Re: [PATCH] Ability to read the MKTME status from userspace

From: Borislav Petkov
Date: Thu Jun 18 2020 - 18:01:54 EST

Next message: Russell King - ARM Linux admin: "Re: [PATCH] Fix unwind_frame for clang-built kernels"
Previous message: Doug Anderson: "Re: [PATCH v4 5/5] spi: spi-geni-qcom: Don't keep a local state variable"
In reply to: Dave Hansen: "Re: [PATCH] Ability to read the MKTME status from userspace"
Next in thread: Borislav Petkov: "Re: [PATCH] Ability to read the MKTME status from userspace"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Thu, Jun 18, 2020 at 06:26:25PM -0300, Daniel Gutson wrote:
> Red Hat and Eclypsium are working on a specification to assess
> firmware platform security. One of the inputs that the specification
> takes into consideration is whether MKTME is enabled or disabled.
> Exposing this value is necessary for tools checking the conformance of
> the specification.

Would it be enough to grep /proc/cpuinfo whether it has "tme" or not,
instead of adding a bunch of code just to read a status value?

@Dave: this is where those flags in /proc/cpuinfo come real handy. :-)

--
Regards/Gruss,
Boris.

https://people.kernel.org/tglx/notes-about-netiquette

Next message: Russell King - ARM Linux admin: "Re: [PATCH] Fix unwind_frame for clang-built kernels"
Previous message: Doug Anderson: "Re: [PATCH v4 5/5] spi: spi-geni-qcom: Don't keep a local state variable"
In reply to: Dave Hansen: "Re: [PATCH] Ability to read the MKTME status from userspace"
Next in thread: Borislav Petkov: "Re: [PATCH] Ability to read the MKTME status from userspace"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]