From mboxrd@z Thu Jan 1 00:00:00 1970 X-GM-THRID: 7247222195536003072 X-Received: by 2002:a5d:4bc1:0:b0:30f:cd58:1012 with SMTP id l1-20020a5d4bc1000000b0030fcd581012mr13988897wrt.11.1687416039234; Wed, 21 Jun 2023 23:40:39 -0700 (PDT) X-BeenThere: isar-users@googlegroups.com Received: by 2002:a05:6000:1f83:b0:312:831e:b4c2 with SMTP id bw3-20020a0560001f8300b00312831eb4c2ls91150wrb.2.-pod-prod-03-eu; Wed, 21 Jun 2023 23:40:37 -0700 (PDT) X-Google-Smtp-Source: ACHHUZ66Agnd9Zd0xJpRQNhWex9lFdlZHp+Folvpp8tuCFAJJ83zyV50IY+2sM2DqmNbeWmDFcnD X-Received: by 2002:a05:6000:1212:b0:30f:bf11:4e60 with SMTP id e18-20020a056000121200b0030fbf114e60mr13003888wrx.48.1687416037503; Wed, 21 Jun 2023 23:40:37 -0700 (PDT) ARC-Seal: i=2; a=rsa-sha256; t=1687416037; cv=pass; d=google.com; s=arc-20160816; b=pvgLlLAesaLVb4IkKz7gfMMljcv4pjSKaLOgPEoa/KSnPn+2I11SiSp0NNMjl28AVE lvIK0/lYjoLGxVeR9Tr37k5C2Dwb3DUhfyEFM/dcBmSV2v5O66vvT8SJr+/e0hUnQ2qQ QCpiP56L5fOwFw/UbxVY3FzpIMS+VyS508lc2ZRWlT82nrm+8fsp/Vm/3P2xYpgdq1vg gzfWrlW/2747PVkMjodGML7OxF74DkW4jFzJfCS3xKkjMakpQ+90cf1KAyeMHW2rHxTu pALxqEwuYXVd3l9cvfgFTnUZ2Lf3FqURSCqLHs/xAz2J5Qjy9ejHoK2OPA1bi0bWk2NV zlhQ== ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=mime-version:content-transfer-encoding:in-reply-to:from:references :cc:to:content-language:subject:user-agent:date:message-id :dkim-signature; bh=taalDkQ11VUmwgVmsJVn3hDcOonFUZqcqZIRBJKOViA=; b=gbCUL07qzEw7NNVLfhXKWJBzCVbIbjc+ms2sOHMRvhbFL3omJLHv3kxLCNbIbneERD FCEr5GNIJ3ukwk0Wex84r+L0hAlQyOu2dqtLqTbcYj6fcRmUw1aemJx6SLFGokYPGFWJ vC0WIMwWCMSO3iUfnFo/Atse4O/VSbu3XfInBpqtBnXY9K/jf2L/ub4GjJzpPzFwFLOU MaqM0ldtfjktBri6xeO/lPaqzjS266bcMH4tq+NChwgAIB023kk7jGsEvGWuq/+0lwBl k91sUvkxzEQzQWBiV8a0Uoi8CFc9YI/8yZd1wHe7kKPygcIt0xi2sL8MZf2hL5Y87wv4 RpzQ== ARC-Authentication-Results: i=2; gmr-mx.google.com; dkim=pass header.i=@siemens.com header.s=selector2 header.b=x6M80L8A; arc=pass (i=1 spf=pass spfdomain=siemens.com dkim=pass dkdomain=siemens.com dmarc=pass fromdomain=siemens.com); spf=pass (google.com: domain of jan.kiszka@siemens.com designates 2a01:111:f400:fe1a::623 as permitted sender) smtp.mailfrom=jan.kiszka@siemens.com; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=siemens.com Return-Path: Received: from EUR03-DBA-obe.outbound.protection.outlook.com (mail-dbaeur03on20623.outbound.protection.outlook.com. [2a01:111:f400:fe1a::623]) by gmr-mx.google.com with ESMTPS id j2-20020adfe502000000b0031111287632si322535wrm.0.2023.06.21.23.40.37 