Re: [PATCH 2/4] fs: define a firmware security filesystem named fwsecurityfs

From: Andrew Donnellan
Date: Sun Dec 11 2022 - 20:00:29 EST

Next message: Rob Herring: "Re: [PATCH 1/2] dt-bindings: leds: intel,lgm: Add missing 'led-gpios' property"
Previous message: Rob Herring: "Re: [PATCH v2] of: overlay: fix null pointer dereferencing in find_dup_cset_node_entry() and find_dup_cset_prop()"
Next in thread: Greg Kroah-Hartman: "Re: [PATCH 2/4] fs: define a firmware security filesystem named fwsecurityfs"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, 2022-11-23 at 13:57 -0500, Nayna wrote:
>
> Given there are no other exploiters for fwsecurityfs and there should
> be
> no platform-specific fs, would modifying sysfs now to let userspace
> create files cleanly be the way forward? Or, if we should strongly
> consider securityfs, which would result in updating securityfs to
> allow
> userspace creation of files and then expose variables via a more
> platform-specific directory /sys/kernel/security/pks? We want to pick
> the best available option and would find some hints on direction
> helpful
> before we develop the next patch.

Ping - it would be helpful for us to know your thoughts on this.

Andrew

--
Andrew Donnellan OzLabs, ADL Canberra
ajd@xxxxxxxxxxxxx IBM Australia Limited

Next message: Rob Herring: "Re: [PATCH 1/2] dt-bindings: leds: intel,lgm: Add missing 'led-gpios' property"
Previous message: Rob Herring: "Re: [PATCH v2] of: overlay: fix null pointer dereferencing in find_dup_cset_node_entry() and find_dup_cset_prop()"
Next in thread: Greg Kroah-Hartman: "Re: [PATCH 2/4] fs: define a firmware security filesystem named fwsecurityfs"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]