From da58e6e743decdacd3b9c4f1f8a87593c94ef0d7 Mon Sep 17 00:00:00 2001
From: Huang Ying <ying.huang@intel.com>
Date: Mon, 29 Sep 2025 16:48:37 +0800
Subject: [PATCH 1/4] memory tiers: use default_dram_perf_ref_source in log
 message

mainline inclusion
from mainline-v6.12-rc1
commit a530bbc53826c607f64e8ee466c3351efaf6aea5
category: bugfix
bugzilla: https://gitee.com/openeuler/kernel/issues/IBOOGY

Reference: https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=a530bbc53826c607f64e8ee466c3351efaf6aea5

--------------------------------

Commit 3718c02dbd4c ("acpi, hmat: calculate abstract distance with HMAT")
added a default_dram_perf_ref_source variable that was initialized but
never used.  This causes kmemleak to report the following memory leak:

unreferenced object 0xff11000225a47b60 (size 16):
  comm "swapper/0", pid 1, jiffies 4294761654
  hex dump (first 16 bytes):
    41 43 50 49 20 48 4d 41 54 00 c1 4b 7d b7 75 7c  ACPI HMAT..K}.u|
  backtrace (crc e6d0e7b2):
    [<ffffffff95d5afdb>] __kmalloc_node_track_caller_noprof+0x36b/0x440
    [<ffffffff95c276d6>] kstrdup+0x36/0x60
    [<ffffffff95dfabfa>] mt_set_default_dram_perf+0x23a/0x2c0
    [<ffffffff9ad64733>] hmat_init+0x2b3/0x660
    [<ffffffff95203cec>] do_one_initcall+0x11c/0x5c0
    [<ffffffff9ac9cfc4>] do_initcalls+0x1b4/0x1f0
    [<ffffffff9ac9d52e>] kernel_init_freeable+0x4ae/0x520
    [<ffffffff97c789cc>] kernel_init+0x1c/0x150
    [<ffffffff952aecd1>] ret_from_fork+0x31/0x70
    [<ffffffff9520b18a>] ret_from_fork_asm+0x1a/0x30

This reminds us that we forget to use the performance data source
information.  So, use the variable in the error log message to help
identify the root cause of inconsistent performance number.

Link: https://lkml.kernel.org/r/87y13mvo0n.fsf@yhuang6-desk2.ccr.corp.intel.com
Fixes: 3718c02dbd4c ("acpi, hmat: calculate abstract distance with HMAT")
Signed-off-by: "Huang, Ying" <ying.huang@intel.com>
Reported-by: Waiman Long <longman@redhat.com>
Acked-by: Waiman Long <longman@redhat.com>
Cc: Alistair Popple <apopple@nvidia.com>
Cc: Dave Jiang <dave.jiang@intel.com>
Signed-off-by: Andrew Morton <akpm@linux-foundation.org>
Conflicts:
	mm/memory-tiers.c
[Context conflict]
Signed-off-by: Tong Tiangen <tongtiangen@huawei.com>
---
 mm/memory-tiers.c | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/mm/memory-tiers.c b/mm/memory-tiers.c
index 9a8f23a2377b..629f4bdd2da6 100644
--- a/mm/memory-tiers.c
+++ b/mm/memory-tiers.c
@@ -669,10 +669,10 @@ int mt_set_default_dram_perf(int nid, struct node_hmem_attrs *perf,
 		pr_info(
 "memory-tiers: the performance of DRAM node %d mismatches that of the reference\n"
 "DRAM node %d.\n", nid, default_dram_perf_ref_nid);
-		pr_info("  performance of reference DRAM node %d:\n",
-			default_dram_perf_ref_nid);
+		pr_info("  performance of reference DRAM node %d from %s:\n",
+			default_dram_perf_ref_nid, default_dram_perf_ref_source);
 		dump_hmem_attrs(&default_dram_perf, "    ");
-		pr_info("  performance of DRAM node %d:\n", nid);
+		pr_info("  performance of DRAM node %d from %s:\n", nid, source);
 		dump_hmem_attrs(perf, "    ");
 		pr_info(
 "  disable default DRAM node performance based abstract distance algorithm.\n");
-- 
Gitee


From 04a74efafc0a4d6f9813895ba2af082c933258c2 Mon Sep 17 00:00:00 2001
From: chench <chench@hygon.cn>
Date: Tue, 30 Sep 2025 11:19:10 +0800
Subject: [PATCH 2/4] crypto: ccp: optimize TDM kernel driver

hygon inclusion
category: feature
bugzilla: https://gitee.com/openeuler/kernel/issues/ID0NRB
CVE: NA

---------------------------

1.Before using the TDM feature, a probe command is sent to the PSP to
confirm its support status.However, when the psp firmware is not
loaded, the probe command cannot be supported, so it should be set
to an unsupported state.
2.optimize TDM driver to avoid warning

