1*cbabf03cSDov Murik# SPDX-License-Identifier: GPL-2.0-only 2*cbabf03cSDov Murikconfig EFI_SECRET 3*cbabf03cSDov Murik tristate "EFI secret area securityfs support" 4*cbabf03cSDov Murik depends on EFI && X86_64 5*cbabf03cSDov Murik select EFI_COCO_SECRET 6*cbabf03cSDov Murik select SECURITYFS 7*cbabf03cSDov Murik help 8*cbabf03cSDov Murik This is a driver for accessing the EFI secret area via securityfs. 9*cbabf03cSDov Murik The EFI secret area is a memory area designated by the firmware for 10*cbabf03cSDov Murik confidential computing secret injection (for example for AMD SEV 11*cbabf03cSDov Murik guests). The driver exposes the secrets as files in 12*cbabf03cSDov Murik <securityfs>/secrets/coco. Files can be read and deleted (deleting 13*cbabf03cSDov Murik a file wipes the secret from memory). 14*cbabf03cSDov Murik 15*cbabf03cSDov Murik To compile this driver as a module, choose M here. 16*cbabf03cSDov Murik The module will be called efi_secret. 17