Received: by 2002:a25:d7c1:0:0:0:0:0 with SMTP id o184csp4026946ybg; Fri, 25 Oct 2019 12:16:38 -0700 (PDT) X-Google-Smtp-Source: APXvYqx9uue7cvJuazC+KfTTLv1zS1LUGMRla0U4kWkGiRr5yfsTnGmJrOIbzS/Q6vtIs1l9wL9N X-Received: by 2002:a17:906:6942:: with SMTP id c2mr4092553ejs.152.1572030998637; Fri, 25 Oct 2019 12:16:38 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1572030998; cv=none; d=google.com; s=arc-20160816; b=e6iW7UwPtQZR64B5cF6mQGZKp3quw802Ci6WUDMilTbyONy7j6zprFOHb67I9bOIl8 XnZH7pGtNZp9WXmJKWzq7PqTm3XQMg80I6Qmam7d35o7zY6THZTAnNdkAFVqcv8ji2RP 25OttI+vItfDbRHaotBJM6KD8koeM7akBvkfJj22iQDX5DOB5/1HmLTRC6uUuvgrOaLA kthzvgiHa3Dx7OnnxR7GhqGrnRt7xvE1D6cnnzT7eVdhFeLgJSTNfxz5FJnvpZ2zuILz TLfV2f/jEUMoYyfexvxOZiQ1lA/YmzJtRaYaL+4bTrp47BTJW1Sk1OmFaZY7cF6yeQc9 r9hw== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:content-transfer-encoding :content-language:in-reply-to:mime-version:user-agent:date :message-id:autocrypt:openpgp:references:cc:to:from:subject :dkim-signature; bh=WhvJaKFhhjEFVloj+73Eu6b1OrFYa3RNhWsBH0yTYlU=; b=AMOHkoMwdrdUP3Mh6uzLh2Ss7fKW/D+XbF3M3B7QQEC+Rno1IYSuufQL2Duhn+/skV s18rl8ulPAkZL72v0rVx4rHiN+sfohCvwT8mGdezrdnbhKxoVcbYHPziAoGkm00o3sqW XngAPjuemF5RHPPlcR+hINi9we6Bb060hmRspU4qwfohHgJbWD0+7Rt17cbNkhJrFw+o xq/oFDKuq+OTa6mS2akVruvstweEeBzAKG3rErKgXNop4oacfkGORMEMM7PH3LTgh9V/ Qz4H+MP7BezIe/rS1K1h3hVPoK13Yw65UtqXjAErg1TbB76pa4diMLBP8Igco+Hi856w hpmg== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@gmail.com header.s=20161025 header.b=E2UFk8Hk; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id a8si1987195edm.240.2019.10.25.12.16.15; Fri, 25 Oct 2019 12:16:38 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; dkim=pass header.i=@gmail.com header.s=20161025 header.b=E2UFk8Hk; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1731810AbfJYAGw (ORCPT + 99 others); Thu, 24 Oct 2019 20:06:52 -0400 Received: from mail-ed1-f66.google.com ([209.85.208.66]:40775 "EHLO mail-ed1-f66.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1729514AbfJYAGw (ORCPT ); Thu, 24 Oct 2019 20:06:52 -0400 Received: by mail-ed1-f66.google.com with SMTP id p59so409941edp.7; Thu, 24 Oct 2019 17:06:50 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=subject:from:to:cc:references:openpgp:autocrypt:message-id:date :user-agent:mime-version:in-reply-to:content-language :content-transfer-encoding; bh=WhvJaKFhhjEFVloj+73Eu6b1OrFYa3RNhWsBH0yTYlU=; b=E2UFk8Hko4twqj9NJoNZBMg7VrpX+ywSQKClzDZnd73pyLr52GFRoIPsdHJSWT/n9F usphciymIrFS1Mgxl9/9nTTFFxzSFIolwesXGpLBY+cSIqsfGd3HwrLrjhcAE28Yg7A/ in69NDDwJP5uWsGO+HJvSHvgHoKsQ1fCh1uZY184dzMMC7bwokj5Zl+imAYTOPjUhToM