Received: by 2002:a05:6358:3188:b0:123:57c1:9b43 with SMTP id q8csp246993rwd;
        Wed, 31 May 2023 22:48:37 -0700 (PDT)
X-Google-Smtp-Source: ACHHUZ5FXGBeqgGSCyhd44bQ6cwOsaZ3d8j4bQlI8cfLqt0SBZJBj9BxfkO82yV6vnT5Ym6BlY5B
X-Received: by 2002:a05:6358:5909:b0:125:693d:75ff with SMTP id g9-20020a056358590900b00125693d75ffmr2000564rwf.32.1685598517519;
        Wed, 31 May 2023 22:48:37 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1685598517; cv=none;
        d=google.com; s=arc-20160816;
        b=mUOsnI0an5ruFPpfZDFdGXppMykbI4EKlTmJl6jj0kG2TOHS6Psn/RgYujPRY8AQI9
         hIuB2+i8ZeZvqPEHtL2p8BXzamoeT7c6a78aFKM1lfCuGXIazR86bA312FhqTWy7DRgq
         v8hTcgs5bks9juzsRy6U3/KrttmLoOtNyn5od16FvDQgmYVjq+lBaqkFCeFjJiGrL6WC
         8nlDwemFcFEJEekgjrMkDKl09j2953H3+kBj/9SS7fbCdwB7iYH80o9F/2svfswJZJTM
         0I6fH+reykNvPN2j+z9frPFXrCjiU1WXI2ZVfpkk/oFWxnXCfX1AWR9p5t0kxPhKHzop
         O9vA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:content-transfer-encoding:cc:to:subject
         :message-id:date:from:in-reply-to:references:mime-version
         :dkim-signature;
        bh=HsI/5WLiHlcp0ZEEt3H/cNP/MuQhNAeZoQaqtMmhWNQ=;
        b=PF+uDPJOY6gFOLl+e1KztQUeDorxDJMWcNDfYTXkqaxa3JYpKK09+f5K7H1M2bm4HS
         qM3m/82kd+mp9QFXXGt6jk3fiflIMC99ob0DVYcscxGEY4l0YLNFbH5vZ3c9Bjl/HsTR
         Xbaf31VMm7IdCSOaMzAb4KeJRYxtZN91kbPRbNhr96SaoHwGgpyw4qr2dwhgBo8v8CkZ
         cETY00dQoIFXEr5n54U5ZhFOMo+qeWJeSTPt6G0vvSV1kHDRMke/lkiHTwGmSl/XW7so
         2sCCv7uz79JuPvGQvQMQ8v3NHafvc8w+AS1KCCMZkc2QFsE36B3/dYuRoSEqcr7pKxnD
         dKHQ==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@linaro.org header.s=google header.b=H+UnM8kW;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=linaro.org
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20])
        by mx.google.com with ESMTP id j13-20020a633c0d000000b00520b3928bebsi2350274pga.7.2023.05.31.22.48.23;
        Wed, 31 May 2023 22:48:37 -0700 (PDT)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@linaro.org header.s=google header.b=H+UnM8kW;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=linaro.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S229596AbjFAFcN (ORCPT <rfc822;abelvesa@gmail.com> + 99 others);
        Thu, 1 Jun 2023 01:32:13 -0400
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:45268 "EHLO
        lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S229651AbjFAFcM (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Thu, 1 Jun 2023 01:32:12 -0400
Received: from mail-lf1-x136.google.com (mail-lf1-x136.google.com [IPv6:2a00:1450:4864:20::136])
        by lindbergh.monkeyblade.net (Postfix) with ESMTPS id D50D112C
        for <linux-kernel@vger.kernel.org>; Wed, 31 May 2023 22:32:10 -0700 (PDT)
Received: by mail-lf1-x136.google.com with SMTP id 2adb3069b0e04-4f4b384c09fso388581e87.3
        for <linux-kernel@vger.kernel.org>; Wed, 31 May 2023 22:32:10 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=linaro.org; s=google; t=1685597529; x=1688189529;
        h=content-transfer-encoding:cc:to:subject:message-id:date:from
         :in-reply-to:references:mime-version:from:to:cc:subject:date
