Received: by 2002:a05:6602:2086:0:0:0:0 with SMTP id a6csp4410037ioa; Wed, 27 Apr 2022 03:17:40 -0700 (PDT) X-Google-Smtp-Source: ABdhPJwESqP4GFjuo5sFhj0jZIjfcvzd/9g1EBmN2YEpNymqFJ73jqWo91kzQf8Vtu0M73Uef/xT X-Received: by 2002:a17:902:6b44:b0:154:4bee:c434 with SMTP id g4-20020a1709026b4400b001544beec434mr27933812plt.43.1651054660280; Wed, 27 Apr 2022 03:17:40 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1651054660; cv=none; d=google.com; s=arc-20160816; b=bTsBHMeSFLAvOx07FSlgU2jgqAyL3i7DmRF4xW3rdN3M6CSE7GWT1pUfC4AYJ4YUdS tLkCyUF+LrDF0+knw0G506LjUGp85v4+5OyZTmI05Skh2dHL11vPTLsgpgQFQTCpx7Vi EZNHG7jRSZVUk7oERayPnH+LjHW11Yc6+8vxfvGr1m46gDn7KgOZApjo4bC9ZRV8n52t qq2Yr0c9syc8UVLEcZ+ds37ZOR5hxmp2iLtQHFHW4548dzT89Jw4Dqstn/F6/XW325MD LXYavHlSL2XWM1md79FfcxtHOZ1XfIArpclnY68QkxohZn++F7HiiRHd2XhXxAAxxmb9 +GJQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:in-reply-to:content-transfer-encoding :content-disposition:mime-version:references:message-id:subject:cc :to:from:date:dkim-signature; bh=l/Uzo98tmyuiVNfME3rbVmFdIzQ+G+Io/3b63JFZOgc=; b=OUJ8zQp/fHeUKDq28DrCbsybrKDCdozgjpEyjHYo0jNzWXlR9i0LzsDOJBGTbF/dH9 W58He+HEjOgO2+Uj9+5aDn9w36gKYZ79FWPKxFj9ZDjgtoIq820IR/DGm6OqtBK/S4Nt P/HMl8VuJJOl/BAAfErIUovnjIR8XvF3GizvjR4cmUMzNJxCkitcNF5Ynhb0NdzRdEvJ ixn5nJoa8j6eORkDy3naBsL2r47jyogLlzozi5ht4S1KPdiuVQOEcugJRZJLiA1X+2d+ 7TX6ttmtaIJ+PQQYv9VLBYFaUDWaBhMZsrLcUL60Cff+Z7R2nBoLUncyerg9Eqz9HrrO L+Yg== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@kernel.org header.s=k20201202 header.b=jwGkwkJV; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org Return-Path: Received: from lindbergh.monkeyblade.net (lindbergh.monkeyblade.net. [2620:137:e000::1:18]) by mx.google.com with ESMTPS id c15-20020a170902d48f00b00158e5c01c2esi1282114plg.339.2022.04.27.03.17.39 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Wed, 27 Apr 2022 03:17:40 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:18 as permitted sender) client-ip=2620:137:e000::1:18; Authentication-Results: mx.google.com; dkim=pass header.i=@kernel.org header.s=k20201202 header.b=jwGkwkJV; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org Received: from vger.kernel.org (vger.kernel.org [23.128.96.18]) by lindbergh.monkeyblade.net (Postfix) with ESMTP id 563BE346FF2; Wed, 27 Apr 2022 02:38:08 -0700 (PDT) Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S243172AbiDZGTW (ORCPT + 99 others); Tue, 26 Apr 2022 02:19:22 -0400 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:48232 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S229695AbiDZGTU (ORCPT ); Tue, 26 Apr 2022 02:19:20 -0400 Received: from dfw.source.kernel.org (dfw.source.kernel.org [139.178.84.217]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id C0388DF9C; Mon, 25 Apr 2022 23:16:13 -0700 (PDT) Received: from smtp.kernel.org (relay.kernel.org [52.25.139.140]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by dfw.source.kernel.org (Postfix) with ESMTPS id 49B7E61326; Tue, 26 Apr 2022 06:16:13 +0000 (UTC) Received: by smtp.kernel.org (Postfix) with ESMTPSA id 0E5D4C385A0; Tue, 26 Apr 2022 06:16:06 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kernel.org; s=k20201202; t=1650953772; bh=nYuaXwecRqocWNSO0IMukcA++Ke8EmLWPmKT9nO2mTY=; h=Date:From:To:Cc:Subject:References:In-Reply-To:From; b=jwGkwkJVPM5PhoYnz/IGbCx0DopfsKD+i1Uz7Yq4+Cw4QY1Fb7pZzoZwQVDd6VyQw aJniZzcytOPfhmcr/VhcHoTVcYmyoX9LCy31/55k1ca6GbHMxr1lHdswqQSOvHA6ML I9Hr0qk3tZ/SENiwGtQ9MrcRxaGfwuF5VbDLMowHTqrwoFDGrCJtiBa0xilAxOpgjc bAWsNs4R8+aZXeaUjsLqX2Ti8z6ujUIDNJ57X7JWnQWIwfjDqL5Q0SfX8JdB7p9pty L9yz4/A6b4z8SYTTxwIWD9Q9ul29QK0kaLNglYn2bggNwzJpcun+b87uBDL8kjgQEn t7eScmruivwnA== Date: Tue, 26 Apr 2022 09:16:02 +0300 