cii8bmv5egUXBtnSXiwsDJ9T8OwaNzAlWsHJWoaaPHVMN0+r48LyTzsEjg/j/YjZPA0B O3/T/TzURl/hKgEJxSqnhxf1ME9SjjO241Bew44IxWdk9i80xYHaX5i4UJFiEDL9YNW9 f3Tg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:subject:from:to:cc:references:openpgp:autocrypt :message-id:date:user-agent:mime-version:in-reply-to :content-language:content-transfer-encoding; bh=WhvJaKFhhjEFVloj+73Eu6b1OrFYa3RNhWsBH0yTYlU=; b=p8n4QlhSPM0LnjfkadQSKDTP8SxTBl3U9R/dHrFGbSLbYbGqbOy/TOfpsQDSy7/WKL Xw5jxrNidhm2eG58FDw+RJAVq0LV2J9AhlkBHUhbIBaLjJIVfUrynirTBVbtY1N07h86 77Xaa/ciYGsw2oG0XtikR5H3jGvgJHe8nT3VKHnh2uiVWH3dcP815cUsKJMF7KihUcxB wZrxjsQKhQUwg5g/TreyY0ZL3pU9hg40o/kWVkTC7UOaTFxYITP7cQ70aQVHE1/Si8Zd g1URYpNJ8gSYHrwNXxoP41MvGTvoGdzCslzfuxCNsO3M1harGCdRWXm92tOINB5Wzue7 0ujQ== X-Gm-Message-State: APjAAAXyMjLBv2DlCkW4Ag7BZfGrAC3p8GTXH6yiJOb6vTUCTU46eY7b Qnhd8aoxHic/BqieMvQDCUgRqptn X-Received: by 2002:a50:9269:: with SMTP id j38mr918501eda.5.1571962009053; Thu, 24 Oct 2019 17:06:49 -0700 (PDT) Received: from [10.67.50.53] ([192.19.223.252]) by smtp.googlemail.com with ESMTPSA id sb3sm1867ejb.64.2019.10.24.17.06.43 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Thu, 24 Oct 2019 17:06:47 -0700 (PDT) Subject: Re: [PATCH V3 0/3] Add OP-TEE based bnxt f/w manager From: Florian Fainelli To: Sheetal Tigadoli , =?UTF-8?B?UmFmYcWCIE1pxYJlY2tp?= , Greg Kroah-Hartman , Michal Simek , Rajan Vaja , Scott Branden , Ray Jui , Vikram Prakash , Jens Wiklander , Michael Chan , "David S. Miller" , Vikas Gupta , Vasundhara Volam Cc: Linux Kernel Mailing List , tee-dev@lists.linaro.org, bcm-kernel-feedback-list@broadcom.com, netdev@vger.kernel.org References: <1571895161-26487-1-git-send-email-sheetal.tigadoli@broadcom.com> <183f68bc-8145-ef98-07ca-8d3f85d66a17@gmail.com> Openpgp: preference=signencrypt Autocrypt: addr=f.fainelli@gmail.com; prefer-encrypt=mutual; keydata= mQGiBEjPuBIRBACW9MxSJU9fvEOCTnRNqG/13rAGsj+vJqontvoDSNxRgmafP8d3nesnqPyR xGlkaOSDuu09rxuW+69Y2f1TzjFuGpBk4ysWOR85O2Nx8AJ6fYGCoeTbovrNlGT1M9obSFGQ X3IzRnWoqlfudjTO5TKoqkbOgpYqIo5n1QbEjCCwCwCg3DOH/4ug2AUUlcIT9/l3pGvoRJ0E AICDzi3l7pmC5IWn2n1mvP5247urtHFs/uusE827DDj3K8Upn2vYiOFMBhGsxAk6YKV6IP0d ZdWX6fqkJJlu9cSDvWtO1hXeHIfQIE/xcqvlRH783KrihLcsmnBqOiS6rJDO2x1eAgC8meAX SAgsrBhcgGl2Rl5gh/jkeA5ykwbxA/9u1eEuL70Qzt5APJmqVXR+kWvrqdBVPoUNy/tQ8mYc nzJJ63ng3tHhnwHXZOu8hL4nqwlYHRa9eeglXYhBqja4ZvIvCEqSmEukfivk+DlIgVoOAJbh qIWgvr3SIEuR6ayY3f5j0f2ejUMYlYYnKdiHXFlF9uXm1ELrb0YX4GMHz7QnRmxvcmlhbiBG YWluZWxsaSA8Zi5mYWluZWxsaUBnbWFpbC5jb20+iGYEExECACYCGyMGCwkIBwMCBBUCCAME FgIDAQIeAQIXgAUCVF/S8QUJHlwd3wAKCRBhV5kVtWN2DvCVAJ4u4/bPF4P3jxb4qEY8I2gS 6hG0gACffNWlqJ2T4wSSn+3o7CCZNd7SLSC5BA0ESM+4EhAQAL/o09boR9D3Vk1Tt7+gpYr3 