Hi,
@OwenBurnett wrote:
Thanks, I don't see what there is to work on, its just a line or two or lock out code to remove,
Umm.. no. Sadly it isn't that simple.
In theory, yes they could do that, but it isn't really an option.
Besides being a "crypto processor" the TPM is also used to store secrets.
If those secrets are no longer encrypted then the safety that this TPM module is supposed to provide is no longer true.
This is one of those reasons on why the VM had to be encrypted for you to be able to add a TPM device.
As a result, it will require some real engineering on VMware's behalf in order to be able to remove the encrypt "the whole VM" part.
Perhaps they can get away with only encrypting the .vmx, or maybe there will be a small encrypted disk (like the UEFI disk that you'll with proxmox for example)
--
Wil
