Received: by 2002:a05:6358:3188:b0:123:57c1:9b43 with SMTP id q8csp246993rwd; Wed, 31 May 2023 22:48:37 -0700 (PDT) X-Google-Smtp-Source: ACHHUZ5FXGBeqgGSCyhd44bQ6cwOsaZ3d8j4bQlI8cfLqt0SBZJBj9BxfkO82yV6vnT5Ym6BlY5B X-Received: by 2002:a05:6358:5909:b0:125:693d:75ff with SMTP id g9-20020a056358590900b00125693d75ffmr2000564rwf.32.1685598517519; Wed, 31 May 2023 22:48:37 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1685598517; cv=none; d=google.com; s=arc-20160816; b=mUOsnI0an5ruFPpfZDFdGXppMykbI4EKlTmJl6jj0kG2TOHS6Psn/RgYujPRY8AQI9 hIuB2+i8ZeZvqPEHtL2p8BXzamoeT7c6a78aFKM1lfCuGXIazR86bA312FhqTWy7DRgq v8hTcgs5bks9juzsRy6U3/KrttmLoOtNyn5od16FvDQgmYVjq+lBaqkFCeFjJiGrL6WC 8nlDwemFcFEJEekgjrMkDKl09j2953H3+kBj/9SS7fbCdwB7iYH80o9F/2svfswJZJTM 0I6fH+reykNvPN2j+z9frPFXrCjiU1WXI2ZVfpkk/oFWxnXCfX1AWR9p5t0kxPhKHzop O9vA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:content-transfer-encoding:cc:to:subject :message-id:date:from:in-reply-to:references:mime-version :dkim-signature; bh=HsI/5WLiHlcp0ZEEt3H/cNP/MuQhNAeZoQaqtMmhWNQ=; b=PF+uDPJOY6gFOLl+e1KztQUeDorxDJMWcNDfYTXkqaxa3JYpKK09+f5K7H1M2bm4HS qM3m/82kd+mp9QFXXGt6jk3fiflIMC99ob0DVYcscxGEY4l0YLNFbH5vZ3c9Bjl/HsTR Xbaf31VMm7IdCSOaMzAb4KeJRYxtZN91kbPRbNhr96SaoHwGgpyw4qr2dwhgBo8v8CkZ cETY00dQoIFXEr5n54U5ZhFOMo+qeWJeSTPt6G0vvSV1kHDRMke/lkiHTwGmSl/XW7so 2sCCv7uz79JuPvGQvQMQ8v3NHafvc8w+AS1KCCMZkc2QFsE36B3/dYuRoSEqcr7pKxnD dKHQ== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@linaro.org header.s=google header.b=H+UnM8kW; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=linaro.org Return-Path: Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20]) by mx.google.com with ESMTP id j13-20020a633c0d000000b00520b3928bebsi2350274pga.7.2023.05.31.22.48.23; Wed, 31 May 2023 22:48:37 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20; Authentication-Results: mx.google.com; dkim=pass header.i=@linaro.org header.s=google header.b=H+UnM8kW; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=linaro.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S229596AbjFAFcN (ORCPT + 99 others); Thu, 1 Jun 2023 01:32:13 -0400 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:45268 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S229651AbjFAFcM (ORCPT ); Thu, 1 Jun 2023 01:32:12 -0400 Received: from mail-lf1-x136.google.com (mail-lf1-x136.google.com [IPv6:2a00:1450:4864:20::136]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id D50D112C for ; Wed, 31 May 2023 22:32:10 -0700 (PDT) Received: by mail-lf1-x136.google.com with SMTP id 2adb3069b0e04-4f4b384c09fso388581e87.3 for ; Wed, 31 May 2023 22:32:10 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=linaro.org; s=google; t=1685597529; x=1688189529; h=content-transfer-encoding:cc:to:subject:message-id:date:from :in-reply-to:references:mime-version:from:to:cc:subject:date :message-id:reply-to; bh=HsI/5WLiHlcp0ZEEt3H/cNP/MuQhNAeZoQaqtMmhWNQ=; b=H+UnM8kWWRu5RWrI0KNNuViptqIvOW5zcJGzBaZVFz5u1WPqYJXCJc17Qscomw3p6F dueFhvI1Neba5nB4Sott68NEtF/E6W9h9s7avVEcUnaAlcSsxIzJ9g+FN3IGoppPPwfQ kgDux/S4X/2WMZOKI69iGFK03nIwzJ3WtLaPca8zqU7iSp++rOSVP2lZJbCKUWr32eyf LlUyC73afA/whcbyU+96OP0rKkDhmp4EVsngkdcGENWbelRUI3az4Pqeq8bfU6I9ayvy UlA4j01jegpkBBOlrxxOnlS3YWzus6MeV3yehNEiIXQIMSYHTR74iF5jw/CFznmiYghR CgFw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20221208; t=1685597529; x=1688189529; h=content-transfer-encoding:cc:to:subject:message-id:date:from :in-reply-to:references:mime-version:x-gm-message-state:from:to:cc :subject:date:message-id:reply-to; bh=HsI/5WLiHlcp0ZEEt3H/cNP/MuQhNAeZoQaqtMmhWNQ=; b=N2dW7p4+zqGtE6x+dHCk7p8q119AfIACNIm71hYzToPJluQlzTsyxEe47cuu90Gy5a nLl6iG7dotai/3Qo14LOmCGhMpj0FGvdGd1Iq0UPUUOKmLAOZYOVBfC7FnnS0GQJJoc2 DFoQ8geZmADUe/T9iOfTaGWariJtqSkxnN1rDlqCM9xZlNWqNXxRa7tFGo+R5Z5OVUZ0 Ny8yozR4y84VgN9zECW/7cYWcl6eA5O4i513IF8AfebAnMqPnMwr4dgsFT909UecurAy ox9nVtcu/poJFaxcNTW8qKxHFs8Snun7y5+G/gTU/rBvCoXm7DBBfmaJVYQG96+Hqif+ pqAQ== X-Gm-Message-State: AC+VfDyjgK025ei/Sf3WMCoRH8kE4wfi6sYngB5/be5/sjQMJ4FXfi12 GGkFiTnMCuYBXgXjsLKaDb29v7/Fuho27LIiJ+L3Jw== X-Received: by 2002:ac2:44dc:0:b0:4f4:ce78:2f17 with SMTP id d28-20020ac244dc000000b004f4ce782f17mr582911lfm.13.1685597529125; Wed, 31 May 2023 22:32:09 -0700 (PDT) MIME-Version: 1.0 References: <20220405093759.1126835-1-alex.bennee@linaro.org> <20230531191007.13460-1-shyamsaini@linux.microsoft.com> In-Reply-To: From: Ilias Apalodimas Date: Thu, 1 Jun 2023 08:31:33 +0300 Message-ID: Subject: Re: [PATCH v2 0/4] rpmb subsystem, uapi and virtio-rpmb driver To: "Zhu, Bing" Cc: Shyam Saini , "alex.bennee@linaro.org" , "code@tyhicks.com" , "Matti.Moell@opensynergy.com" , "arnd@linaro.org" , "hmo@opensynergy.com" , "joakim.bech@linaro.org" , "linux-kernel@vger.kernel.org" , "linux-mmc@vger.kernel.org" , "linux-scsi@vger.kernel.org" , "maxim.uvarov@linaro.org" , "ruchika.gupta@linaro.org" , "Winkler, Tomas" , "ulf.hansson@linaro.org" , "Huang, Yang" , "sumit.garg@linaro.org" , "jens.wiklander@linaro.org" , "op-tee@lists.trustedfirmware.org" Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Spam-Status: No, score=-2.1 required=5.0 tests=BAYES_00,DKIM_SIGNED, DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,RCVD_IN_DNSWL_NONE, SPF_HELO_NONE,SPF_PASS,T_SCC_BODY_TEXT_LINE autolearn=ham autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on lindbergh.monkeyblade.net Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org Hi Bing On Thu, 1 Jun 2023 at 04:03, Zhu, Bing wrote: > > As an alternative, Is it possible to change ftpm design not to depend on = RPMB access at the earlier/boot stage? Because to my understanding, typical= ly PCRs don't require persistent/NV storage (for example, before RPMB or te= e-supplicant is ready, use TEE memory instead as temporary storage) I am not entirely sure this will solve our problem here. You are right that we shouldn't depend on the supplicant to extend PCRs. But what happens if an object is sealed against certain PCR values? We are back to the same problem Thanks /Ilias > > Bing > > IPAS Security Brown Belt (https://www.credly.com/badges/69ea809f-3a96-4bc= 7-bb2f-442c1b17af26) > System Software Engineering > Software and Advanced Technology Group > Zizhu Science Park, Shanghai, China > > -----Original Message----- > From: Shyam Saini > Sent: Thursday, June 1, 2023 3:10 AM > To: alex.bennee@linaro.org > Cc: code@tyhicks.com; Matti.Moell@opensynergy.com; arnd@linaro.org; Zhu, = Bing ; hmo@opensynergy.com; ilias.apalodimas@linaro.org= ; joakim.bech@linaro.org; linux-kernel@vger.kernel.org; linux-mmc@vger.kern= el.org; linux-scsi@vger.kernel.org; maxim.uvarov@linaro.org; ruchika.gupta@= linaro.org; Winkler, Tomas ; ulf.hansson@linaro.or= g; Huang, Yang ; sumit.garg@linaro.org; jens.wiklande= r@linaro.org; op-tee@lists.trustedfirmware.org > Subject: [PATCH v2 0/4] rpmb subsystem, uapi and virtio-rpmb driver > > Hi Alex, > > [ Resending, Sorry for the noise ] > > Are you still working on it or planning to resubmit it ? > > [1] The current optee tee kernel driver implementation doesn't work when = IMA is used with optee implemented ftpm. > > The ftpm has dependency on tee-supplicant which comes once the user space= is up and running and IMA attestation happens at boot time and it requires= to extend ftpm PCRs. > > But IMA can't use PCRs if ftpm use secure emmc RPMB partition. As optee c= an only access RPMB via tee-supplicant(user space). So, there should be a f= ast path to allow optee os to access the RPMB parititon without waiting for= user-space tee supplicant. > > To achieve this fast path linux optee driver and mmc driver needs some wo= rk and finally it will need RPMB driver which you posted. > > Please let me know what's your plan on this. > > [1] https://optee.readthedocs.io/en/latest/architecture/secure_storage.ht= ml > > Best Regards, > Shyam