WQ6hgYVON905q2ndEoA2J0dQxJNRw3snabHDDzQBAcqOvdi7YidfBVdKi0wxHhSuRBfuOppu pdXkb7zxuPQuSveCLqqZWRQ+Cc2QgF7SBqgznbe6Ngout5qXY5Dcagk9LqFNGhJQzUGHAsIs hap1f0B1PoUyUNeEInV98D8Xd/edM3mhO9nRpUXRK9Bvt4iEZUXGuVtZLT52nK6Wv2EZ1TiT OiqZlf1P+vxYLBx9eKmabPdm3yjalhY8yr1S1vL0gSA/C6W1o/TowdieF1rWN/MYHlkpyj9c Rpc281gAO0AP3V1G00YzBEdYyi0gaJbCEQnq8Vz1vDXFxHzyhgGz7umBsVKmYwZgA8DrrB0M oaP35wuGR3RJcaG30AnJpEDkBYHznI2apxdcuTPOHZyEilIRrBGzDwGtAhldzlBoBwE3Z3MY 31TOpACu1ZpNOMysZ6xiE35pWkwc0KYm4hJA5GFfmWSN6DniimW3pmdDIiw4Ifcx8b3mFrRO BbDIW13E51j9RjbO/nAaK9ndZ5LRO1B/8Fwat7bLzmsCiEXOJY7NNpIEpkoNoEUfCcZwmLrU +eOTPzaF6drw6ayewEi5yzPg3TAT6FV3oBsNg3xlwU0gPK3v6gYPX5w9+ovPZ1/qqNfOrbsE FRuiSVsZQ5s3AAMFD/9XjlnnVDh9GX/r/6hjmr4U9tEsM+VQXaVXqZuHKaSmojOLUCP/YVQo 7IiYaNssCS4FCPe4yrL4FJJfJAsbeyDykMN7wAnBcOkbZ9BPJPNCbqU6dowLOiy8AuTYQ48m vIyQ4Ijnb6GTrtxIUDQeOBNuQC/gyyx3nbL/lVlHbxr4tb6YkhkO6shjXhQh7nQb33FjGO4P WU11Nr9i/qoV8QCo12MQEo244RRA6VMud06y/E449rWZFSTwGqb0FS0seTcYNvxt8PB2izX+ HZA8SL54j479ubxhfuoTu5nXdtFYFj5Lj5x34LKPx7MpgAmj0H7SDhpFWF2FzcC1bjiW9mjW HaKaX23Awt97AqQZXegbfkJwX2Y53ufq8Np3e1542lh3/mpiGSilCsaTahEGrHK+lIusl6mz Joil+u3k01ofvJMK0ZdzGUZ/aPMZ16LofjFA+MNxWrZFrkYmiGdv+LG45zSlZyIvzSiG2lKy kuVag+IijCIom78P9jRtB1q1Q5lwZp2TLAJlz92DmFwBg1hyFzwDADjZ2nrDxKUiybXIgZp9 aU2d++ptEGCVJOfEW4qpWCCLPbOT7XBr+g/4H3qWbs3j/cDDq7LuVYIe+wchy/iXEJaQVeTC y5arMQorqTFWlEOgRA8OP47L9knl9i4xuR0euV6DChDrguup2aJVU4hPBBgRAgAPAhsMBQJU X9LxBQkeXB3fAAoJEGFXmRW1Y3YOj4UAn3nrFLPZekMeqX5aD/aq/dsbXSfyAKC45Go0YyxV HGuUuzv+GKZ6nsysJ7kCDQRXG8fwARAA6q/pqBi5PjHcOAUgk2/2LR5LjjesK50bCaD4JuNc YDhFR7Vs108diBtsho3w8WRd9viOqDrhLJTroVckkk74OY8r+3t1E0Dd4wHWHQZsAeUvOwDM PQMqTUBFuMi6ydzTZpFA2wBR9x6ofl8Ax+zaGBcFrRlQnhsuXLnM1uuvS39+pmzIjasZBP2H UPk5ifigXcpelKmj6iskP3c8QN6x6GjUSmYx+xUfs/GNVSU1XOZn61wgPDbgINJd/THGdqiO iJxCLuTMqlSsmh1+E1dSdfYkCb93R/0ZHvMKWlAx7MnaFgBfsG8FqNtZu3PCLfizyVYYjXbV WO1A23riZKqwrSJAATo5iTS65BuYxrFsFNPrf7TitM8E76BEBZk0OZBvZxMuOs6Z1qI8YKVK UrHVGFq3NbuPWCdRul9SX3VfOunr9Gv0GABnJ0ET+K7nspax0xqq7zgnM71QEaiaH17IFYGS sG34V7Wo3vyQzsk7qLf9Ajno0DhJ+VX43g8+AjxOMNVrGCt9RNXSBVpyv2AMTlWCdJ5KI6V4 KEzWM4HJm7QlNKE6RPoBxJVbSQLPd9St3h7mxLcne4l7NK9eNgNnneT7QZL8fL//s9K8Ns1W t60uQNYvbhKDG7+/yLcmJgjF74XkGvxCmTA1rW2bsUriM533nG9gAOUFQjURkwI8jvMAEQEA AYkCaAQYEQIACQUCVxvH8AIbAgIpCRBhV5kVtWN2DsFdIAQZAQIABgUCVxvH8AAKCRCH0Jac RAcHBIkHD/9nmfog7X2ZXMzL9ktT++7x+W/QBrSTCTmq8PK+69+INN1ZDOrY8uz6htfTLV9+ e2W6G8/7zIvODuHk7r+yQ585XbplgP0V5Xc8iBHdBgXbqnY5zBrcH+Q/oQ2STalEvaGHqNoD UGyLQ/fiKoLZTPMur57Fy1c9rTuKiSdMgnT0FPfWVDfpR2Ds0gpqWePlRuRGOoCln5GnREA/ 2MW2rWf+CO9kbIR+66j8b4RUJqIK3dWn9xbENh/aqxfonGTCZQ2zC4sLd25DQA4w1itPo+f5 V/SQxuhnlQkTOCdJ7b/mby/pNRz1lsLkjnXueLILj7gNjwTabZXYtL16z24qkDTI1x3g98R/ xunb3/fQwR8FY5/zRvXJq5us/nLvIvOmVwZFkwXc+AF+LSIajqQz9XbXeIP/BDjlBNXRZNdo dVuSU51ENcMcilPr2EUnqEAqeczsCGpnvRCLfVQeSZr2L9N4svNhhfPOEscYhhpHTh0VPyxI pPBNKq+byuYPMyk3nj814NKhImK0O4gTyCK9b+gZAVvQcYAXvSouCnTZeJRrNHJFTgTgu6E0 caxTGgc5zzQHeX67eMzrGomG3ZnIxmd1sAbgvJUDaD2GrYlulfwGWwWyTNbWRvMighVdPkSF 6XFgQaosWxkV0OELLy2N485YrTr2Uq64VKyxpncLh50e2RnyAJ9Za0Dx0yyp44iD1OvHtkEI M5kY0ACeNhCZJvZ5g4C2Lc9fcTHu8jxmEkI= Message-ID: <74e019d5-25cf-b2e8-6f54-9afbefa28568@gmail.com> Date: Thu, 24 Oct 2019 17:06:42 -0700 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101 Thunderbird/60.9.0 MIME-Version: 1.0 In-Reply-To: <183f68bc-8145-ef98-07ca-8d3f85d66a17@gmail.com> Content-Type: text/plain; charset=utf-8 Content-Language: en-US Content-Transfer-Encoding: 7bit Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On 10/24/19 11:39 AM, Florian Fainelli wrote: > On 10/23/19 10:32 PM, Sheetal Tigadoli wrote: >> This patch series adds support for TEE based BNXT firmware >> management module and the driver changes to invoke OP-TEE >> APIs to fastboot firmware and to collect crash dump. > > Sorry for chiming on this so late, the more I look into this and the > more it seems like you have built a custom TEE firmware loading solution > rather than thinking about extending the firmware API to load a firmware > opaque handle from somewhere other than the filesystem. > > The TEE integration appears okay to me in that you leverage the TEE bus > to advertise your driver. What seems to violating layers is that you > have bnxt directly tap into your TEE driver's services and that looks > not ideal to say the least. That approach does not scale well over > multiple drivers (bnxt or otherwise), but also does not really scale > over trusted components providers. TEE is one of them, but conceptually > the same thing could exist with ACPI/UEFI or any platform that has > services that offer some sort of secure/non-secured world differentiation. > > The way I would imagine you to integrate this is to basically register a > TEE firmware provider through the firmware API, continue using the > firmware API from within bnxt, possibly with using a specific file > handle/flag that designates whether you want to favor loading from > disk/file system or TEE. It should not matter to bnxt how the firmware > is obtained basically. And I should have probably ended this paragraph with saying that the suggestion does not need to happen right now but would be nice to be done as a cleanup exercise (of course, by saying that, I am also opening the door for this to not happen at all..). -- Florian