Signed-off-by: chench <chench@hygon.cn>
---
 drivers/crypto/ccp/hygon/tdm-dev.c | 29 ++++++++++++++++++-----------
 1 file changed, 18 insertions(+), 11 deletions(-)

diff --git a/drivers/crypto/ccp/hygon/tdm-dev.c b/drivers/crypto/ccp/hygon/tdm-dev.c
index 9ff6a8906686..4241dba1bc73 100644
--- a/drivers/crypto/ccp/hygon/tdm-dev.c
+++ b/drivers/crypto/ccp/hygon/tdm-dev.c
@@ -23,7 +23,8 @@
 #include <crypto/hash.h>
 #include <linux/kallsyms.h>
 #include <linux/ftrace.h>
-#include "tdm-dev.h"
+#include "tdm-dev.h
+#include "psp-dev.h"
 
 #ifdef pr_fmt
 #undef pr_fmt
@@ -533,8 +534,12 @@ int psp_check_tdm_support(void)
 {
 	int ret = 0;
 	struct tdm_version version;
+	struct psp_device *psp = psp_master;
 
-	if (boot_cpu_data.x86_vendor == X86_VENDOR_HYGON) {
+	if (!psp)
+		goto end;
+
+	if (is_vendor_hygon() && (psp->capability & PSP_CAPABILITY_SEV)) {
 		if (tdm_support)
 			goto end;
 
@@ -671,8 +676,7 @@ int psp_create_measure_task(struct addr_range_info *range, struct measure_data *
 		}
 
 		paddr_range_info->count = info_index;
-		addr_range_info_len = paddr_range_info->count * sizeof(struct addr_info) +
-			sizeof(struct addr_range_info);
+		addr_range_info_len = paddr_range_info->count * sizeof(struct addr_info);
 	} else {
 		/*check if physics address valid*/
 		ret = tdm_verify_phy_addr_valid(range);
@@ -680,8 +684,7 @@ int psp_create_measure_task(struct addr_range_info *range, struct measure_data *
 			pr_err("range address is abnormal!\n");
 			goto end;
 		}
-		addr_range_info_len = range->count * sizeof(struct addr_info) +
-			sizeof(struct addr_range_info);
+		addr_range_info_len = range->count * sizeof(struct addr_info);
 	}
 
 	tdm_cmdresp_data = kzalloc(TDM_C2P_CMD_SIZE, GFP_KERNEL);
@@ -704,10 +707,14 @@ int psp_create_measure_task(struct addr_range_info *range, struct measure_data *
 		goto free_cmdresp;
 	}
 
-	if (flag & TASK_CREATE_VADDR)
-		memcpy(&create_cmd->range_info, paddr_range_info, addr_range_info_len);
-	else
-		memcpy(&create_cmd->range_info, range, addr_range_info_len);
+	if (flag & TASK_CREATE_VADDR) {
+		create_cmd->range_info.count = paddr_range_info->count;
+		memcpy(&create_cmd->range_info.addr[0], &paddr_range_info->addr[0],
+			addr_range_info_len);
+	} else {
+		create_cmd->range_info.count = range->count;
+		memcpy(&create_cmd->range_info.addr[0], &range->addr[0], addr_range_info_len);
+	}
 
 	ret = tdm_do_cmd(0, (void *)create_cmd, &error);
 	if (ret && ret != -EIO) {
@@ -1306,7 +1313,7 @@ int tdm_get_report(uint32_t task_id, struct task_selection_2b *selection,
 		*length = needed_length;
 		ret = -DYN_ERR_SIZE_SMALL;
 	} else {
-		memcpy(report_buffer, report_resp, needed_length);
+		memcpy(report_buffer, (uint8_t *)report_resp, needed_length);
 	}
 
 free_cmdresp:
-- 
Gitee


From c3fdacb1a65356760c7d8b2d56518832e83e92e4 Mon Sep 17 00:00:00 2001
From: chench <chench@hygon.cn>
Date: Tue, 30 Sep 2025 11:37:27 +0800
Subject: [PATCH 3/4] crypto: ccp: add "tdm_guard" as kernel and module
 parameter

hygon inclusion
category: feature
bugzilla: https://gitee.com/openeuler/kernel/issues/ID0NRB
CVE: NA

---------------------------

The parameter 'tdm_guard' has been implemented to provide runtime
control over the TDM guard feature.

