On 10/27/21 12:55 PM, Martin Fernandez wrote: > This is a serie of patches for exporting the needed information to > userspace to determine if a machine is using Intel's TME or MKTME. > > In a next patch I'm going to export if TME/MKTME is activated by the > BIOS to sysfs, since right now for the user, this information is only > available in the kernel logs, and it's not appropriate for fwupd to > scan the boot logs just to parse an integer. I'm looking for > suggestions for where to store this value. I didn't see any TME or MKTME-specific stuff in these patches. Are you assuming that all systems with any MEMBLOCK_CRYPTO_CAPABLE regions have TME activated? This also doesn't mention how userspace plans to *use* this information. I think you mentioned it before, but it needs to be in the cover letter and changelogs too.
