git.openwrt.org Git - openwrt/staging/blogic.git/commit

author	Dave Jiang <dave.jiang@intel.com>
	Thu, 6 Dec 2018 20:40:01 +0000 (12:40 -0800)
committer	Dan Williams <dan.j.williams@intel.com>
	Fri, 14 Dec 2018 01:54:13 +0000 (17:54 -0800)
commit	4c6926a23b76ea23403976290cd45a7a143f6500
tree	55dc830eafb03c36a4445f6b03c7e5dbe46be2dd	tree \| snapshot
parent	37833fb7989a9d3c3e26354e6878e682c340d718	commit \| diff

acpi/nfit, libnvdimm: Add unlock of nvdimm support for Intel DIMMs

Add support to unlock the dimm via the kernel key management APIs. The
passphrase is expected to be pulled from userspace through keyutils.
The key management and sysfs attributes are libnvdimm generic.

Encrypted keys are used to protect the nvdimm passphrase at rest. The
master key can be a trusted-key sealed in a TPM, preferred, or an
encrypted-key, more flexible, but more exposure to a potential attacker.

Signed-off-by: Dave Jiang <dave.jiang@intel.com>
Co-developed-by: Dan Williams <dan.j.williams@intel.com>
Reported-by: Randy Dunlap <rdunlap@infradead.org>
Signed-off-by: Dan Williams <dan.j.williams@intel.com>

drivers/acpi/nfit/intel.c		diff \| blob \| history
drivers/nvdimm/Kconfig		diff \| blob \| history
drivers/nvdimm/Makefile		diff \| blob \| history
drivers/nvdimm/dimm.c		diff \| blob \| history
drivers/nvdimm/nd.h		diff \| blob \| history
drivers/nvdimm/security.c	[new file with mode: 0644]	blob
include/linux/libnvdimm.h		diff \| blob \| history
tools/testing/nvdimm/Kbuild		diff \| blob \| history