As kernel boot parameter:
While CONFIG_TDM_KERNEL_GUARD=y enables the feature by default, specifying:
1. 'tdm_guard=on' maintains the protection
2. 'tdm_guard=off' disables the guard mechanism"

As module parameter:
1. 'modprobe tdm-kernel-guard tdm_guard=on' open the protection
2. 'modprobe tdm-kernel-guard tdm_guard=off' close the guard mechanism"

Signed-off-by: niuyongwen <niuyongwen@hygon.cn>
Signed-off-by: chench <chench@hygon.cn>
---
 drivers/crypto/ccp/hygon/tdm-kernel-guard.c | 40 ++++++++++++++++++++-
 1 file changed, 39 insertions(+), 1 deletion(-)

diff --git a/drivers/crypto/ccp/hygon/tdm-kernel-guard.c b/drivers/crypto/ccp/hygon/tdm-kernel-guard.c
index c3afe888ea04..0e52d5d385e4 100644
--- a/drivers/crypto/ccp/hygon/tdm-kernel-guard.c
+++ b/drivers/crypto/ccp/hygon/tdm-kernel-guard.c
@@ -23,8 +23,33 @@
 #define pr_fmt(fmt) KBUILD_MODNAME ": " fmt
 
 static int eh_obj = -1;
+static char *tdm_guard;
 module_param(eh_obj, int, 0644);
-MODULE_PARM_DESC(eh_obj, "security enhance object for TDM");
+MODULE_PARM_DESC(eh_obj,
+	"Bitmap of kernel targets protected by Hygon TDM(bit0: SCT, bit1: IDT, default: both)");
+module_param(tdm_guard, charp, 0644);
+MODULE_PARM_DESC(tdm_guard,
+	"Enable TDM protection for selected targets(on=enable, off=disable, default:off)");
+
+static bool tdm_guard_enabled;
+
+static int __init __maybe_unused parse_tdm_guard(char *str)
+{
+	if (!str)
+		return 0;
+
+	if (!strncmp(str, "off", 3)) {
+		tdm_guard_enabled = false;
+		pr_info("Hygon TDM Guard: Disabled(cmdline)\n");
+	} else if (!strncmp(str, "on", 2)) {
+		tdm_guard_enabled = true;
+		pr_info("Hygon TDM Guard: Enabled(cmdline)\n");
+	}
+
+	return 0;
+}
+
+__setup("tdm_guard=", parse_tdm_guard);
 
 /* Objects are protected by TDM now
  *   SCT: 0
@@ -292,6 +317,16 @@ static int __init kernel_security_enhance_init(void)
 		goto end;
 	}
 
+	if (tdm_guard) {
+		if (!strncmp(tdm_guard, "off", 3))
+			tdm_guard_enabled = false;
+		else if (!strncmp(tdm_guard, "on", 2))
+			tdm_guard_enabled = true;
+	}
+
+	if (tdm_guard_enabled == false)
+		goto end;
+
 	asm("sidt %0":"=m"(idtr));
 
 	if (!psp_check_tdm_support())
@@ -327,6 +362,9 @@ static void __exit kernel_security_enhance_exit(void)
 {
 	int i = 0;
 
+	if (tdm_guard_enabled == false)
+		return;
+
 	if (!psp_check_tdm_support())
 		return;
 
-- 
Gitee


From 67fda0a220333cf0c524eab55ebcd1881a245fa7 Mon Sep 17 00:00:00 2001
From: chench <chench@hygon.cn>
Date: Tue, 30 Sep 2025 11:59:01 +0800
Subject: [PATCH 4/4] crypto: ccp: optimize PSP driver code logic to reduce
 modifications to native code

hygon inclusion
category: feature
bugzilla: https://gitee.com/openeuler/kernel/issues/ID0NRB
CVE: NA

---------------------------

Optimize PSP driver code logic to reduce modifications to native code

Signed-off-by: chench <chench@hygon.cn>
---
 drivers/crypto/ccp/hygon/psp-dev.c | 2 ++
 drivers/crypto/ccp/psp-dev.c       | 3 ---
 2 files changed, 2 insertions(+), 3 deletions(-)

diff --git a/drivers/crypto/ccp/hygon/psp-dev.c b/drivers/crypto/ccp/hygon/psp-dev.c
index 1c554e4d08b8..96480ee66b2d 100644
--- a/drivers/crypto/ccp/hygon/psp-dev.c
+++ b/drivers/crypto/ccp/hygon/psp-dev.c
@@ -380,6 +380,8 @@ int hygon_psp_additional_setup(struct sp_device *sp)
 	if (!hygon_psp_hooks.sev_dev_hooks_installed)
 		return -ENODEV;
 
+	init_waitqueue_head(&psp_int_queue);
+
 	if (!psp_misc) {
 		struct miscdevice *misc;
 
diff --git a/drivers/crypto/ccp/psp-dev.c b/drivers/crypto/ccp/psp-dev.c
index a5f0a816b2de..04fae268b33e 100644
--- a/drivers/crypto/ccp/psp-dev.c
+++ b/drivers/crypto/ccp/psp-dev.c
@@ -217,9 +217,6 @@ int psp_dev_init(struct sp_device *sp)
 	if (ret)
 		goto e_irq;
 
-	if (is_vendor_hygon())
-		init_waitqueue_head(&psp_int_queue);
-
 	/**
 	 * hygon_psp_additional_setup() needs to wait for
 	 * sev_dev_install_hooks() to complete before it can be called.
-- 
Gitee