Re: [PATCH v4 2/2] efi: Add API for retrieving the EFI secret for cryptodisk

+ .put = grub_efi_secret_put, > +}; > + > +GRUB_MOD_INIT(efisecret) > +{ > + grub_cryptodisk_add_secret_provider (&secret); > +} > + > +GRUB_MOD_FINI(efisecret) > +{ > + grub_cryptodisk_remove_secret_provider (&secret); > +} > diff --git a/include/grub/efi/api.h b/inclu

Re: [PATCH 0/3] Add ability to use SEV provisioned secrets for disk decryption

* James Bottomley (j...@linux.ibm.com) wrote: > On Fri, 2020-11-13 at 17:50 +0000, Dr. David Alan Gilbert wrote: > > * James Bottomley (j...@linux.ibm.com) wrote: > > > To achieve encrypted disk images in the AMD SEV encrypted virtual > > > machine, we need to add the a

Re: [PATCH 0/3] Add ability to use SEV provisioned secrets for disk decryption

rub-core/disk/efi/sevsecret.c | 118 + > grub-core/disk/geli.c | 5 +- > grub-core/disk/luks.c | 12 ++-- > grub-core/disk/luks2.c | 12 ++-- > include/grub/cryptodisk.h | 8 ++- > include/grub/efi/api.h | 15 +++++ >

Re: [PATCH 2/3] cryptodisk: add OS provided secret support

; >cmd = grub_register_extcmd ("cryptomount", grub_cmd_cryptomount, 0, > - N_("SOURCE|-u UUID|-a|-b"), > + N_("SOURCE|-u UUID|-a|-b|-s"), > N_("Mount a crypto device."), options); >grub_procfs_register ("luks_script", &luks_script); > } > diff --git a/include/grub/cryptodisk.h b/include/grub/cryptodisk.h > index 45dae5483..55c411754 100644 > --- a/include/grub/cryptodisk.h > +++ b/include/grub/cryptodisk.h > @@ -163,4 +163,6 @@ grub_util_get_geli_uuid (const char *dev); > grub_cryptodisk_t grub_cryptodisk_get_by_uuid (const char *uuid); > grub_cryptodisk_t grub_cryptodisk_get_by_source_disk (grub_disk_t disk); > > +grub_err_t grub_cryptodisk_set_secret(char *secret); > + > #endif > -- > 2.26.2 > -- Dr. David Alan Gilbert / dgilb...@redhat.com / Manchester, UK ___ Grub-devel mailing list Grub-devel@gnu.org https://lists.gnu.org/mailman/listinfo/grub-devel