for (version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128); Wed, 21 Jun 2023 23:40:37 -0700 (PDT) Received-SPF: pass (google.com: domain of jan.kiszka@siemens.com designates 2a01:111:f400:fe1a::623 as permitted sender) client-ip=2a01:111:f400:fe1a::623; Authentication-Results: gmr-mx.google.com; dkim=pass header.i=@siemens.com header.s=selector2 header.b=x6M80L8A; arc=pass (i=1 spf=pass spfdomain=siemens.com dkim=pass dkdomain=siemens.com dmarc=pass fromdomain=siemens.com); spf=pass (google.com: domain of jan.kiszka@siemens.com designates 2a01:111:f400:fe1a::623 as permitted sender) smtp.mailfrom=jan.kiszka@siemens.com; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=siemens.com ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=QVK3NQyljRxW3eGe3gAWXmKqrIiuYHOprdWuP+N0bOHUtSsyQj173ANKEKVtWcf6exu6bGi9NhH5JhsF4eKK3yty/B8GWwL0PUSCwQ8+bcbd36MfCeTlFbGvO3Rx8nhttVT9JzQ5PXkbqkKh5pd1I4ml8PTdELG0/RQwg6lKfAVmJTUBEpY7WF2xHqT8RmlVM/2OwP2glbayNDdA9U2cOdBWTkngdSW94Uvh4heGiacd1nW7RqRB/yHSiosL+UTdDXoSdPknd7ZsrjePY2lHnqm1ua3YU+wNsgYqBhrP+wpobnBsH2WkaH4GA5ozoNwLvTOdQ//6DSL4ilgMDhO+9g== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=taalDkQ11VUmwgVmsJVn3hDcOonFUZqcqZIRBJKOViA=; b=NvL2bi9MfPpJ9CRy+48VILmPsXN7L1geH5rOWKURLbNeioXiECWepi4IY2WbFqEWhWMtZqAaAz49BSHfOmn5OciaOdRkQVdakJR1O0+N8QJY6Z793kK5/HM2jhz9FEgO0tnUVt6U6FjlLtUiSlK+9fJirissyIGk4ZfeoWPp5fVRoJICYrDzLcrT9rodCop8b6C68rAL3bLnKCu/VpfOLHGiGyfubZ/yAH9dicSYpj7iMGzlRDdwqDnD45iy3Fx+RdB004TqSaJXpDuiLqN6Lap0lstMDckQt8FoO8NCzm51fAme9qWiZcPSl1ZN5gcYMHrMcPMQhk8FEAJucwOLTA== ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=siemens.com; dmarc=pass action=none header.from=siemens.com; dkim=pass header.d=siemens.com; arc=none DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=siemens.com; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=taalDkQ11VUmwgVmsJVn3hDcOonFUZqcqZIRBJKOViA=; b=x6M80L8AKZqSJdeNqzJyD9I38/rc/RD/KXxVgElOn3Oay0GmMrjMxVUmPbvmJ7LejhYn+i02GX4AFnak3rSHmanoWNL5GiE3NswTII2cyBnxPp/QqvZPoJlLw2pgCTW6sEGY9QtE7y1x4/3YDMjrzWTdIMY16ab7Jy6cxiqiCTP59vTWN5Vpu2B4xcmHgBreh028Fw3KLm9mmoquu35LXM4oe4NT8qHwynQQXmUDwXVWzi595dCz0YtGHez/cMDsqu01/mDHM5OLCjxV8wNPzT9ICkyFOhoeB770XX9pSh8QxUnAZ9Z8E4J1aTVfNqzsMt/omIz9ZOZzxrI/omfnrA== Authentication-Results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=siemens.com; Received: from AS4PR10MB6181.EURPRD10.PROD.OUTLOOK.COM (2603:10a6:20b:588::19) by