Message ID | 20230419151321.6167-1-jorge.lopez2@hp.com |
---|---|
Headers |
Return-Path: <linux-kernel-owner@vger.kernel.org> Delivered-To: ouuuleilei@gmail.com Received: by 2002:a59:b0ea:0:b0:3b6:4342:cba0 with SMTP id b10csp473526vqo; Wed, 19 Apr 2023 08:27:42 -0700 (PDT) X-Google-Smtp-Source: AKy350a0zuAvtPOGVdgAWfLERMvj9zyFV1C1f1rQgYthstiwC2DOH2dhLXEMD6ohwFqsgJ7jF7JF X-Received: by 2002:a17:902:d511:b0:1a6:961e:fd0b with SMTP id b17-20020a170902d51100b001a6961efd0bmr7155395plg.4.1681918062719; Wed, 19 Apr 2023 08:27:42 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1681918062; cv=none; d=google.com; s=arc-20160816; b=feBaVR1OrQDY+i57Obl1C9hmbAcQz2f6gEPNetCQ8M6VXylG/3uojfGJiV7+bOGiBk YAYrAjN0mmxZuU7+bjUjmK5ohTQKsM/nqjjG5daCRLTVDmCwrzR8yA3Go7LCQk3O2Xj0 u69No/Ous9s4qt19ferUirn8rbDTHI30+4piicjI5B2XvcpHrD46MBSyNiTm1EeB/WyR c3mwRsVrN0Fuzyb91E7HLf+lAoxmOFsqK975yNp5XV2fx7rPMB10kL3C3LobLVGdOffS xgnAH2Sb/qJGC1wNuojfTuFa0Bn7mqlrvU7qsls8eTw3AhD4K5ryOzxZBG50794FkAIF Ktpg== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:content-transfer-encoding:mime-version :message-id:date:subject:to:from:dkim-signature; bh=LgyelK5AQ23WEMgFpi3kd5xccNHQg9qlLU9me3qruqc=; b=ZThaA8bTuxfl6pWxytWtNiYAUVv6oZm0toG1TQyzRkkKGpJDZrDWA7kqryo6lxj8E2 vPeyMrJ24lPey/I+fP8KM3U2VVM08ifuincZodM+sTcSEFtL5LRiK346KyvuWfpP5od1 CnmP/oPwdWpk79+ZomCrtua1uQj6gOF0814M9rEiIyk+G7g0UxSmKvpJUk+H/0OFgLj+ 6HsgIx7+jRjOakKoAEwMPzXOeuxhER7nnQLdbporEOCyhicQ6X/S0W2Q3Kgz9dR73Bfj p9/x4XnQs0FRFApy4c9JM8421sTwyRtfo649yivkoEaat6h4znUt8/JWfbuJ7Gp16cJP JIbQ== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@gmail.com header.s=20221208 header.b=bc2fv55E; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20]) by mx.google.com with ESMTP id b9-20020a1709027e0900b001a816a7c374si2115283plm.346.2023.04.19.08.27.27; Wed, 19 Apr 2023 08:27:42 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20; Authentication-Results: mx.google.com; dkim=pass header.i=@gmail.com header.s=20221208 header.b=bc2fv55E; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S233564AbjDSPOA (ORCPT <rfc822;peter110.wang@gmail.com> + 99 others); Wed, 19 Apr 2023 11:14:00 -0400 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:35038 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S233465AbjDSPNp (ORCPT <rfc822;linux-kernel@vger.kernel.org>); Wed, 19 Apr 2023 11:13:45 -0400 Received: from mail-ot1-x334.google.com (mail-ot1-x334.google.com [IPv6:2607:f8b0:4864:20::334]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 0A98C6A76; Wed, 19 Apr 2023 08:13:26 -0700 (PDT) Received: by mail-ot1-x334.google.com with SMTP id 46e09a7af769-6a5f21a0604so1478111a34.2; Wed, 19 Apr 2023 08:13:26 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20221208; t=1681917205; x=1684509205; h=content-transfer-encoding:mime-version:message-id:date:subject:to :from:from:to:cc:subject:date:message-id:reply-to; bh=LgyelK5AQ23WEMgFpi3kd5xccNHQg9qlLU9me3qruqc=; b=bc2fv55EDQj93fliAAZqIxT7rQ8icWliqDo8R8snKM0FchlmRfy95/dsaW7BBx2YQc kDIJ4HUH6L4msmAMCyIV62qsXdZxxDAg7bdU10hSNKyIZO66guY9PCCOFxSit7VDZvZz rI86KvGbV49aTGTrbM4lWhkvD8oXTUI4DnM2ipipXZFRfk1DtHCRT25z26jE/tyhTxDe wHW/Ih2oo9DVUt/6mzzPh8qvdAXdtRwYTP22b62vpKMQSlTLUP7H1H6UzqgBZ4twV5FD 7Wyr0CHYRmgXrfpCuwmdzgfFJH4FWQiCDLbEtL2TJ9v7oIPX7LOQDvXAieFHcVgN1jBc UhNQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20221208; t=1681917205; x=1684509205; h=content-transfer-encoding:mime-version:message-id:date:subject:to :from:x-gm-message-state:from:to:cc:subject:date:message-id:reply-to; bh=LgyelK5AQ23WEMgFpi3kd5xccNHQg9qlLU9me3qruqc=; b=CqeaPUm76Vdil29+NntCAkKTHmjVJBMs7tg81RuO6poeC6ArFy0n/7asL1jYmXK4fv 06Pi7bpMn00IbPRFkBEjTAd1uMdDyOTqdUt3e8drkf9FSXe8Rlm33y3DJp4tX08Wy66y Wa/nVThe318WdvwnykZ8gARR7rCfFONpAXGGwc4lOGUtdMW58JmHBvIy4QKWQQ4UPT/8 aHe39LWnHjehBNIZA4r6pPsvBBymUaBc8LFBaIdm+pUvd7IMYAF50lsIWmGdB0bSIOIa VbiSt2I+D20YkWi+v6ceKkZpd1otY/TM2DAP/R6NBvuyhRn1/14kox5clL0lov7/AQjL mhAQ== X-Gm-Message-State: AAQBX9dFfOtt1p+rz9pkGZtuaXXSuYoTmkhLt8IL3GjGRtgp6pawvqEK QVL9cHVQwjSwTLvJCuoUSj4= X-Received: by 2002:a9d:65c7:0:b0:6a4:402c:50bf with SMTP id z7-20020a9d65c7000000b006a4402c50bfmr3086109oth.37.1681917205376; Wed, 19 Apr 2023 08:13:25 -0700 (PDT) Received: from grumpy-VECTOR.hsd1.tx.comcast.net ([2601:2c3:480:7390:e175:6963:338:7453]) by smtp.gmail.com with ESMTPSA id f17-20020a056830205100b00690e990e61asm4308842otp.14.2023.04.19.08.13.24 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Wed, 19 Apr 2023 08:13:25 -0700 (PDT) From: Jorge Lopez <jorgealtxwork@gmail.com> X-Google-Original-From: Jorge Lopez <jorge.lopez2@hp.com> To: hdegoede@redhat.com, platform-driver-x86@vger.kernel.org, linux-kernel@vger.kernel.org, thomas@t-8ch.de Subject: [PATCH v10 00/14] HP BIOSCFG driver Date: Wed, 19 Apr 2023 10:13:07 -0500 Message-Id: <20230419151321.6167-1-jorge.lopez2@hp.com> X-Mailer: git-send-email 2.34.1 MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit X-Spam-Status: No, score=-2.1 required=5.0 tests=BAYES_00,DKIM_SIGNED, DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,FREEMAIL_FROM, RCVD_IN_DNSWL_NONE,SPF_HELO_NONE,SPF_PASS,T_SCC_BODY_TEXT_LINE autolearn=ham autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on lindbergh.monkeyblade.net Precedence: bulk List-ID: <linux-kernel.vger.kernel.org> X-Mailing-List: linux-kernel@vger.kernel.org X-getmail-retrieved-from-mailbox: =?utf-8?q?INBOX?= X-GMAIL-THRID: =?utf-8?q?1763618108762949564?= X-GMAIL-MSGID: =?utf-8?q?1763618914654774807?= |
Series |
HP BIOSCFG driver
|
|
Message
Jorge Lopez
April 19, 2023, 3:13 p.m. UTC
HP BIOS Configuration driver purpose is to provide a driver supporting
the latest sysfs class firmware attributes framework allowing the user
to change BIOS settings and security solutions on HP Inc.’s commercial
notebooks.
Many features of HP Commercial notebooks can be managed using Windows
Management Instrumentation (WMI). WMI is an implementation of Web-Based
Enterprise Management (WBEM) that provides a standards-based interface
for changing and monitoring system settings. HP BIOSCFG driver provides
a native Linux solution and the exposed features facilitates the
migration to Linux environments.
The Linux security features to be provided in hp-bioscfg driver enables
managing the BIOS settings and security solutions via sysfs, a virtual
filesystem that can be used by user-mode applications. The new
documentation cover HP-specific firmware sysfs attributes such Secure
Platform Management and Sure Start. Each section provides security
feature description and identifies sysfs directories and files exposed
by the driver.
