From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org X-Spam-Level: X-Spam-Status: No, score=-2.4 required=3.0 tests=DKIM_SIGNED,DKIM_VALID, DKIM_VALID_AU,HEADER_FROM_DIFFERENT_DOMAINS,MAILING_LIST_MULTI,SPF_HELO_NONE, SPF_PASS,USER_AGENT_SANE_1 autolearn=no autolearn_force=no version=3.4.0 Received: from mail.kernel.org (mail.kernel.org [198.145.29.99]) by smtp.lore.kernel.org (Postfix) with ESMTP id 24DF1C606CF for ; Wed, 10 Jul 2019 12:14:06 +0000 (UTC) Received: from vger.kernel.org (vger.kernel.org [209.132.180.67]) by mail.kernel.org (Postfix) with ESMTP id F1D0520651 for ; Wed, 10 Jul 2019 12:14:05 +0000 (UTC) Authentication-Results: mail.kernel.org; dkim=pass (2048-bit key) header.d=linaro.org header.i=@linaro.org header.b="djB6tFez" Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1727255AbfGJMOE (ORCPT ); Wed, 10 Jul 2019 08:14:04 -0400 Received: from mail-wm1-f66.google.com ([209.85.128.66]:34277 "EHLO mail-wm1-f66.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1725911AbfGJMOE (ORCPT ); Wed, 10 Jul 2019 08:14:04 -0400 Received: by mail-wm1-f66.google.com with SMTP id w9so4512349wmd.1 for ; Wed, 10 Jul 2019 05:14:02 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=linaro.org; s=google; h=date:from:to:cc:subject:message-id:references:mime-version :content-disposition:in-reply-to:user-agent; bh=VIGpiD/b4QvsY5xkdx7aEJIrxrp4vS+C6jbYnop4lsE=; b=djB6tFezqr/i8CmI83Ds8pwgO9bKTWl7LzJ4Xkno8saZ+BdnHeBFTyd0v5wYoi1ED/ 0IMAfMZLUWU1E4z+BolmBXOwrR/6Wjkv1mifepGsjFaraQsYkJGQqza0W5Q7Ghtk6F3k Wp6d40/xP/qYG5UO8x8zvDhuA7kDmNSTw0cZbecLUSz8udZj/0RCMGNNWQovVjAMEzjd OTTOv4RPlHMAoNCsn7PwN0oWMrqSFBW+GxmdlsqjmdKPqMF/x3veVY6hk8bEAT6n0R0T p86asswZJimf9zD4DBolzuuOyivx4jIZzz2MLR2mZ2SrZpq4PjP+FQJ1FJzIm13WkfGK bwdQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:date:from:to:cc:subject:message-id:references :mime-version:content-disposition:in-reply-to:user-agent; bh=VIGpiD/b4QvsY5xkdx7aEJIrxrp4vS+C6jbYnop4lsE=; b=KJEbA+TSvU8fN8OjhQuSfIdotPX37eruvwzkcpJnNNSywLGBagak7XGagWlEjiZQtb Qh78ITmyxNY4bFZFnSND4JawNZwWxqDLG2HI2DbDqVbq8/q6Fvg7o6h9rIXYh9B4g+Bb G58VsP5BpWZECXk6/S8MUsXxQqMzS7kI1f2lWVDCMmEDXymp3AAGzFNFokde+gi0dUKd IyHM6q8uos6uhg8tDH3ScmTkZhMctF2SZKOjq05dbOJafulc+qdsEtm9FokeEDrnq8Gq kePIepuRudnDMWnHyeZT3919WYKMxikh1dJ2oQvI5NnHIdGqELc6/Her05eld+WDo2qO dkEA== X-Gm-Message-State: APjAAAXRo2DD8DzBRKnW2ENPLT85p0KXuQAiEUP0as0R3nOoLTu+npAO 205GiJMH8+3Z6mI9sKCAuql/Cg== X-Google-Smtp-Source: APXvYqyTB/Y4Qj0MHXp2GOWt42OVm+gtHhNUSrt1QVllGDOab+5Rxb2PRv/VLRP8/UmVfYjXS2aDBA== X-Received: by 2002:a1c:1a4c:: with SMTP id a73mr5435637wma.109.1562760841772; Wed, 10 Jul 2019 05:14:01 -0700 (PDT) Received: from apalos (athedsl-428434.home.otenet.gr. [79.131.225.144]) by smtp.gmail.com with ESMTPSA id r21sm4885127wrc.83.2019.07.10.05.13.59 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Wed, 10 Jul 2019 05:14:01 -0700 (PDT) Date: Wed, 10 Jul 2019 15:13:58 +0300 From: Ilias Apalodimas To: Thirupathaiah Annapureddy Cc: Jarkko Sakkinen , Sasha Levin , "peterhuewe@gmx.de" , "jgg@ziepe.ca" , "corbet@lwn.net" , "linux-kernel@vger.kernel.org" , "linux-doc@vger.kernel.org" , "linux-integrity@vger.kernel.org" , Microsoft Linux Kernel List , "Bryan Kelly (CSI)" , "tee-dev@lists.linaro.org" , "sumit.garg@linaro.org" , "rdunlap@infradead.org" , Joakim Bech Subject: Re: [PATCH v7 1/2] fTPM: firmware TPM running in TEE Message-ID: <20190710121358.GA12965@apalos> References: <20190627133004.GA3757@apalos> <0893dc429d4c3f3b52d423f9e61c08a5012a7519.camel@linux.intel.com> <20190702142109.GA32069@apalos> <20190703065813.GA12724@apalos> <20190704181120.GA21445@apalos> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.5.24 (2015-08-30) Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org Hi Thirupathaiah Apologies for tha lte reply, i somehow misplaced this mail. [...] > > > > Please check the previous mail from Sumit. It explains exaclty what's going on. > > The tl;dr version is that the storage is up only when the supplicant is > > running. > > I definitely know that OP-TEE can access storage only when the "user mode" supplicant > is running :). But fTPM NV storage should have been initialized in > in the preboot environment (UEFI/U-boot). > > It would also be helpful to understand the overall use case/scenario (Measured boot?)you > are trying to exercise with the fTPM. In the future yesm measured boot/ For now it's more like like try running it in QEMU to demonstrate firmware TPM makes sense and has use cases. > > I also want to emphasize that this discussion is turning into more of how > fTPM gets integrated/enabled in a new HW platform. > fTPM is hosted in github and you definitely bring any issues/feature requests there. > Ok > > > > > > If you let me know the HW platform details, I am happy to work with you to > > enable/integrate > > > fTPM TA on that HW platform. > > > > > Thanks, > > The hardware i am waiting for for has an eMMC RPMB. In theory the U-Boot > > supplicant support will be there so i'll be able to test it. > Can you give me the details of HW so that I can order one for myself? It's QEMU for now. We plan on doing something similar in an ST disco board though. > Is it one of the 96boards? stm32mp157c-dk2 is one of our targets. > The reason for the ask is that we have not upstreamd u-boot fTPM stack yet, > although we have future plans for it. > > --Thiru > Thanks /Ilias