Re: [PATCH v5 11/11] intel_sgx: driver documentation

From: Borislav Petkov
Date: Tue Nov 21 2017 - 07:50:12 EST

On Tue, Nov 21, 2017 at 02:38:54PM +0200, Jarkko Sakkinen wrote:
> Try to start LE. If it doesn't start i.e. is signed with a different
> root key than the one inside MSRs, then fail the initialization.

But what if the one inside the MSRs is from the fw vendor and I don't
trust it?


Good mailing practices for 400: avoid top-posting and trim the reply.