Received: by 2002:a05:6358:489b:b0:bb:da1:e618 with SMTP id x27csp6394670rwn; Tue, 13 Sep 2022 03:46:24 -0700 (PDT) X-Google-Smtp-Source: AA6agR793hZlKOdz3OjUiTBqElNVj3cyKdXB8yeruVHf6woo9Jxcnhyi/C1gjqDM4glL8wcObloM X-Received: by 2002:a63:2c43:0:b0:41c:66a6:4125 with SMTP id s64-20020a632c43000000b0041c66a64125mr28072913pgs.598.1663065984067; Tue, 13 Sep 2022 03:46:24 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1663065984; cv=none; d=google.com; s=arc-20160816; b=RVaonnm8lsgMHAQE8dUSCgfqLGl2L+OvcYPGuQfnLgSIPQ4EF6GCTN3BCK7MJAmiyG c0eYMey4qTXV1qhlON+BhJ4oWQJ0oYoDwRyIIuXbuDpp81osP5MwXhirBpc5ItuX4UP9 H9gncjBBaBFawYmFv5Dh+bPZ2pmGqBqURUmonjjqLAq2dIitDoYwID6aDjYAKqVy/Lyp KPtBgATc+nskiSRlLUihM3KNGydsptQ6SHzmY/GZe1g5IDQYVT1GD7WydF/KrODkjATs tI95316UAiCAGTo/h+XypWhVQBRlynJTSH+RzWgw3CjdXz1Ah6TE5qy8WdUVgyzvOgnV ICRQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:in-reply-to:content-disposition:mime-version :references:message-id:subject:cc:to:from:date; bh=W8u2sEV+cu7CbGNNWotIrxQZmD1kCfRZ0KQCpYrgUmY=; b=DX0wwHEd3ecK7NVA9Xaknro43SLywLywRqjvJhZJvCba6n2dBNKzPu06hsrbEHx+cc K8yeuQz+M15SR8eEKEsRihNxpKOHLDhilToj/LJh4FcxpsLGAMxlMA/ljHs3zKaokwDA Jp0JeLXMnNoEAfoIWxUBB490c36C7rN+uakngaAqLOFrQndwK+DqDsAz74OeLjzR0dQq OsC9v62yDtatGxlU++Z+cd0mSO0i5/nOG/vDuRfby6Mw3sVpkF5nFnTggq/TdNH28hJg 0UiNUxqLF3O0PSuSk58H0sR1NjtNGUBYnEst3cV8z3i2zroXRoudp0FFz8kEmBm7BVCt 06RA== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: domain of linux-crypto-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-crypto-owner@vger.kernel.org Return-Path: Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20]) by mx.google.com with ESMTP id f2-20020a056a00228200b0052ece684368si11216148pfe.240.2022.09.13.03.45.57; Tue, 13 Sep 2022 03:46:24 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-crypto-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20; Authentication-Results: mx.google.com; spf=pass (google.com: domain of linux-crypto-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-crypto-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S231199AbiIMK3b (ORCPT + 99 others); Tue, 13 Sep 2022 06:29:31 -0400 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:57714 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S230494AbiIMK33 (ORCPT ); Tue, 13 Sep 2022 06:29:29 -0400 Received: from fornost.hmeau.com (helcar.hmeau.com [216.24.177.18]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 6A7525C960; Tue, 13 Sep 2022 03:29:25 -0700 (PDT) Received: from gwarestrin.arnor.me.apana.org.au ([192.168.103.7]) by fornost.hmeau.com with smtp (Exim 4.94.2 #2 (Debian)) id 1oY39f-004Bph-Lc; Tue, 13 Sep 2022 20:28:36 +1000 Received: by gwarestrin.arnor.me.apana.org.au (sSMTP sendmail emulation); Tue, 13 Sep 2022 18:28:35 +0800 Date: Tue, 13 Sep 2022 18:28:35 +0800 From: Herbert Xu To: Varun Sethi Cc: Pankaj Gupta , "jarkko@kernel.org" , "a.fatoum@pengutronix.de" , "Jason@zx2c4.com" , "jejb@linux.ibm.com" , "zohar@linux.ibm.com" , "dhowells@redhat.com" , "sumit.garg@linaro.org" , "david@sigma-star.at" , "michael@walle.cc" , "john.ernberg@actia.se" , "jmorris@namei.org" , "serge@hallyn.com" , "davem@davemloft.net" , "j.luebbe@pengutronix.de" , "ebiggers@kernel.org" , "richard@nod.at" , "keyrings@vger.kernel.org" , "linux-crypto@vger.kernel.org" , "linux-integrity@vger.kernel.org" , "linux-kernel@vger.kernel.org" , "linux-security-module@vger.kernel.org" , Sahil Malhotra , Kshitiz Varshney , Horia Geanta Subject: Re: [EXT] Re: [RFC PATCH HBK: 2/8] hw-bound-key: flag-is_hbk added to the tfm Message-ID: References: <20220906065157.10662-1-pankaj.gupta@nxp.com> <20220906065157.10662-3-pankaj.gupta@nxp.com> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: X-Spam-Status: No, score=-1.9 required=5.0 tests=BAYES_00,SPF_HELO_NONE, SPF_PASS,T_SCC_BODY_TEXT_LINE autolearn=ham autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on lindbergh.monkeyblade.net Precedence: bulk List-ID: X-Mailing-List: linux-crypto@vger.kernel.org On Tue, Sep 13, 2022 at 10:01:13AM +0000, Varun Sethi wrote: > > [Varun] The proposed patchset makes things more scalable. With the hardware backed key flag, there's no need for the security co-processor driver to register separate set of algorithms. This makes things simpler and more scalable for the consumers (OpenSSL, AF_ALG, KTLS etc), as they can continue to use standard set of algorithms and leave the key specific complexity to the driver. Users already need to specify which driver they are going to use in order to actually access the hardware keys instead of getting a software implementation of the same algorithm. So I don't see what extra burdens are placed on them by the current regime. Cheers, -- Email: Herbert Xu Home Page: http://gondor.apana.org.au/~herbert/ PGP Key: http://gondor.apana.org.au/~herbert/pubkey.txt