Received: by 2002:a25:ad19:0:0:0:0:0 with SMTP id y25csp9133619ybi; Wed, 10 Jul 2019 05:16:53 -0700 (PDT) X-Google-Smtp-Source: APXvYqxCMQCUtiPtBct+vQlSPojmUgmCLsbQyx4Uto87NPw8KpSfCwgwx793jp0KAQ+Hbf6lbFt+ X-Received: by 2002:a17:90a:f491:: with SMTP id bx17mr6831668pjb.118.1562761013637; Wed, 10 Jul 2019 05:16:53 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1562761013; cv=none; d=google.com; s=arc-20160816; b=h+T7TYYEcmfbhn0Eg2H/GLSJXDaWX6QrKu3X1vuAdD4dH0z0jEOWr5XgnefBmsSxbx pakcN99oFVojr0TZnu6cnHDkTkmfdKbKS+lhHSNeg/eS2gfqlPf6vaNqkFHBlo0E84dL AreDGexmrOzOlWxgbYN1R/zKjzqOVGaSZTpkBRdRt67hVCUlpdO7d/EmR8OXLugzeISu k9DQTDkO0Jv+LuGm/IVau6Rt5YRy7RF6JdTXt0t8QkBN3VtM4XxcskRsJyPmix3CDL85 km+72DbgCXMp3VgQv1MToyvWaykYoC8QU4cg2tmnQe3WVmD/DKj1bvRQlx8AX9jYQE5Y NqzQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:user-agent:in-reply-to :content-disposition:mime-version:references:message-id:subject:cc :to:from:date:dkim-signature; bh=VIGpiD/b4QvsY5xkdx7aEJIrxrp4vS+C6jbYnop4lsE=; b=GQkdEZzNo6gEYfIQbFUP0rdu+j8c/SGuO+caWfDKwgZKlgGo2xknWOv82tHOXylZS0 v40T8IqzuSCpSiuAnstpnhnTfsMnjpAX04nS79wq5gw7aw+Lb9KzHBGdSrJEBKFP96JF XH1TXo4W0udduEDqNIK5p4JEme3FOdbmgcJdVYTXog3W2K1VymJGkZMyENAHv/CGvxIj zYnVNibcqX08MhXfHQjhGXo1unXePwes6sVBPYP7h6XYpt/ZkJN4yXY5B5Zh5h/Uurt3 MxopbAWB4qUncnr2GYF/rrZC3fuPaKy0ceaX27cUtsT4Bl6IcRWrlSzDdMVP16t1ZqVT nz+A== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@linaro.org header.s=google header.b=djB6tFez; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=linaro.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id x18si1963428plm.292.2019.07.10.05.16.37; Wed, 10 Jul 2019 05:16:53 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; dkim=pass header.i=@linaro.org header.s=google header.b=djB6tFez; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=linaro.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1727220AbfGJMOE (ORCPT + 99 others); Wed, 10 Jul 2019 08:14:04 -0400 Received: from mail-wm1-f66.google.com ([209.85.128.66]:34277 "EHLO mail-wm1-f66.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1725911AbfGJMOE (ORCPT ); Wed, 10 Jul 2019 08:14:04 -0400 Received: by mail-wm1-f66.google.com with SMTP id w9so4512349wmd.1 for ; Wed, 10 Jul 2019 05:14:02 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=linaro.org; s=google; h=date:from:to:cc:subject:message-id:references:mime-version :content-disposition:in-reply-to:user-agent; bh=VIGpiD/b4QvsY5xkdx7aEJIrxrp4vS+C6jbYnop4lsE=; b=djB6tFezqr/i8CmI83Ds8pwgO9bKTWl7LzJ4Xkno8saZ+BdnHeBFTyd0v5wYoi1ED/ 0IMAfMZLUWU1E4z+BolmBXOwrR/6Wjkv1mifepGsjFaraQsYkJGQqza0W5Q7Ghtk6F3k Wp6d40/xP/qYG5UO8x8zvDhuA7kDmNSTw0cZbecLUSz8udZj/0RCMGNNWQovVjAMEzjd OTTOv4RPlHMAoNCsn7PwN0oWMrqSFBW+GxmdlsqjmdKPqMF/x3veVY6hk8bEAT6n0R0T p86asswZJimf9zD4DBolzuuOyivx4jIZzz2MLR2mZ2SrZpq4PjP+FQJ1FJzIm13WkfGK bwdQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:date:from:to:cc:subject:message-id:references :mime-version:content-disposition:in-reply-to:user-agent; bh=VIGpiD/b4QvsY5xkdx7aEJIrxrp4vS+C6jbYnop4lsE=; b=KJEbA+TSvU8fN8OjhQuSfIdotPX37eruvwzkcpJnNNSywLGBagak7XGagWlEjiZQtb Qh78ITmyxNY4bFZFnSND4JawNZwWxqDLG2HI2DbDqVbq8/q6Fvg7o6h9rIXYh9B4g+Bb