Re: [PATCH 2/4] fs: define a firmware security filesystem named fwsecurityfs

From: Greg Kroah-Hartman
Date: Mon Dec 12 2022 - 01:12:12 EST

Next message: Peng Zhang: "[RFC PATCH] sched: Throttling through task work for cfs bandwidth"
Previous message: Anshuman Khandual: "Re: [PATCH 1/1] KVM: arm64: PMU: Fix PMCR_EL0 reset value"
In reply to: Andrew Donnellan: "Re: [PATCH 2/4] fs: define a firmware security filesystem named fwsecurityfs"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, Dec 12, 2022 at 11:58:56AM +1100, Andrew Donnellan wrote:
> On Wed, 2022-11-23 at 13:57 -0500, Nayna wrote:
> >
> > Given there are no other exploiters for fwsecurityfs and there should
> > be
> > no platform-specific fs, would modifying sysfs now to let userspace
> > create files cleanly be the way forward? Or, if we should strongly
> > consider securityfs, which would result in updating securityfs to
> > allow
> > userspace creation of files and then expose variables via a more
> > platform-specific directory /sys/kernel/security/pks? We want to pick
> > the best available option and would find some hints on direction
> > helpful
> > before we develop the next patch.
>
> Ping - it would be helpful for us to know your thoughts on this.

sysfs is not for userspace creation of files, you all know this :)

greg k-h

Next message: Peng Zhang: "[RFC PATCH] sched: Throttling through task work for cfs bandwidth"
Previous message: Anshuman Khandual: "Re: [PATCH 1/1] KVM: arm64: PMU: Fix PMCR_EL0 reset value"
In reply to: Andrew Donnellan: "Re: [PATCH 2/4] fs: define a firmware security filesystem named fwsecurityfs"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]