On Mon, Jun 15, 2020 at 06:17:40PM -0700, Rajat Jain wrote: > The "ExternalFacing" devices (root ports) are still internal devices > that sit on the internal system fabric and thus trusted. Currently they > were being marked untrusted - likely as an unintended border case. It was actually intentional :) At the time this was added we did not see benefits from doing this and even with this you actually are going to still miss things like a TBT chip that is soldered on the motherboard, I guess that can be though as an internal device as well. No objections to this patch, though.