Many HP Commercial notebooks include a feature called Secure Platform
Management (SPM), which replaces older password-based BIOS settings
management with public key cryptography. PC secure product management
begins when a target system is provisioned with cryptographic keys
that are used to ensure the integrity of communications between system
management utilities and the BIOS.
HP Commercial notebooks have several BIOS settings that control its
behaviour and capabilities, many of which are related to security.
To prevent unauthorized changes to these settings, the system can
be configured to use a cryptographic signature-based authorization
string that the BIOS will use to verify authorization to modify the
setting.
Linux Security components are under development and not published yet.
The only linux component is the driver (hp bioscfg) at this time.
Other published security components are under Windows.
Signed-off-by: Jorge Lopez <jorge.lopez2@hp.com>
---
Based on the latest platform-drivers-x86.git/for-next
History
Version 10
Break down changes to single files per patch
Removed SPM/statusbin support
Patches
Documentation
biosattr-interface
bioscfg
int-attributes
ordered-attributes
passwdobj-attributes
string-attributes
bioscfg-h
enum-attributes
passwdattr-interface
spmobj-attributes
surestart-attributes
Makefile ../hp/Makefile ../hp/Kconfig
MAINTAINERS
Version 9
Includes only sysfs-class-firmware-attributes documentation
Version 8
Includes only sysfs-class-firmware-attributes documentation
Version 7
Includes only sysfs-class-firmware-attributes documentation
Version 6
Breaks down the changes into 4 patches
SureAdmin-attributes was removed
Version 5
Remove version 4 patch 1
Address review changes proposed in Version 4
Reorganize all patches number and file order
Jorge Lopez (14):
HP BIOSCFG driver - Documentation
HP BIOSCFG driver - biosattr-interface
HP BIOSCFG driver - bioscfg
HP BIOSCFG driver - int-attributes
HP BIOSCFG driver - ordered-attributes
HP BIOSCFG driver - passwdobj-attributes
HP BIOSCFG driver - string-attributes
HP BIOSCFG driver - bioscfg-h
HP BIOSCFG driver - enum-attributes
HP BIOSCFG driver - passwdattr-interface
HP BIOSCFG driver - spmobj-attributes
HP BIOSCFG driver - surestart-attributes
HP BIOSCFG driver - Makefile
HP BIOSCFG driver - MAINTAINERS
.../testing/sysfs-class-firmware-attributes | 98 +-
MAINTAINERS | 6 +
drivers/platform/x86/hp/Kconfig | 16 +
drivers/platform/x86/hp/Makefile | 1 +
drivers/platform/x86/hp/hp-bioscfg/Makefile | 13 +
.../x86/hp/hp-bioscfg/biosattr-interface.c | 305 ++++++
drivers/platform/x86/hp/hp-bioscfg/bioscfg.c | 961 ++++++++++++++++++
drivers/platform/x86/hp/hp-bioscfg/bioscfg.h | 613 +++++++++++
.../x86/hp/hp-bioscfg/enum-attributes.c | 543 ++++++++++
.../x86/hp/hp-bioscfg/int-attributes.c | 474 +++++++++
.../x86/hp/hp-bioscfg/ordered-attributes.c | 563 ++++++++++
.../x86/hp/hp-bioscfg/passwdattr-interface.c | 51 +
.../x86/hp/hp-bioscfg/passwdobj-attributes.c | 668 ++++++++++++
.../x86/hp/hp-bioscfg/spmobj-attributes.c | 405 ++++++++
.../x86/hp/hp-bioscfg/string-attributes.c | 451 ++++++++
.../x86/hp/hp-bioscfg/surestart-attributes.c | 130 +++
16 files changed, 5296 insertions(+), 2 deletions(-)
create mode 100644 drivers/platform/x86/hp/hp-bioscfg/Makefile
create mode 100644 drivers/platform/x86/hp/hp-bioscfg/biosattr-interface.c
create mode 100644 drivers/platform/x86/hp/hp-bioscfg/bioscfg.c
create mode 100644 drivers/platform/x86/hp/hp-bioscfg/bioscfg.h
create mode 100644 drivers/platform/x86/hp/hp-bioscfg/enum-attributes.c
create mode 100644 drivers/platform/x86/hp/hp-bioscfg/int-attributes.c
create mode 100644 drivers/platform/x86/hp/hp-bioscfg/ordered-attributes.c
create mode 100644 drivers/platform/x86/hp/hp-bioscfg/passwdattr-interface.c
create mode 100644 drivers/platform/x86/hp/hp-bioscfg/passwdobj-attributes.c
create mode 100644 drivers/platform/x86/hp/hp-bioscfg/spmobj-attributes.c
create mode 100644 drivers/platform/x86/hp/hp-bioscfg/string-attributes.c
create mode 100644 drivers/platform/x86/hp/hp-bioscfg/surestart-attributes.c