Re: [PATCH 0/4] Adds wrapped key support for inline storage encryption

[PATCH 0/4] Adds wrapped key support for inline storage encryption · Gaurav Kashyap <hidden> · 2021-11-03
[PATCH 1/4] ufs: move ICE functionality to a common library · Gaurav Kashyap <hidden> · 2021-11-03
Re: [PATCH 1/4] ufs: move ICE functionality to a common library · Eric Biggers <ebiggers@kernel.org> · 2021-11-04
[PATCH 2/4] qcom_scm: scm call for deriving a software secret · Gaurav Kashyap <hidden> · 2021-11-03
Re: [PATCH 2/4] qcom_scm: scm call for deriving a software secret · Eric Biggers <ebiggers@kernel.org> · 2021-11-04
[PATCH 3/4] soc: qcom: add HWKM library for storage encryption · Gaurav Kashyap <hidden> · 2021-11-03
Re: [PATCH 3/4] soc: qcom: add HWKM library for storage encryption · Eric Biggers <ebiggers@kernel.org> · 2021-11-04
[PATCH 4/4] soc: qcom: add wrapped key support for ICE · Gaurav Kashyap <hidden> · 2021-11-03
Re: [PATCH 4/4] soc: qcom: add wrapped key support for ICE · Eric Biggers <ebiggers@kernel.org> · 2021-11-05
Re: [PATCH 0/4] Adds wrapped key support for inline storage encryption · Eric Biggers <ebiggers@kernel.org> · 2021-11-04
RE: [PATCH 0/4] Adds wrapped key support for inline storage encryption · Gaurav Kashyap <hidden> · 2021-12-08
Re: [PATCH 0/4] Adds wrapped key support for inline storage encryption · Eric Biggers <ebiggers@kernel.org> · 2021-12-08
RE: [PATCH 0/4] Adds wrapped key support for inline storage encryption · Gaurav Kashyap <hidden> · 2021-12-08

From: Eric Biggers <ebiggers@kernel.org>
Date: 2021-12-08 00:23:21
Also in: linux-arm-msm, linux-fscrypt, linux-mmc, linux-scsi

On Wed, Dec 08, 2021 at 12:09:03AM +0000, Gaurav Kashyap wrote:

Hey Eric, here are the answers to some of the questions across all the patches

quoted

Also, at runtime, does any of the Qualcomm hardware support multiple key
types, and if so can they be used at the same time?

Currently, with hardware key manager data path, there is no support for
standard keys. So, when HWKM is being used, only wrapped keys are supported.
If standard keys need to be supported, it can be, but modifications are
required within trustzone.

Do the SoCs support both key types though, just not at the same time?  E.g. when
the ufs_qcom driver loads on SM8350, could it choose to expose either standard
key support or wrapped key support, or is it predetermined by the hardware
and/or firmware?  If the driver has a choice, then there should be a kernel
module parameter (module_param()) that controls it, so that the user can choose
which key type they want when they boot their kernel.

- Eric

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help