On Fri, Aug 15, 2025 at 11:09:07AM -0700, Chris Fenner wrote: > > I'm happy to make patch next week for this change too. So probably this > > where I align myself to. It's just the best average IMHO. Everyone gets > > exactly what they want, right? > > To be clear: I already have what I want (the ability to disable this > feature because it seems broken to me), I'm just making > recommendations as a TPM abyssal domain expert. I hope my feedback is > of some use on this -- the work of dealing with interposer attackers > is quite important and I appreciate the effort already put in by the > team.
So, if the feature is locked into persistent handle, the net effect meets the same goals. I'll pursue on a patch. > > Thanks > Chris BR, Jarkko
