Re: [PATCH] Ability to read the MKTME status from userspace (patch v2)
From: Dave Hansen
Date: Thu Jun 25 2020 - 17:29:18 EST
On 6/25/20 2:10 PM, Daniel Gutson wrote:
> The intent of this patch is to provide visibility of the
> MKTME status to userspace. This is an important factor for
> firmware security related applilcations.
We need more specifics than this. It's an important factor for what,
exactly? Who will consume this and what will they do with it?
I'm also not sure we want to have an Intel product name in the ABI. If
we're meaning to tell folks if hardware memory encryption is available
on the platform, let's say _that_, rather than talk about MKTME.
Also, MKTME enabling isn't all that interesting. TME is much more
interesting and much more opaque.