On Fri, Jan 28, 2022 at 12:08:07PM +0200, Jarkko Sakkinen wrote: > I noticed that with aesmd the only feasible way to host it is to make a > VM for it because: > > - A beter predictable round-trip time for attestation. > - In the worst case, attestation could be potentially blocked. > > Should the driver have a page locking mechanism to make this more robust, > or do we want to satisfy to this? I'm not 100% sure what'd be the right > path forward, just pointing out a potential availability issue. Probably makes sense to spread just a bit :-) BR, Jarkko
