Re: [PATCH] docs: Extend trusted keys documentation for TPM 2.0

From: Mimi Zohar
Date: Sun Dec 02 2018 - 10:11:00 EST


On Fri, 2018-11-30 at 15:46 -0800, Jarkko Sakkinen wrote:
> On Fri, Nov 30, 2018 at 03:45:07PM -0800, Jarkko Sakkinen wrote:
> > On Tue, Nov 06, 2018 at 01:17:34PM -0500, Mimi Zohar wrote:
> > > On Tue, 2018-11-06 at 09:46 -0700, Jerry Snitselaar wrote:
> > > > On Fri Oct 19 18, Stefan Berger wrote:
> > > > >Extend the documentation for trusted keys with documentation for how to
> > > > >set up a key for a TPM 2.0 so it can be used with a TPM 2.0 as well.
> > > > >
> > > > >Signed-off-by: Stefan Berger <stefanb@xxxxxxxxxxxxx>
> > > > >Reviewed-by: Mimi Zohar <zohar@xxxxxxxxxxxxx>
> > > >
> > > > Acked-by: Jerry Snitselaar <jsnitsel@xxxxxxxxxx>
> > >
> > > Thanks! ÂThis patch is now staged in the #next-integrity-queued
> > > branch.
> > >
> > > Mimi
> >
> > Reviewed-by: Jarkko Sakkinen <jarkko.sakkinen@xxxxxxxxxxxxxxx>
>
> Brings to mind, in the long run where the backend code for trusted keys
> should reside.

Are you asking about coordinating staging the trusted key patches to
be upstreamed or about moving portions of the encrypted keys code out
of the keyring subsystem?

I'm not sure there needs to be a separate encrypted-keys pull request.
ÂEither they can be upstreamed via the TPM or the integrity subsystem
for now.

Mimi