AM7PR10MB3175.EURPRD10.PROD.OUTLOOK.COM (2603:10a6:20b:dd::20) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6500.37; Thu, 22 Jun 2023 06:40:36 +0000 Received: from AS4PR10MB6181.EURPRD10.PROD.OUTLOOK.COM ([fe80::53c2:174a:8b13:ce94]) by AS4PR10MB6181.EURPRD10.PROD.OUTLOOK.COM ([fe80::53c2:174a:8b13:ce94%3]) with mapi id 15.20.6521.024; Thu, 22 Jun 2023 06:40:36 +0000 Message-ID: <32057ee9-5986-eb43-bafb-44f80c681b80@siemens.com> Date: Thu, 22 Jun 2023 08:40:32 +0200 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:102.0) Gecko/20100101 Thunderbird/102.11.0 Subject: Re: [PATCH v2 5/7] Add recipe for optee ftpm Content-Language: en-US To: Su Baocheng , isar-users@googlegroups.com, felix.moessbauer@siemens.com Cc: christian.storm@siemens.com, quirin.gylstorff@siemens.com, baocheng.su@siemens.com References: <20230621192217.2045717-1-baocheng_su@163.com> <20230621192217.2045717-6-baocheng_su@163.com> <08d9440a-0680-e0af-dd50-2705c0f8d56b@siemens.com> <9a5eccff-1747-f437-f802-9b09235e2f3e@163.com> From: Jan Kiszka In-Reply-To: <9a5eccff-1747-f437-f802-9b09235e2f3e@163.com> Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit X-ClientProxiedBy: FR2P281CA0110.DEUP281.PROD.OUTLOOK.COM (2603:10a6:d10:9c::20) To AS4PR10MB6181.EURPRD10.PROD.OUTLOOK.COM (2603:10a6:20b:588::19) Return-Path: jan.kiszka@siemens.com MIME-Version: 1.0 X-MS-PublicTrafficType: Email X-MS-TrafficTypeDiagnostic: AS4PR10MB6181:EE_|AM7PR10MB3175:EE_ X-MS-Office365-Filtering-Correlation-Id: 836c8bcb-4546-4787-cb71-08db72eb95f4 X-LD-Processed: 38ae3bcd-9579-4fd4-adda-b42e1495d55a,ExtAddr X-MS-Exchange-SenderADCheck: 1 X-MS-Exchange-AntiSpam-Relay: 0 X-Microsoft-Antispam: BCL:0; X-Microsoft-Antispam-Message-Info: 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 X-Forefront-Antispam-Report: CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:AS4PR10MB6181.EURPRD10.PROD.OUTLOOK.COM;PTR:;CAT:NONE;SFS:(13230028)(4636009)(376002)(39860400002)(136003)(346002)(396003)(366004)(451199021)(38100700002)(82960400001)(86362001)(36756003)(31696002)(31686004)(66556008)(66946007)(4326008)(6636002)(316002)(44832011)(26005)(66476007)(186003)(966005)(5660300002)(6486002)(8936002)(53546011)(107886003)(6512007)(6506007)(41300700001)(6666004)(2906002)(45080400002)(8676002)(2616005)(478600001)(83380400001)(43740500002)(45980500001);DIR:OUT;SFP:1101; X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 1 X-MS-Exchange-AntiSpam-MessageData-0: =?utf-8?B?QSt4eTdqRkFmL2R2eDRJTC9hSHV3TytjeVlOY0hvUzF5WUJwWFBoanBrUzZU?