Re: [PATCH v2 6/6] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys

From: Richard Weinberger
Date: Thu Jul 01 2021 - 16:43:02 EST

Next message: Andreas Gruenbacher: "[PATCH] gfs2: Fix mmap + page fault deadlocks"
Previous message: Christophe JAILLET: "[PATCH net-next v2] gve: Simplify code and axe the use of a deprecated API"
Next in thread: Ahmad Fatoum: "Re: [PATCH v2 6/6] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Ahmad,

----- Ursprüngliche Mail -----
> Von: "Ahmad Fatoum" <a.fatoum@xxxxxxxxxxxxxx>
> +static struct caam_blob_priv *blobifier;
> +
> +#define KEYMOD "kernel:trusted"

I'm still think that hard coding the key modifier is not wise.
As I said[0], there are folks out there that want to provide their own modifier,
so it is not only about being binary compatible with other CAAM blob patches in the wild.

I'll happily implement that feature after your patches got merged but IMHO we should first agree on an interface.
How about allowing another optional parameter to Opt_new and Opt_load and having a key modifier
per struct trusted_key_payload instance?

Thanks,
//richard

[0]
https://patchwork.kernel.org/project/linux-crypto/patch/319e558e1bd19b80ad6447c167a2c3942bdafea2.1615914058.git-series.a.fatoum@xxxxxxxxxxxxxx/#24085397

Next message: Andreas Gruenbacher: "[PATCH] gfs2: Fix mmap + page fault deadlocks"
Previous message: Christophe JAILLET: "[PATCH net-next v2] gve: Simplify code and axe the use of a deprecated API"
Next in thread: Ahmad Fatoum: "Re: [PATCH v2 6/6] KEYS: trusted: Introduce support for NXP CAAM-based trusted keys"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]