162306a36Sopenharmony_ci# SPDX-License-Identifier: GPL-2.0-only 262306a36Sopenharmony_ciconfig EFI_SECRET 362306a36Sopenharmony_ci tristate "EFI secret area securityfs support" 462306a36Sopenharmony_ci depends on EFI && X86_64 562306a36Sopenharmony_ci select EFI_COCO_SECRET 662306a36Sopenharmony_ci select SECURITYFS 762306a36Sopenharmony_ci help 862306a36Sopenharmony_ci This is a driver for accessing the EFI secret area via securityfs. 962306a36Sopenharmony_ci The EFI secret area is a memory area designated by the firmware for 1062306a36Sopenharmony_ci confidential computing secret injection (for example for AMD SEV 1162306a36Sopenharmony_ci guests). The driver exposes the secrets as files in 1262306a36Sopenharmony_ci <securityfs>/secrets/coco. Files can be read and deleted (deleting 1362306a36Sopenharmony_ci a file wipes the secret from memory). 1462306a36Sopenharmony_ci 1562306a36Sopenharmony_ci To compile this driver as a module, choose M here. 1662306a36Sopenharmony_ci The module will be called efi_secret. 17