= =?utf-8?B?b2w2YmdUNDRVbUhDNEp2Q0ZGQ0Rqb3JvSWZkLzRQY2VZTXR1VHpyNk0wOHJF?= =?utf-8?B?dEZIS0ZQZkV5S0VZcm5aVzU1bDduN2ZPSFJvZFFFUVRkSlFkWUV2QXphSUVm?= =?utf-8?B?TnBheEJKT2FGb25KWnRrVXhqYklqVkdBUW1sTXVnM3Izb25hakplTjQ0bEgr?= =?utf-8?B?eWovbzQ0enBRWTNFYSt3OU9IblFZZnhRN1lnT0cyV1FYNFE3Umx3bmZwT3VD?= =?utf-8?B?dU0zZXIvejF4anUyb2JoclFFRnI4TlE1S3BEVVRSZy8xamdPNHFRNGxHQThN?= =?utf-8?B?UHQvUG94TklXQWp0amdxdWhsU0UvbTA2U2JOMXdHMXd6L3JFOFVLc1BOVTNS?= =?utf-8?B?cnlVbHhLUWd3NDRHU3lhUld5VjhyYUF4em5hdGZ5RVhYbmJMV0NRL2cxc3pN?= =?utf-8?B?VWFrM01qanBMRmdNUzdtSm4xam9TQ0R4WkM3WHRKS052d1NGRDI1WDdqUVZK?= =?utf-8?B?L1pyb1lxak1lK0ExR1RvdytMNGxsUTV2UjlzTHhNdlFnV2tRd1MyQzVNYnYw?= =?utf-8?B?Y2ZxQ1pjaHZsMlF2bFp3c3pSYXg5U2s1QUtDOHc1WmZnZWFDZ0l1aEJBWmkx?= =?utf-8?B?MHpvRC96QngyRTdyaDZvOEZnN0FQL1ZXeEtNL2dDcjU1K3hBenFMV0czalhO?= =?utf-8?B?b0t2bVBqRlJxdHY0bnRjOGMvc2p3VlVqMHBWb2luQWgwL0I5Y1BkSFFGbTFj?= =?utf-8?B?cFZIb3AvK0pOdnhoS1p5enA1Qis3alE3bTZ1Q2dFa21UaFBTOStwN2NkemN6?= =?utf-8?B?MTYvMVErSnhqRVVNS3E2THEyR3hBZnRhdFBBV0c1RzlTWVN0TGtieCtJS2xS?= =?utf-8?B?YzVlY1RLZklkOURYck5yaHI1bmxueDNuVnJnQWlQbllMcFFHMTJLeVF4S0JM?= =?utf-8?B?QnN0M0NZOGtETHRaa2JmWUNxNllWMXFaM3B5czJIOUlEd2l2M0c0b3hHd1NT?= =?utf-8?B?ZE9NR3FDZjVHQ2hNMjZoWTlKTmRpR0ErUnBjaTk2dm4vb3NhY3BBM3pjN2xy?= =?utf-8?B?VkdkK0VtcXh0MVBrYlZMSnRzSW92bGVIQ1p0dVNwd1ExQjJWZnRYb3F6YnAw?= =?utf-8?B?M2lhMGdHV20xUnM5Sm9MVTVObmZla1Zma0ZwaC9aZFBzVFRRQ3RjcDVQNFNE?= =?utf-8?B?OTNCck93VWpJckFGUENKbVp6RlVWREtrSmJtM2Iyajk5cUlhZDB6clF6ZWtH?= =?utf-8?B?K0x4ZEFRa21TNmZpMktTUFNheGhsRStCUnlzbDE2SzlSUUlhNWMwS2N3NVVy?= =?utf-8?B?NDRTMnlteEtCdTAxQjJyc3dTajBTWEc2NXhDSzAzaUxjWGhrNUlFSUtCVGpk?= =?utf-8?B?bW01Njcvb04rT1hXUTZLdzRscVBhbjhSRUYxR2xNSFhDR3YxWW1Sd0tyWEwz?= =?utf-8?B?OWRLNS9vaXR5Q3FNcFlTY3lwWUNqUEg5eTBacVFXSGdrYlYrbUhPcFU1RWwz?= =?utf-8?B?ci9JcEF0Q1c0bnRQRVVqMXRTWkRFWDg3OVNyNnUxMHNIdEVvUE1aYkNMdU91?= =?utf-8?B?cThmOUoxS0VxVURibGZ0eUY3QnkzMisxZkx0VmJkb0x1bFphbWFDcDVLTmU3?= =?utf-8?B?cU84ejh0Mk8reVZMQkNlVUVBK1RSaTFibitWNEhUdlBQbGI0aXpSTFI3SzJv?= =?utf-8?B?cXZ4cGF1L3pCNXN6aHptL1J2YzhKUmhNZkNiQmpXRS9qVzBVbVpDWWx5OGdC?= =?utf-8?B?bWNTUURhZWNqWFBESE5jR3NrZEVuQ3ZjQWt5cEV0NlpNR3lpL1dLbnRjNHov?= =?utf-8?B?Y1k4Q1VCNDFSR3lmNEVtUkR5WWlDcWxvZDRydGlMcnFhRlRWc1Y2YlA3VmNr?= =?utf-8?B?SGVLVE1tZ3JBRjJCUmxzMUpGaS8zZ1RtMlVqYjdwck84OEkwci9zalB5bms0?= =?utf-8?B?SHh6TkFMSzJDOVhuTjlxbEZnczJxUWNmUWphSHk2c0tNM1FoUXRpTi81Z2ll?