         :message-id:reply-to;
        bh=HsI/5WLiHlcp0ZEEt3H/cNP/MuQhNAeZoQaqtMmhWNQ=;
        b=H+UnM8kWWRu5RWrI0KNNuViptqIvOW5zcJGzBaZVFz5u1WPqYJXCJc17Qscomw3p6F
         dueFhvI1Neba5nB4Sott68NEtF/E6W9h9s7avVEcUnaAlcSsxIzJ9g+FN3IGoppPPwfQ
         kgDux/S4X/2WMZOKI69iGFK03nIwzJ3WtLaPca8zqU7iSp++rOSVP2lZJbCKUWr32eyf
         LlUyC73afA/whcbyU+96OP0rKkDhmp4EVsngkdcGENWbelRUI3az4Pqeq8bfU6I9ayvy
         UlA4j01jegpkBBOlrxxOnlS3YWzus6MeV3yehNEiIXQIMSYHTR74iF5jw/CFznmiYghR
         CgFw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20221208; t=1685597529; x=1688189529;
        h=content-transfer-encoding:cc:to:subject:message-id:date:from
         :in-reply-to:references:mime-version:x-gm-message-state:from:to:cc
         :subject:date:message-id:reply-to;
        bh=HsI/5WLiHlcp0ZEEt3H/cNP/MuQhNAeZoQaqtMmhWNQ=;
        b=N2dW7p4+zqGtE6x+dHCk7p8q119AfIACNIm71hYzToPJluQlzTsyxEe47cuu90Gy5a
         nLl6iG7dotai/3Qo14LOmCGhMpj0FGvdGd1Iq0UPUUOKmLAOZYOVBfC7FnnS0GQJJoc2
         DFoQ8geZmADUe/T9iOfTaGWariJtqSkxnN1rDlqCM9xZlNWqNXxRa7tFGo+R5Z5OVUZ0
         Ny8yozR4y84VgN9zECW/7cYWcl6eA5O4i513IF8AfebAnMqPnMwr4dgsFT909UecurAy
         ox9nVtcu/poJFaxcNTW8qKxHFs8Snun7y5+G/gTU/rBvCoXm7DBBfmaJVYQG96+Hqif+
         pqAQ==
X-Gm-Message-State: AC+VfDyjgK025ei/Sf3WMCoRH8kE4wfi6sYngB5/be5/sjQMJ4FXfi12
        GGkFiTnMCuYBXgXjsLKaDb29v7/Fuho27LIiJ+L3Jw==
X-Received: by 2002:ac2:44dc:0:b0:4f4:ce78:2f17 with SMTP id
 d28-20020ac244dc000000b004f4ce782f17mr582911lfm.13.1685597529125; Wed, 31 May
 2023 22:32:09 -0700 (PDT)
MIME-Version: 1.0
References: <20220405093759.1126835-1-alex.bennee@linaro.org>
 <20230531191007.13460-1-shyamsaini@linux.microsoft.com> <SN7PR11MB6850DA4A185E3429B62531CD84499@SN7PR11MB6850.namprd11.prod.outlook.com>
In-Reply-To: <SN7PR11MB6850DA4A185E3429B62531CD84499@SN7PR11MB6850.namprd11.prod.outlook.com>
From:   Ilias Apalodimas <ilias.apalodimas@linaro.org>
Date:   Thu, 1 Jun 2023 08:31:33 +0300
Message-ID: <CAC_iWjKAdimEH0SsC_z9QuFS4sGLp2BVzx03s+RKvcLXY25kuQ@mail.gmail.com>
Subject: Re: [PATCH v2 0/4] rpmb subsystem, uapi and virtio-rpmb driver
To:     "Zhu, Bing" <bing.zhu@intel.com>
Cc:     Shyam Saini <shyamsaini@linux.microsoft.com>,
        "alex.bennee@linaro.org" <alex.bennee@linaro.org>,
        "code@tyhicks.com" <code@tyhicks.com>,
        "Matti.Moell@opensynergy.com" <Matti.Moell@opensynergy.com>,
        "arnd@linaro.org" <arnd@linaro.org>,
        "hmo@opensynergy.com" <hmo@opensynergy.com>,
        "joakim.bech@linaro.org" <joakim.bech@linaro.org>,
        "linux-kernel@vger.kernel.org" <linux-kernel@vger.kernel.org>,
        "linux-mmc@vger.kernel.org" <linux-mmc@vger.kernel.org>,
        "linux-scsi@vger.kernel.org" <linux-scsi@vger.kernel.org>,
        "maxim.uvarov@linaro.org" <maxim.uvarov@linaro.org>,
        "ruchika.gupta@linaro.org" <ruchika.gupta@linaro.org>,
        "Winkler, Tomas" <tomas.winkler@intel.com>,
        "ulf.hansson@linaro.org" <ulf.hansson@linaro.org>,
        "Huang, Yang" <yang.huang@intel.com>,
        "sumit.garg@linaro.org" <sumit.garg@linaro.org>,
        "jens.wiklander@linaro.org" <jens.wiklander@linaro.org>,
