Re: [PATCH] Ability to read the MKTME status from userspace (patch v2)

From: Dave Hansen
Date: Thu Jun 25 2020 - 17:29:18 EST

Next message: Mike Kravetz: "Re: [hugetlbfs] c0d0381ade: vm-scalability.throughput -33.4% regression"
Previous message: Jerry Snitselaar: "Re: [PATCH v2] tpm: tpm2-space: Resize session and context buffers dynamically"
In reply to: Dave Hansen: "Re: [PATCH] Ability to read the MKTME status from userspace (patch v2)"
Next in thread: Alison Schofield: "Re: [PATCH] Ability to read the MKTME status from userspace (patch v2)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 6/25/20 2:10 PM, Daniel Gutson wrote:
> The intent of this patch is to provide visibility of the
> MKTME status to userspace. This is an important factor for
> firmware security related applilcations.

We need more specifics than this. It's an important factor for what,
exactly? Who will consume this and what will they do with it?

I'm also not sure we want to have an Intel product name in the ABI. If
we're meaning to tell folks if hardware memory encryption is available
on the platform, let's say _that_, rather than talk about MKTME.

Also, MKTME enabling isn't all that interesting. TME is much more
interesting and much more opaque.

Next message: Mike Kravetz: "Re: [hugetlbfs] c0d0381ade: vm-scalability.throughput -33.4% regression"
Previous message: Jerry Snitselaar: "Re: [PATCH v2] tpm: tpm2-space: Resize session and context buffers dynamically"
In reply to: Dave Hansen: "Re: [PATCH] Ability to read the MKTME status from userspace (patch v2)"
Next in thread: Alison Schofield: "Re: [PATCH] Ability to read the MKTME status from userspace (patch v2)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]