On Mon, Nov 29, 2021 at 03:59:25PM -0800, Dan Williams wrote: > DOE negotiates security features like SPDM and IDE. I think it is > important for the kernel to be able to control access to DOE instances > even though it has not cared about protecting itself from userspace > initiated configuration writes in the past. I think DOE is pretty much a kernel only feature and we can't allow userspace access to it at all.
