search

linaro-swg / linux

Linux kernel source tree
Other
41 stars 79 forks source link

Enable Microsoft fTPM driver on Arm Foundation v8 models. #85

Closed javieralso-arm closed 3 years ago

javieralso-arm commented 3 years ago

Add bindings for Microsoft fTPM driver on Foundation v8 models.

Signed-off-by: Javier Almansa Sobrino javier.almansasobrino@arm.com

javieralso-arm commented 3 years ago

We are using an fTPM based on the Official TPM 2.0 Reference Implementation by Microsoft (https://github.com/microsoft/ms-tpm-20-ref) for a PoC of Measured Boot on Arm Trusted Firmware. This patch enables adds a binding to enable the required driver on the Kernel.

jenswi-linaro commented 3 years ago

@javieralso-arm Is this something that you intend to upstream also?

javieralso-arm commented 3 years ago

@javieralso-arm Is this something that you intend to upstream also?

@jenswi-linaro No, no need for that, as long as it can be merged to your optee branch. I'm preparing a manifest for OPTEE to setup a build including Measured Boot and an fTPM and I am planing to use the linaro-swg Kernel as done for the fvp manifest, for instance.

jenswi-linaro commented 3 years ago

Fair enough, keep in mind that we rebase this branch to a new kernel release from time to time.

javieralso-arm commented 3 years ago

Fair enough, keep in mind that we rebase this branch to a new kernel release from time to time.

Thank you very much for the heads up. We just want to have a PoC of a TPM service using Measured Boot so I will use a fixed revision on the manifest and I may update it from time to time. It is not a problem if the kernel is slightly outdated as long as it works and the functionality can be shown.

jforissier commented 3 years ago

@javieralso-arm please note that although the branch is rebased occasionally, we do create release tags (such as optee-3.12.0). So at some point you could reference such a tag.

javieralso-arm commented 3 years ago

@javieralso-arm please note that although the branch is rebased occasionally, we do create release tags (such as optee-3.12.0). So at some point you could reference such a tag.

Thanks for letting me know, @jforissier. I noticed those tags on OP-TEE/* projects but I didn't realize that you are also tagging the kernel with the same tags. That's good to know.

jforissier commented 3 years ago

Thank you @javieralso-arm. I have merged this with a note about upstream and a link to here.