xref: /linux/drivers/virt/coco/efi_secret/Kconfig (revision feafee284579d29537a5a56ba8f23894f0463f3d) 
1cbabf03cSDov Murik# SPDX-License-Identifier: GPL-2.0-only
2cbabf03cSDov Murikconfig EFI_SECRET
3cbabf03cSDov Murik	tristate "EFI secret area securityfs support"
4*9e8a3df3SSuzuki K Poulose	depends on EFI && (X86_64 || ARM64)
5cbabf03cSDov Murik	select EFI_COCO_SECRET
6cbabf03cSDov Murik	select SECURITYFS
7cbabf03cSDov Murik	help
8cbabf03cSDov Murik	  This is a driver for accessing the EFI secret area via securityfs.
9cbabf03cSDov Murik	  The EFI secret area is a memory area designated by the firmware for
10cbabf03cSDov Murik	  confidential computing secret injection (for example for AMD SEV
11cbabf03cSDov Murik	  guests).  The driver exposes the secrets as files in
12cbabf03cSDov Murik	  <securityfs>/secrets/coco.  Files can be read and deleted (deleting
13cbabf03cSDov Murik	  a file wipes the secret from memory).
14cbabf03cSDov Murik
15cbabf03cSDov Murik	  To compile this driver as a module, choose M here.
16cbabf03cSDov Murik	  The module will be called efi_secret.
17