G58VsP5BpWZECXk6/S8MUsXxQqMzS7kI1f2lWVDCMmEDXymp3AAGzFNFokde+gi0dUKd IyHM6q8uos6uhg8tDH3ScmTkZhMctF2SZKOjq05dbOJafulc+qdsEtm9FokeEDrnq8Gq kePIepuRudnDMWnHyeZT3919WYKMxikh1dJ2oQvI5NnHIdGqELc6/Her05eld+WDo2qO dkEA== X-Gm-Message-State: APjAAAXRo2DD8DzBRKnW2ENPLT85p0KXuQAiEUP0as0R3nOoLTu+npAO 205GiJMH8+3Z6mI9sKCAuql/Cg== X-Received: by 2002:a1c:1a4c:: with SMTP id a73mr5435637wma.109.1562760841772; Wed, 10 Jul 2019 05:14:01 -0700 (PDT) Received: from apalos (athedsl-428434.home.otenet.gr. [79.131.225.144]) by smtp.gmail.com with ESMTPSA id r21sm4885127wrc.83.2019.07.10.05.13.59 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Wed, 10 Jul 2019 05:14:01 -0700 (PDT) Date: Wed, 10 Jul 2019 15:13:58 +0300 From: Ilias Apalodimas To: Thirupathaiah Annapureddy Cc: Jarkko Sakkinen , Sasha Levin , "peterhuewe@gmx.de" , "jgg@ziepe.ca" , "corbet@lwn.net" , "linux-kernel@vger.kernel.org" , "linux-doc@vger.kernel.org" , "linux-integrity@vger.kernel.org" , Microsoft Linux Kernel List , "Bryan Kelly (CSI)" , "tee-dev@lists.linaro.org" , "sumit.garg@linaro.org" , "rdunlap@infradead.org" , Joakim Bech Subject: Re: [PATCH v7 1/2] fTPM: firmware TPM running in TEE Message-ID: <20190710121358.GA12965@apalos> References: <20190627133004.GA3757@apalos> <0893dc429d4c3f3b52d423f9e61c08a5012a7519.camel@linux.intel.com> <20190702142109.GA32069@apalos> <20190703065813.GA12724@apalos> <20190704181120.GA21445@apalos> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.5.24 (2015-08-30) Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org Hi Thirupathaiah Apologies for tha lte reply, i somehow misplaced this mail. [...] > > > > Please check the previous mail from Sumit. It explains exaclty what's going on. > > The tl;dr version is that the storage is up only when the supplicant is > > running. > > I definitely know that OP-TEE can access storage only when the "user mode" supplicant > is running :). But fTPM NV storage should have been initialized in > in the preboot environment (UEFI/U-boot). > > It would also be helpful to understand the overall use case/scenario (Measured boot?)you > are trying to exercise with the fTPM. In the future yesm measured boot/ For now it's more like like try running it in QEMU to demonstrate firmware TPM makes sense and has use cases. > > I also want to emphasize that this discussion is turning into more of how > fTPM gets integrated/enabled in a new HW platform. > fTPM is hosted in github and you definitely bring any issues/feature requests there. > Ok > > > > > > If you let me know the HW platform details, I am happy to work with you to > > enable/integrate > > > fTPM TA on that HW platform. > > > > > Thanks, > > The hardware i am waiting for for has an eMMC RPMB. In theory the U-Boot > > supplicant support will be there so i'll be able to test it. > Can you give me the details of HW so that I can order one for myself? It's QEMU for now. We plan on doing something similar in an ST disco board though. > Is it one of the 96boards? stm32mp157c-dk2 is one of our targets. > The reason for the ask is that we have not upstreamd u-boot fTPM stack yet, > although we have future plans for it. > > --Thiru > Thanks /Ilias