Re: [PATCH v4 7/8] firmware: qcom: scm: rework QSEECOM allowlist

From: Dmitry Baryshkov
Date: Thu Jun 26 2025 - 07:10:21 EST

Next message: Dmitry Baryshkov: "Re: [PATCH 1/1] arm64: dts: qcom: qcs615: add missing dt property in QUP SEs"
Previous message: Mark Brown: "Re: [PATCH v2] ASoC: fsl_sai: Force a software reset when starting in consumer mode"
In reply to: Johan Hovold: "Re: [PATCH v4 7/8] firmware: qcom: scm: rework QSEECOM allowlist"
Next in thread: Johan Hovold: "Re: [PATCH v4 7/8] firmware: qcom: scm: rework QSEECOM allowlist"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Thu, Jun 26, 2025 at 11:56:01AM +0200, Johan Hovold wrote:
> On Wed, Jun 25, 2025 at 01:53:26AM +0300, Dmitry Baryshkov wrote:
> > From: Dmitry Baryshkov <dmitry.baryshkov@xxxxxxxxxx>
> >
> > Listing individual machines in qcom_scm_qseecom_allowlist doesn't scale.
> > Allow it to function as allow and disallow list at the same time by the
> > means of the match->data and list the SoC families instead of devices.
> >
> > In case a particular device has buggy or incompatible firmware user
> > still can disable QSEECOM by specifying qcom_scm.qseecom=off kernel
> > param and (in the longer term) adding machine-specific entry to the
> > qcom_scm_qseecom_allowlist table.
> >
> > Signed-off-by: Dmitry Baryshkov <dmitry.baryshkov@xxxxxxxxxx>
> > Reviewed-by: Konrad Dybcio <konrad.dybcio@xxxxxxxxxxxxxxxx>
> > Signed-off-by: Dmitry Baryshkov <dmitry.baryshkov@xxxxxxxxxxxxxxxx>
>
> > /*
> > * We do not yet support re-entrant calls via the qseecom interface. To prevent
> > - * any potential issues with this, only allow validated machines for now. Users
> > + * any potential issues with this, only allow validated platforms for now. Users
> > * still can manually enable or disable it via the qcom_scm.qseecom modparam.
> > + *
> > + * To disable QSEECOM for a particular machine, add compatible entry and set
> > + * data to &qcom_qseecom_disable.
> > */
> > static const struct of_device_id qcom_scm_qseecom_allowlist[] __maybe_unused = {
> > - { .compatible = "asus,vivobook-s15" },
> > - { .compatible = "asus,zenbook-a14-ux3407qa" },
> > - { .compatible = "asus,zenbook-a14-ux3407ra" },
> > - { .compatible = "dell,xps13-9345" },
> > - { .compatible = "hp,elitebook-ultra-g1q" },
> > - { .compatible = "hp,omnibook-x14" },
> > - { .compatible = "huawei,gaokun3" },
> > - { .compatible = "lenovo,flex-5g" },
> > - { .compatible = "lenovo,thinkpad-t14s" },
> > - { .compatible = "lenovo,thinkpad-x13s", },
> > { .compatible = "lenovo,yoga-c630", .data = &qcom_qseecom_ro_uefi, },
> > - { .compatible = "lenovo,yoga-slim7x" },
> > - { .compatible = "microsoft,arcata", },
> > - { .compatible = "microsoft,blackrock" },
> > - { .compatible = "microsoft,romulus13", },
> > - { .compatible = "microsoft,romulus15", },
> > - { .compatible = "qcom,sc8180x-primus" },
> > + { .compatible = "qcom,sc8180x", },
> > + { .compatible = "qcom,sc8280xp", },
> > { .compatible = "qcom,sc8280xp-crd", .data = &qcom_qseecom_ro_uefi, },
>
> You need to have the machine specific entries before the SoC fallbacks
> for this to work.

I don't think so. It's not how OF matching works.

>
> Perhaps this should be made more clear in the table by adding a
> separator comment before the SoC entries or similar.
>
> > - { .compatible = "qcom,x1e001de-devkit" },
> > - { .compatible = "qcom,x1e80100-crd" },
> > - { .compatible = "qcom,x1e80100-qcp" },
> > - { .compatible = "qcom,x1p42100-crd" },
> > + { .compatible = "qcom,sdm845", .data = &qcom_qseecom_disable, },
> > + { .compatible = "qcom,x1e80100", },
> > + { .compatible = "qcom,x1p42100", },
> > { }
> > };
> >
> > @@ -2046,12 +2035,22 @@ static bool qcom_scm_qseecom_machine_is_allowed(struct device *scm_dev,
> > match = of_match_node(qcom_scm_qseecom_allowlist, np);
> > of_node_put(np);
> >
> > - if (match && match->data)
> > + if (!match) {
> > + dev_info(scm_dev, "qseecom: untested machine, skipping\n");
> > + return false;
> > + }
> > +
> > + if (match->data)
> > *quirks = *(unsigned long *)(match->data);
> > else
> > *quirks = 0;
> >
> > - return match;
> > + if (*quirks & QCOM_QSEECOM_QUIRK_DISABLE) {
> > + dev_info(scm_dev, "qseecom: disabled by the quirk\n");
>
> Not sure this is needed since it presumably has been disabled because it
> has been tested and found not to work. No need to spam the logs with
> that on every boot.
>
> In any case I don't think you should be referring to "the quirk" which
> makes little sense without looking at the implementation.

ack

>
> > + return false;
> > + }
> > +
> > + return true;
> > }
>
> Johan

--
With best wishes
Dmitry

Next message: Dmitry Baryshkov: "Re: [PATCH 1/1] arm64: dts: qcom: qcs615: add missing dt property in QUP SEs"
Previous message: Mark Brown: "Re: [PATCH v2] ASoC: fsl_sai: Force a software reset when starting in consumer mode"
In reply to: Johan Hovold: "Re: [PATCH v4 7/8] firmware: qcom: scm: rework QSEECOM allowlist"
Next in thread: Johan Hovold: "Re: [PATCH v4 7/8] firmware: qcom: scm: rework QSEECOM allowlist"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]