[yocto-kernel-cache][PATCH 0/1] features: enable tpm

[yocto-kernel-cache][PATCH 0/1] features: enable tpm

[Patrick Ohly]

This was tested with the yocto-4.8 branch and linux-yocto 4.8.17 under
qemu with TPM provided by swtpm, but can and should also get merged
into the yocto-4.9 and master branches.

The feature intentionally enables all current TPM drivers. A real
production kernel should be more selective.

Patrick Ohly (1):
  meta: add TPM feature

 features/tpm/tpm.cfg | 18 ++++++++++++++++++
 features/tpm/tpm.scc |  4 ++++
 2 files changed, 22 insertions(+)
 create mode 100644 features/tpm/tpm.cfg
 create mode 100644 features/tpm/tpm.scc

base-commit: 3edb4de355873d32da9307a011adea2542bd05a7
-- 
git-series 0.9.1

[yocto-kernel-cache][PATCH 1/1] meta: add TPM feature

[Patrick Ohly]

Some hardware has a TPM chip and in addition, qemu can emulate it
using swtpm.

Signed-off-by: Patrick Ohly <patrick.ohly@intel.com>
---
 features/tpm/tpm.cfg | 18 ++++++++++++++++++
 features/tpm/tpm.scc |  4 ++++
 2 files changed, 22 insertions(+)
 create mode 100644 features/tpm/tpm.cfg
 create mode 100644 features/tpm/tpm.scc

diff --git a/features/tpm/tpm.cfg b/features/tpm/tpm.cfg
new file mode 100644
index 0000000..8b3f6d9
--- /dev/null
+++ b/features/tpm/tpm.cfg
@@ -0,0 +1,18 @@
+# Enable TPM device drivers.
+CONFIG_TCG_TPM=y
+CONFIG_HW_RANDOM_TPM=y
+CONFIG_TCG_TPM=y
+CONFIG_TCG_TIS_CORE=y
+CONFIG_TCG_TIS=y
+CONFIG_TCG_TIS_SPI=y
+CONFIG_TCG_TIS_I2C_ATMEL=y
+CONFIG_TCG_TIS_I2C_INFINEON=y
+CONFIG_TCG_TIS_I2C_NUVOTON=y
+CONFIG_TCG_NSC=y
+CONFIG_TCG_ATMEL=y
+CONFIG_TCG_INFINEON=y
+CONFIG_TCG_CRB=y
+CONFIG_TCG_VTPM_PROXY=y
+CONFIG_TCG_TIS_ST33ZP24=y
+CONFIG_TCG_TIS_ST33ZP24_I2C=y
+CONFIG_TCG_TIS_ST33ZP24_SPI=y
diff --git a/features/tpm/tpm.scc b/features/tpm/tpm.scc
new file mode 100644
index 0000000..eeddc31
--- /dev/null
+++ b/features/tpm/tpm.scc
@@ -0,0 +1,4 @@
+define KFEATURE_DESCRIPTION "Enable TCG TPM driver (Trusted Computing Group Trusted Platform Module)"
+define KFEATURE_COMPATIBILITY board
+
+kconf hardware tpm.cfg
-- 
git-series 0.9.1

Re: [yocto-kernel-cache][PATCH 0/1] features: enable tpm

[Bruce Ashfield]

On 01/23/2017 09:11 AM, Patrick Ohly wrote:
> This was tested with the yocto-4.8 branch and linux-yocto 4.8.17 under
> qemu with TPM provided by swtpm, but can and should also get merged
> into the yocto-4.9 and master branches.
>
> The feature intentionally enables all current TPM drivers. A real
> production kernel should be more selective.
>

Looks good to me. I've staged the change and will send SRCREV
updates later.

This missed a cc' to linux-yocto, but I noticed it regardless :D

Bruce

> Patrick Ohly (1):
>   meta: add TPM feature
>
>  features/tpm/tpm.cfg | 18 ++++++++++++++++++
>  features/tpm/tpm.scc |  4 ++++
>  2 files changed, 22 insertions(+)
>  create mode 100644 features/tpm/tpm.cfg
>  create mode 100644 features/tpm/tpm.scc
>
> base-commit: 3edb4de355873d32da9307a011adea2542bd05a7
>

Re: [yocto-kernel-cache][PATCH 0/1] features: enable tpm

[Patrick Ohly]

On Mon, 2017-01-23 at 14:51 -0500, Bruce Ashfield wrote:
> On 01/23/2017 09:11 AM, Patrick Ohly wrote:
> > This was tested with the yocto-4.8 branch and linux-yocto 4.8.17 under
> > qemu with TPM provided by swtpm, but can and should also get merged
> > into the yocto-4.9 and master branches.
> >
> > The feature intentionally enables all current TPM drivers. A real
> > production kernel should be more selective.
> >
> 
> Looks good to me. I've staged the change and will send SRCREV
> updates later.
> 
> This missed a cc' to linux-yocto, but I noticed it regardless :D

Thanks ;-} I had checked the 00-README in the yocto-kernel-cache, but
couldn't find instructions on where and how to submit changes. Is that
documented somewhere?

-- 
Best Regards, Patrick Ohly

The content of this message is my personal opinion only and although
I am an employee of Intel, the statements I make here in no way
represent Intel's position on the issue, nor am I authorized to speak
on behalf of Intel on this matter.

Re: [yocto-kernel-cache][PATCH 0/1] features: enable tpm

[Bruce Ashfield]

[-- Attachment #1: Type: text/plain, Size: 1426 bytes --]

On Jan 23, 2017 12:36 PM, "Patrick Ohly" <patrick.ohly@intel.com> wrote:

On Mon, 2017-01-23 at 14:51 -0500, Bruce Ashfield wrote:
> On 01/23/2017 09:11 AM, Patrick Ohly wrote:
> > This was tested with the yocto-4.8 branch and linux-yocto 4.8.17 under
> > qemu with TPM provided by swtpm, but can and should also get merged
> > into the yocto-4.9 and master branches.
> >
> > The feature intentionally enables all current TPM drivers. A real
> > production kernel should be more selective.
> >
>
> Looks good to me. I've staged the change and will send SRCREV
> updates later.
>
> This missed a cc' to linux-yocto, but I noticed it regardless :D

Thanks ;-} I had checked the 00-README in the yocto-kernel-cache, but
couldn't find instructions on where and how to submit changes. Is that
documented somewhere?



It used to be part of the kernel tree and not separated out.. so you are
right, it wouldn't be in the README. I'll push a commit to add that info.

Bruce



--
Best Regards, Patrick Ohly

The content of this message is my personal opinion only and although
I am an employee of Intel, the statements I make here in no way
represent Intel's position on the issue, nor am I authorized to speak
on behalf of Intel on this matter.



--
_______________________________________________
yocto mailing list
yocto@yoctoproject.org
https://lists.yoctoproject.org/listinfo/yocto

[-- Attachment #2: Type: text/html, Size: 2533 bytes --]