On 4/22/25 11:17, Andrew Cooper wrote: > On 21/04/2025 9:52 pm, Dave Hansen wrote: >> Purely from the amount of interest and review tags and the whole "v14" >> thing, it doesn't look like this is very important to anyone. Not to be >> to flippant about it, but if nobody else cares, why should I (or the >> other x86 maintainers)? > There are several downstreams already using this as a part of their > overall system security, one example being > https://www.qubes-os.org/doc/anti-evil-maid/
OK, but what problems are they solving by using this as opposed to existing trusted boot? While I don't doubt that folks _can_ install and use Xen on their laptop, it's unclear to me how pervasive this is. Is this just folks tinkering around or is this something that has large deployments where folks really *CARE* about it?
