Dave Jiang wrote: > > > On 12/1/2022 3:03 PM, Dan Williams wrote: > > Preclude the possibility of user tooling sending device secrets in the > > clear into the kernel by marking the security commands as exclusive. > > This mandates the usage of the keyctl ABI for managing the device > > passphrase. > > > > Signed-off-by: Dan Williams <[email protected]> > > Reviewed-by: Dave Jiang <[email protected]> > > No need for get security state command?
That one is ok since it's just a read-only command with no side-effect and no key material traversing the kernel-user boundary.
