[RFC PATCH v2 2/3] fs: define a firmware security filesystem named fwsecurityfs

Casey Schaufler casey at schaufler-ca.com
Wed Jun 22 22:29:01 UTC 2022


On 6/22/2022 2:56 PM, Nayna Jain wrote:
> securityfs is meant for linux security subsystems to expose policies/logs
> or any other information. However, there are various firmware security
> features which expose their variables for user management via kernel.
> There is currently no single place to expose these variables. Different
> platforms use sysfs/platform specific filesystem(efivarfs)/securityfs
> interface as find appropriate. Thus, there is a gap in kernel interfaces
> to expose variables for security features.

Why not put the firmware entries under /sys/kernel/security/firmware?



More information about the Linux-security-module-archive mailing list