From: Mike Rapoport To: Martin Fernandez Cc: linux-kernel@vger.kernel.org, linux-efi@vger.kernel.org, platform-driver-x86@vger.kernel.org, linux-mm@kvack.org, tglx@linutronix.de, mingo@redhat.com, bp@alien8.de, dave.hansen@linux.intel.com, x86@kernel.org, hpa@zytor.com, ardb@kernel.org, dvhart@infradead.org, andy@infradead.org, gregkh@linuxfoundation.org, rafael@kernel.org, akpm@linux-foundation.org, daniel.gutson@eclypsium.com, hughsient@gmail.com, alex.bazhaniuk@eclypsium.com, alison.schofield@intel.com, keescook@chromium.org Subject: Re: [PATCH v7 8/8] drivers/node: Show in sysfs node's crypto capabilities Message-ID: References: <20220425171526.44925-1-martin.fernandez@eclypsium.com> <20220425171526.44925-9-martin.fernandez@eclypsium.com> MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Disposition: inline Content-Transfer-Encoding: 8bit In-Reply-To: <20220425171526.44925-9-martin.fernandez@eclypsium.com> X-Spam-Status: No, score=-2.9 required=5.0 tests=BAYES_00,DKIMWL_WL_HIGH, DKIM_SIGNED,DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,MAILING_LIST_MULTI, RDNS_NONE,SPF_HELO_NONE autolearn=unavailable autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on lindbergh.monkeyblade.net Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Mon, Apr 25, 2022 at 02:15:26PM -0300, Martin Fernandez wrote: > Show in each node in sysfs if its memory is able to do be encrypted by > the CPU, ie. if all its memory is marked with EFI_MEMORY_CPU_CRYPTO in > the EFI memory map. > > Signed-off-by: Martin Fernandez > --- > Documentation/ABI/testing/sysfs-devices-node | 10 ++++++++++ > drivers/base/node.c | 10 ++++++++++ > 2 files changed, 20 insertions(+) > create mode 100644 Documentation/ABI/testing/sysfs-devices-node > > diff --git a/Documentation/ABI/testing/sysfs-devices-node b/Documentation/ABI/testing/sysfs-devices-node > new file mode 100644 > index 000000000000..5fd5dc7fc2eb > --- /dev/null > +++ b/Documentation/ABI/testing/sysfs-devices-node > @@ -0,0 +1,10 @@ > +What: /sys/devices/system/node/nodeX/crypto_capable > +Date: April 2022 > +Contact: Martin Fernandez > +Users: fwupd (https://fwupd.org) > +Description: > + This value is 1 if all system memory in this node is > + marked with EFI_MEMORY_CPU_CRYPTO, indicating that the > + system memory is capable of being protected with the > + CPU’s memory cryptographic capabilities. It is 0 > + otherwise. I understand that currently this feature is only for x86, but if non-EFI architectures will start using MEMBLOCK_CRYPTO_CAPABLE, the sysfs attribute for will be relevant form them as well. How about This value is 1 if all system memory in this node is capable of being protected with the CPU's memory cryptographic capabilities. It is 0 otherwise. On EFI systems the node will be marked with EFI_MEMORY_CPU_CRYPTO. > \ No newline at end of file > diff --git a/drivers/base/node.c b/drivers/base/node.c > index ec8bb24a5a22..1df15ea03c27 100644 > --- a/drivers/base/node.c > +++ b/drivers/base/node.c > @@ -560,11 +560,21 @@ static ssize_t node_read_distance(struct device *dev, > } > static DEVICE_ATTR(distance, 0444, node_read_distance, NULL); > > +static ssize_t crypto_capable_show(struct device *dev, > + struct device_attribute *attr, char *buf) > +{ > + struct pglist_data *pgdat = NODE_DATA(dev->id); > + > + return sysfs_emit(buf, "%d\n", pgdat->crypto_capable); > +} > +static DEVICE_ATTR_RO(crypto_capable); > + > static struct attribute *node_dev_attrs[] = { > &dev_attr_meminfo.attr, > &dev_attr_numastat.attr, > &dev_attr_distance.attr, > &dev_attr_vmstat.attr, > + &dev_attr_crypto_capable.attr, > NULL > }; > > -- > 2.30.2 > -- Sincerely yours, Mike.