver-ccp

+15 −0

Original line number	Diff line number	Diff line
		@@ -8,6 +8,21 @@ Description:
		0: Not fused
		1: Fused

		What: /sys/bus/pci/devices/<BDF>/boot_integrity
		Date: April 2026
		KernelVersion: 6.20
		Contact: mario.limonciello@amd.com
		Description:
		The /sys/bus/pci/devices/<BDF>/boot_integrity reports
		whether the AMD CPU or APU is used for a hardware root of trust
		during the boot process.
		Possible values:
		0: Not hardware root of trust.
		1: Hardware root of trust

		NOTE: Vendors may provide design specific alternative hardware
		root of trust implementations.

		What: /sys/bus/pci/devices/<BDF>/debug_lock_on
		Date: June 2022
		KernelVersion: 5.19

+3 −0

Original line number	Diff line number	Diff line
		@@ -30,6 +30,8 @@ static ssize_t name##_show(struct device d, struct device_attribute attr, \

		security_attribute_show(fused_part)
		static DEVICE_ATTR_RO(fused_part);
		security_attribute_show(boot_integrity)
		static DEVICE_ATTR_RO(boot_integrity);
		security_attribute_show(debug_lock_on)
		static DEVICE_ATTR_RO(debug_lock_on);
		security_attribute_show(tsme_status)
		@@ -47,6 +49,7 @@ static DEVICE_ATTR_RO(rom_armor_enforced);

		static struct attribute *psp_security_attrs[] = {
		&dev_attr_fused_part.attr,
		&dev_attr_boot_integrity.attr,
		&dev_attr_debug_lock_on.attr,
		&dev_attr_tsme_status.attr,
		&dev_attr_anti_rollback_status.attr,

+1 −1