Re: [PATCH 0/4] keys: Introduce a keys frontend for attestation reports
From: Jarkko Sakkinen
Date: Tue Aug 01 2023 - 14:49:12 EST
On Tue Aug 1, 2023 at 1:41 AM EEST, Huang, Kai wrote:
> On Mon, 2023-07-31 at 10:09 +0000, Jarkko Sakkinen wrote:
> > > This facility is different, it is just aiming to unify this attestation
> > > report flow. It scales to any driver that can provide the ->auth_new()
> > > operation. I have the sev-guest conversion in this set, and Sathya has
> > > tested this with tdx-guest. I am hoping Samuel can evaluate it for
> > > cove-guest or whatever that driver ends up being called.
> >
> > What about SGX without TDX?
>
> SGX attestation is completely among userspace enclaves, and the existing SGX
> userspace stack has fully adopted what is needed to do attestation. Why do we
> need to cover SGX?
I have no answer to that. I'm merely trying to understand what this is.
BR, Jarkko