        "op-tee@lists.trustedfirmware.org" <op-tee@lists.trustedfirmware.org>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
X-Spam-Status: No, score=-2.1 required=5.0 tests=BAYES_00,DKIM_SIGNED,
        DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,RCVD_IN_DNSWL_NONE,
        SPF_HELO_NONE,SPF_PASS,T_SCC_BODY_TEXT_LINE autolearn=ham
        autolearn_force=no version=3.4.6
X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on
        lindbergh.monkeyblade.net
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

Hi Bing

On Thu, 1 Jun 2023 at 04:03, Zhu, Bing <bing.zhu@intel.com> wrote:
>
> As an alternative, Is it possible to change ftpm design not to depend on =
RPMB access at the earlier/boot stage? Because to my understanding, typical=
ly PCRs don't require persistent/NV storage (for example, before RPMB or te=
e-supplicant is ready, use TEE memory instead as temporary storage)

I am not entirely sure this will solve our problem here.  You are
right that we shouldn't depend on the supplicant to extend PCRs. But
what happens if an object is sealed against certain PCR values?  We
are back to the same problem

Thanks
/Ilias
>
> Bing
>
> IPAS Security Brown Belt (https://www.credly.com/badges/69ea809f-3a96-4bc=
7-bb2f-442c1b17af26)
> System Software Engineering
> Software and Advanced Technology Group
> Zizhu Science Park, Shanghai, China
>
> -----Original Message-----
> From: Shyam Saini <shyamsaini@linux.microsoft.com>
> Sent: Thursday, June 1, 2023 3:10 AM
> To: alex.bennee@linaro.org
> Cc: code@tyhicks.com; Matti.Moell@opensynergy.com; arnd@linaro.org; Zhu, =
Bing <bing.zhu@intel.com>; hmo@opensynergy.com; ilias.apalodimas@linaro.org=
; joakim.bech@linaro.org; linux-kernel@vger.kernel.org; linux-mmc@vger.kern=
el.org; linux-scsi@vger.kernel.org; maxim.uvarov@linaro.org; ruchika.gupta@=
linaro.org; Winkler, Tomas <tomas.winkler@intel.com>; ulf.hansson@linaro.or=
g; Huang, Yang <yang.huang@intel.com>; sumit.garg@linaro.org; jens.wiklande=
r@linaro.org; op-tee@lists.trustedfirmware.org
> Subject: [PATCH v2 0/4] rpmb subsystem, uapi and virtio-rpmb driver
>
> Hi Alex,
>
> [ Resending, Sorry for the noise ]
>
> Are you still working on it or planning to resubmit it ?
>
> [1] The current optee tee kernel driver implementation doesn't work when =
IMA is used with optee implemented ftpm.
>
> The ftpm has dependency on tee-supplicant which comes once the user space=
 is up and running and IMA attestation happens at boot time and it requires=
 to extend ftpm PCRs.
>
> But IMA can't use PCRs if ftpm use secure emmc RPMB partition. As optee c=
an only access RPMB via tee-supplicant(user space). So, there should be a f=
ast path to allow optee os to access the RPMB parititon without waiting for=
 user-space tee supplicant.
>
> To achieve this fast path linux optee driver and mmc driver needs some wo=
rk and finally it will need RPMB driver which you posted.
>
> Please let me know what's your plan on this.
>
> [1] https://optee.readthedocs.io/en/latest/architecture/secure_storage.ht=
ml
>
> Best Regards,
> Shyam