Received: by 2002:a6b:fb09:0:0:0:0:0 with SMTP id h9csp5474784iog; Wed, 22 Jun 2022 21:40:55 -0700 (PDT) X-Google-Smtp-Source: AGRyM1sOBCWAIGRE/5ZsFpkrX4bWNwjOraCnX9STak5NhKuz6YTKPZU5gO7JO6JbsLLurh367h7M X-Received: by 2002:aa7:c84d:0:b0:431:4226:70c9 with SMTP id g13-20020aa7c84d000000b00431422670c9mr8298358edt.51.1655959255526; Wed, 22 Jun 2022 21:40:55 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1655959255; cv=none; d=google.com; s=arc-20160816; b=vP3toCMQA0QpurL5s5RzLAUstT0azkOqJo+UpbbXedjV2oXtHjLfK07/Ocs1vo+guS gTBbpIm2+ufEUT1V8e4zBEQbXaU5HdSlLmu3Pc6DOtWDvGqc0pUKZmK7lIl9HNrod531 fMWH2r0mDNfeCQnsYKpTM6XPM1L+w5WHd71GBAPDSb7TnexKWaH/m2M88Mf6//CKgv8I Fh6TIOONrFRkmuZnaDlaHFqPDxVk0dsAvAOh5G7kYQVaU9dp7B+8+Xk6A6v9uwRN208N fh8aq59NmC3waY1p47STcZ6RxcQorLjSHb33jnSJ9vW+voIM29dhuGTbNa6W4S6/0IvN I9yQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:content-transfer-encoding:in-reply-to:from :references:cc:to:content-language:subject:user-agent:mime-version :date:message-id:dkim-signature; bh=db7NnTeCjfS9BKlQ0hulk5gOY3mV9QEguoXPLgKe2zw=; b=UCtkCKCtxdrt1r7NQiSwFxmkx6hKvEf/7e7hshoiU5rBYqUwh01cRdbRybJM7mM9kr YpXxRwTrxbsvYuSYhB39N0ivsgUAYQQ7iarQIpVNulqPIcz/QHYCiDvInBaO0DnFJpLl 01NHRMs7N7vW03KhbgkVtOGfhk9n9SE1lwwyMLliaJNvcNs6Ob2NPehIFS6q2aFKjfUT FliiUR/1KT5xE+QD+9ragCd10sSUCU0ORL4S6K1/SZubfc9OOkP89HO0ohV/ge4ygSo9 zuE1AOoL8l6tMBbsHBO039n80Qh9KNc6e8wKj0+93BUg9GEE0/p4dUQ5P3R5N7I/Ntis YPUA== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@infradead.org header.s=casper.20170209 header.b=qaKWc0Ic; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20]) by mx.google.com with ESMTP id l7-20020a056402254700b0042dc982357fsi1816224edb.156.2022.06.22.21.40.29; Wed, 22 Jun 2022 21:40:55 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20; Authentication-Results: mx.google.com; dkim=pass header.i=@infradead.org header.s=casper.20170209 header.b=qaKWc0Ic; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S235956AbiFWChA (ORCPT + 99 others); Wed, 22 Jun 2022 22:37:00 -0400 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:42132 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S229615AbiFWCg6 (ORCPT ); Wed, 22 Jun 2022 22:36:58 -0400 Received: from casper.infradead.org (casper.infradead.org [IPv6:2001:8b0:10b:1236::1]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 48AED3C722; Wed, 22 Jun 2022 19:36:56 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=infradead.org; s=casper.20170209; h=Content-Transfer-Encoding:Content-Type: In-Reply-To:From:References:Cc:To:Subject:MIME-Version:Date:Message-ID:Sender :Reply-To:Content-ID:Content-Description; bh=db7NnTeCjfS9BKlQ0hulk5gOY3mV9QEguoXPLgKe2zw=; b=qaKWc0IcE5h2mxvXPnQZRK30zN wx/5x3BCCv1RW+DT/F+qaQExUVIZzt9lq1t5f8yhmO/Qc2smO4fvI1zOtXDJvtNLDNNK0Kx+ZfxUi ggZXoGIGZ08R+0+isyhtks8bLUmm6gEZQUOVB19SMxmOaHjHaHmJNt987S+pVdj7Msi3rSC2b5FJB E/NTG/RPjNKiqXv0VpgDjUNJ2LZcAe7ByLQt0qsQmQK8VMEOWVfTJv83DUcWoBmf5kBJwBo6iBfiO k4Vdz0PMWoXkc9mw67p7y+eA/kNZoUTiI+r57Yzop572GZ7qBvUq3RpgitNrPKe61BpPZl5YndSmO f5t0Db0A==; Received: from [2601:1c0:6280:3f0::aa0b] by casper.infradead.org with esmtpsa (Exim 4.94.2 #2 (Red Hat Linux)) id 1o4Ci2-007XGJ-Sd; Thu, 23 Jun 2022 02:36:43 +0000 Message-ID: Date: Wed, 22 Jun 2022 19:36:36 -0700 MIME-Version: 1.0 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:91.0) Gecko/20100101 Thunderbird/91.10.0 Subject: Re: [RFC PATCH v2 3/3] powerpc/pseries: expose authenticated variables stored in LPAR PKS Content-Language: en-US To: Nayna Jain , linuxppc-dev@lists.ozlabs.org, linux-fsdevel@vger.kernel.org Cc: linux-efi@vger.kernel.org, linux-security-module , linux-kernel@vger.kernel.org, Greg Kroah-Hartman , Michael Ellerman , Dov Murik , George Wilson , gjoyce@ibm.com, Matthew Garrett , Dave Hansen , Benjamin Herrenschmidt , Paul Mackerras References: <20220622215648.96723-1-nayna@linux.ibm.com> <20220622215648.96723-4-nayna@linux.ibm.com> From: Randy Dunlap In-Reply-To: <20220622215648.96723-4-nayna@linux.ibm.com> Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit X-Spam-Status: No, score=-4.4 required=5.0 tests=BAYES_00,DKIM_SIGNED, DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,NICE_REPLY_A,RCVD_IN_DNSWL_MED, SPF_HELO_NONE,SPF_NONE,T_SCC_BODY_TEXT_LINE autolearn=ham autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on lindbergh.monkeyblade.net Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On 6/22/22 14:56, Nayna Jain wrote: > diff --git a/arch/powerpc/platforms/pseries/Kconfig b/arch/powerpc/platforms/pseries/Kconfig > index 6c1ca487103f..9c52095e20c4 100644 > --- a/arch/powerpc/platforms/pseries/Kconfig > +++ b/arch/powerpc/platforms/pseries/Kconfig > @@ -152,6 +152,23 @@ config PSERIES_PLPKS > config to enable operating system interface to hypervisor to > access this space. > > +config PSERIES_FWSECURITYFS_ARCH > + depends on FWSECURITYFS > + bool "Support fwsecurityfs for pseries" > + help > + Enable fwsecuirtyfs arch specific code. This would initialize fwsecurityfs . This initializes > + the firmware security filesystem with initial platform specific > + structure. > + > +config PSERIES_PLPKS_SECVARS > + depends on PSERIES_PLPKS > + select PSERIES_FWSECURITYFS_ARCH > + tristate "Support for secvars" > + help > + This interface exposes authenticated variables stored in the LPAR > + Platform KeyStore using fwsecurityfs interface. > + If you are unsure how to use it, say N. -- ~Randy