Received: by 2002:a05:6a10:87d6:0:0:0:0 with SMTP id g22csp932341pxr;
        Mon, 11 Apr 2022 10:37:49 -0700 (PDT)
X-Google-Smtp-Source: ABdhPJxwN8+0cnH+KFPht7KvRWk5AdIlBrJpFpp5DEoaQnQ7ZxG6j5wkH2HcxmLy3AkbulkiW/y4
X-Received: by 2002:a05:6a00:729:b0:4f7:77ed:c256 with SMTP id 9-20020a056a00072900b004f777edc256mr33922895pfm.1.1649698669044;
        Mon, 11 Apr 2022 10:37:49 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1649698669; cv=none;
        d=google.com; s=arc-20160816;
        b=ZfIZHhLG2VI+f2YBX8YD/9HbnQ0K2O8WvTzlf3n0a7j3wJKiad4hiNnSynZ9TIooEQ
         0gQWvWmS8dNQUj6U9B6ZiT6qvft+vsNgvB/eGDSQC4OUBt6adGyhyvJIqhmbFexn2LMz
         cIgmmzXVfOIVCiwvGt5M/li+RlhyYQo9J4HKqhdkiRRo5Zro5l7FTN8vPjFMx4z1sfl5
         +dZZ1vW5ACfiUUEB0E/jOiSP6X+yfKzVP9NKcm2DvucXZ0hw5FtVgYHIk8aA9fT/CFFK
         vu96GHx5QYmn2o+8js8x5gtD/HyEbqzE/4QSJTq/9lf/L07SsnXj4/Z86NUeUOWErnPg
         r2jQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:user-agent:in-reply-to:content-disposition
         :mime-version:references:message-id:subject:cc:to:from:date;
        bh=pBqoOhvHYz8V/+OTHIHCyEACAv/rDWaVf+qeQBGJcnI=;
        b=OJniV7H9HlD2anvPcUVbxZoD94E7c8F1JzGEnduaTyoYKIoL8H8MMxlbMU894Y0XoQ
         kOjuHlZiN8af1rzSmwLDSEX7ZIFnrYEKFRYXlOBjS9qHOhQ5ai9imahcggiqiy8hL8ua
         ikPAYKoaG7zl4+jR37d+gf6UVumZiE7lVacWrBcVfTEwsHLVxB5RzE86U0/ygvm4+1hr
         WIz4uicAMNoiBOz0aBolcn+I3cPQC9/D/jMgMZwxneuzc1OchDo1JjHG1Aljqf/6i/xS
         hcTrIbjLub1peqMGvaJ7P+erMzV6meKujvZEV7MSTDSMC6OQPD6lSVuyGwT+Hxm8sPoI
         Ii1A==
ARC-Authentication-Results: i=1; mx.google.com;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20])
        by mx.google.com with ESMTP id q10-20020a170902f78a00b001569d19531fsi8883883pln.588.2022.04.11.10.37.33;
        Mon, 11 Apr 2022 10:37:49 -0700 (PDT)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20;
Authentication-Results: mx.google.com;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S240831AbiDJRNi (ORCPT <rfc822;arunks.linux@gmail.com>
        + 99 others); Sun, 10 Apr 2022 13:13:38 -0400
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:55134 "EHLO
        lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S231439AbiDJRNi (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Sun, 10 Apr 2022 13:13:38 -0400
Received: from bmailout1.hostsharing.net (bmailout1.hostsharing.net [IPv6:2a01:37:1000::53df:5f64:0])
        by lindbergh.monkeyblade.net (Postfix) with ESMTPS id A4E3F22B3A;
        Sun, 10 Apr 2022 10:11:25 -0700 (PDT)
Received: from h08.hostsharing.net (h08.hostsharing.net [IPv6:2a01:37:1000::53df:5f1c:0])
        (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
        (Client CN "*.hostsharing.net", Issuer "RapidSSL TLS DV RSA Mixed SHA256 2020 CA-1" (verified OK))
        by bmailout1.hostsharing.net (Postfix) with ESMTPS id 34ADC30057E6C;
        Sun, 10 Apr 2022 19:11:23 +0200 (CEST)
Received: by h08.hostsharing.net (Postfix, from userid 100393)
        id 298284A855; Sun, 10 Apr 2022 19:11:23 +0200 (CEST)
Date:   Sun, 10 Apr 2022 19:11:23 +0200
From:   Lukas Wunner <lukas@wunner.de>
To:     Jason Gunthorpe <jgg@ziepe.ca>
Cc:     Lino Sanfilippo <LinoSanfilippo@gmx.de>, peterhuewe@gmx.de,
        jarkko@kernel.org, =robh+dt@kernel.org, devicetree@vger.kernel.org,
        linux-integrity@vger.kernel.org, linux-kernel@vger.kernel.org,
        stefanb@linux.ibm.com, p.rosenberger@kunbus.com
Subject: Re: [PATCH 1/5] tpm: add functions to set and unset the tpm chips
 reset state
Message-ID: <20220410171123.GA24453@wunner.de>
References: <20220407111849.5676-1-LinoSanfilippo@gmx.de>
 <20220407111849.5676-2-LinoSanfilippo@gmx.de>
 <20220407142526.GW64706@ziepe.ca>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <20220407142526.GW64706@ziepe.ca>
User-Agent: Mutt/1.10.1 (2018-07-13)
X-Spam-Status: No, score=-2.4 required=5.0 tests=BAYES_00,
        HEADER_FROM_DIFFERENT_DOMAINS,RCVD_IN_DNSWL_LOW,SPF_HELO_NONE,SPF_NONE,
        T_SCC_BODY_TEXT_LINE autolearn=ham autolearn_force=no version=3.4.6
X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on
        lindbergh.monkeyblade.net
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

On Thu, Apr 07, 2022 at 11:25:26AM -0300, Jason Gunthorpe wrote:
> On Thu, Apr 07, 2022 at 01:18:45PM +0200, Lino Sanfilippo wrote:
> > Currently it is not possible to set the tpm chips reset state from within
> > the driver. This is problematic if the chip is still in reset after the
> > system comes up. This may e.g. happen if the reset line is pulled into
> > reset state by a pin configuration in the device tree.
> 
> This kind of system is badly misdesigned.
> 
> TPM PCRs fundementally cannot work if the TPM reset line is under
> software control.

Not every system which incorporates a TPM wants to use or is even capable
of measuring software state of any kind or perform secure boot.

Those systems may merely want to use the TPM to store key material.

Thanks,

Lukas