= =?utf-8?B?NVlXOGorMDBXTnV5WHhxeWE4QXFuVHBpaGdkVG9PWFMrMkNoTCtXUVl4eFZW?= =?utf-8?B?T0pRamo4MnZobW1jeE9FbXFpVm1nRU1VaENhTkFLOGF2YjhpNnk2TUpYNkE1?= =?utf-8?B?QW9qMnNoNGtDMnBLQnNlV0YzdlUxVkY1d0E2SW5tTmhuYUk5a0FUNjJiYzQz?= =?utf-8?B?WkE9PQ==?= X-OriginatorOrg: siemens.com X-MS-Exchange-CrossTenant-Network-Message-Id: 836c8bcb-4546-4787-cb71-08db72eb95f4 X-MS-Exchange-CrossTenant-AuthSource: AS4PR10MB6181.EURPRD10.PROD.OUTLOOK.COM X-MS-Exchange-CrossTenant-AuthAs: Internal X-MS-Exchange-CrossTenant-OriginalArrivalTime: 22 Jun 2023 06:40:36.3085 (UTC) X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted X-MS-Exchange-CrossTenant-Id: 38ae3bcd-9579-4fd4-adda-b42e1495d55a X-MS-Exchange-CrossTenant-MailboxType: HOSTED X-MS-Exchange-CrossTenant-UserPrincipalName: w/5nOQP1aNjtUzoHVtDTil7vZXdZBz59rmNoGf9tpYJxr8U/DKMIjVjJPMfh7wequ8BIrTlvBd6T+xlTVv4GSg== X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM7PR10MB3175 X-TUID: 0tgIoe66v0di On 22.06.23 08:21, Su Baocheng wrote: > > > On 2023/6/22 14:02, Jan Kiszka wrote: >> On 21.06.23 21:22, baocheng_su@163.com wrote: >>> From: Baocheng Su >>> >>> This integrate Microsoft's reference implementation of the TCG TPM2.0 >>> as an >>> OPTee trusted application, see [1] and [2] for details, esp. >>> meta-ts/layers/meta-arm/meta-arm/recipes-security/optee-ftpm >>> >>> Since the OPTee secure storage on IOT2050 is RPMB-based, and the RPMB >>> accessing >>> is provided by linux tee-supplicant, this TA is only discoverable when >>> tee-supplicant is running. >>> >>> To help to gracefully manage the tee-supplicant, the kernel drive >>> tpm_ftpm_tee should be compile as .ko and be loaded/unloaded >>> dynamically. >>> >>> [1]: https://github.com/microsoft/ms-tpm-20-ref/ >>> [2]: https://gitlab.com/Linaro/trustedsubstrate/meta-ts >>> >>> Signed-off-by: Baocheng Su >>> --- >>>   .../files/0001-add-enum-to-ta-flags.patch     | 27 +++++++++++ >>>   .../optee-ftpm-stm32mp15x_0~230316+git.bb     | 35 ++++++++++++++ >> >> The version should probably be 0~20230316+git when following Debian >> suggestions. >> > > According to [1], there are two possoble version strings, YYYYMMDD or > 0~YYMMDD, the later ensures a smooth transition to a normal 0.1 in the > future when upstreaming starts to use normal version. > > 1. https://www.debian.org/doc/manuals/debmake-doc/ch05.en.html#name-version Ok, then keep it as it is. Jan -- Siemens AG, Technology Competence Center Embedded Linux