[PATCH v7 0/5] Allow guest access to EFI confidential computing secret area

Matthew Garrett mjg59 at srcf.ucam.org
Wed Feb 2 07:10:23 UTC 2022


On Wed, Feb 02, 2022 at 08:05:23AM +0100, Greg KH wrote:

> I see different platform patches trying to stick these blobs in
> different locations and ways to access (securityfs, sysfs, char device
> node), which seems crazy to me.  Why can't we at least pick one way to
> access these to start with, and then have the filesystem layout be
> platform-specific as needed, which will give the correct hints to
> userspace as to what it needs to do here?

Which other examples are you thinking of? I think this conversation may 
have accidentally become conflated with a different prior one and now 
we're talking at cross purposes.



More information about the Linux-security-module-archive mailing list