Re: TPM2.0: No binary_bios_measurements file in securityFS

From: Nayna Jain <nayna-23VcF4HTsmIX0ybBhKVfKdBPR1lH4CV8@public.gmane.org>
To: "Nasim, Kam" <Kam.Nasim-CWA4WttNNZF54TAoqtyWWQ@public.gmane.org>,
	"tpmdd-devel-5NWGOfrQmneRv+LV9MX5uipxlwaOVQ5f@public.gmane.org"
	<tpmdd-devel-5NWGOfrQmneRv+LV9MX5uipxlwaOVQ5f@public.gmane.org>
Subject: Re: TPM2.0: No binary_bios_measurements file in securityFS
Date: Wed, 13 Sep 2017 17:33:56 +0530	[thread overview]
Message-ID: <e9ea0327-ba94-cd19-f35f-dbfae5c8ab03@linux.vnet.ibm.com> (raw)
In-Reply-To: <CA352AD04C14CE4985F6AEB6AB8C130E3EDB8751-/c0cZIGrDsgyzarUywkIaosyD1qQU09I@public.gmane.org>


[-- Attachment #1.1: Type: text/plain, Size: 2339 bytes --]


On 09/12/2017 04:14 AM, Nasim, Kam wrote:
>
> Hi folks,
>
>
> I am building my TPM 2.0 driver as Kernel modules (tpm.ko, 
> tpm_tis_core.ko and tpm_tis.ko).
>
> I noticed that while my /sys/kernel/security directory is created and 
> mounted to securityFS, it is empty.
>
> Looking at tpm_bios_log_setup() in tpm1_event.log, I see that this is 
> being done during chip registration:
>
TPM 2.0 binary_bios_measurements event log file support is currently not 
available for ACPI based platform. It is only for device tree based 
platform. And I think you are using ACPI.

Thanks & Regards,
     - Nayna
>
> if (chip->flags & TPM_CHIP_FLAG_TPM2)
>
> chip->bin_log_seqops.seqops =
>
> &tpm2_binary_b_measurements_seqops;
>
>     else
>
> chip->bin_log_seqops.seqops =
>
> &tpm_binary_b_measurements_seqops;
>
> chip->bios_dir[cnt] =
>
> securityfs_create_file("binary_bios_measurements",
>
>                    0440, chip->bios_dir[0],
>
>                    (void *)&chip->bin_log_seqops,
>
> &tpm_bios_measurements_ops);
>
>     if (IS_ERR(chip->bios_dir[cnt]))
>
>         goto err;
>
> My TPM modules are loaded properly and I can interact with TPM using 
> userspace TSS2 applications:
>
> $ sudo lsmod | grep tpm
>
> Password:
>
> tpm_crb 6458  0
>
> tpm_tis 5950  0
>
> tpm_tis_core 10054  1 tpm_tis
>
> tpm 48093  3 tpm_crb,tpm_tis,tpm_tis_core
>
> 2017-09-08T19:39:16.239 controller-0 kernel: warning [    0.000000] 
> ACPI: TPM2 000000007b7c8000 00034 (v03 INTEL   S2600WT 00000002 INTL 
> 01000013)
>
> 2017-09-08T19:39:16.252 controller-0 kernel: info [    5.457568] 
> tpm_tis MSFT0101:00: 2.0 TPM (device-id 0x1A, rev-id 16)
>
> How and when would this file be created? For that matter I don’t even 
> have a /sys/devices/pnp0/<pnp#>/pcrs file present
>
> (I am on CentOS 7.3)
>
> Thoughts?
>
> Thanks,
>
> Kam
>
>
>
> ------------------------------------------------------------------------------
> Check out the vibrant tech community on one of the world's most
> engaging tech sites, Slashdot.org! http://sdm.link/slashdot
>
>
> _______________________________________________
> tpmdd-devel mailing list
> tpmdd-devel-5NWGOfrQmneRv+LV9MX5uipxlwaOVQ5f@public.gmane.org
> https://lists.sourceforge.net/lists/listinfo/tpmdd-devel


[-- Attachment #1.2: Type: text/html, Size: 8456 bytes --]

[-- Attachment #2: Type: text/plain, Size: 202 bytes --]

------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, Slashdot.org! http://sdm.link/slashdot

[-- Attachment #3: Type: text/plain, Size: 192 bytes --]

_______________________________________________
tpmdd-devel mailing list
tpmdd-devel-5NWGOfrQmneRv+LV9MX5uipxlwaOVQ5f@public.gmane.org
https://lists.sourceforge.net/lists/listinfo/tpmdd-devel