Re: [tpmdd-devel] [PATCH] TPM: Fixup pubek sysfs file

From: Hal Finney
Date: Tue Sep 15 2009 - 12:34:36 EST

Next message: Mike Frysinger: "Re: [PATCH v3] input/keyboard: new OpenCores Keyboard Controller driver"
Previous message: Steven Rostedt: "[PATCH] [GIT PULL] tracing: optimize global_trace_clock cachelines"
In reply to: Jonathan M. McCune: "Re: [tpmdd-devel] [PATCH] TPM: Fixup pubek sysfs file"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

One file-based aspect of the TPM driver interface is the securityfs
file system, typically mounted at /sys/kernel/security/tpm0. This
includes the IMA and/or BIOS event measurements. Trousers does read
these files optionally, however it has to be configured in tcsd.conf.
But the file formats are shared between the kernel driver and the
Trousers parsing code. This functionality is necessary for Trousers to
report pre-boot and post-boot measurement events to user code, which
in turn is necessary for meaningful Quote operations in some contexts.

Hal Finney

On Mon, Sep 14, 2009 at 11:01 AM, Jonathan M. McCune <jonmccune@xxxxxxx> wrote:
> Hello everybody,
>
> I have decided to chime in as a frequent (and I'm going to claim
> "experienced") user of the linux kernel TPM driver.
>
> To the best of my knowledge there is very little code in the wild that
> depends on the current structure of these sysfs entries. Probably the
> most used set of libraries and programs -- "TrouSerS" and "TPM Tools"
> (trousers.sourceforge.net) -- interact directly with the TPM via
> /dev/tpm*. I'm fairly confident that "tboot" (tboot.sourceforge.net)
> and "jTPM Tools" (trustedjava.sourceforge.net) don't use the sysfs
> entries either.
>
> Thus, fixing the one-item-per-file issues seems reasonable to me. For
> example, changing /sys/devices/platform/tpm_tis/pcrs from a single
> multi-entry file to a directory containing files named 0-15 or 0-23 that
> each then contain only the relevant 20-byte value seems quite
> reasonable. (Today's TPMs contain either 16 or 24 PCRs but future ones
> could contain many more.)
>
> I believe the pubek entry has gone broken for so long because once a TPM
> has been "owned" (and "taking ownership" is almost certainly the first
> thing one does when using the TPM for something), accessing the pubek
> needs to be authorized and so the sysfs entry shouldn't return anything
> anyways ("Authorization required."?). But it should definitely be fixed
> or removed.
>
> Likewise "caps" could be made into a directory containing files for the
> relevant data (Manufacturer, TCG version, Firmware version, ...).
>
> What I _disagree_ with is that these values should be moved debugfs.
> They are characteristics of a particular hardware device's current state
> and I believe fit the definition of what belongs in sysfs reasonably
> well. Their current implementation simply needs help.
>
> The changes I've mentioned are larger and don't seem appropriate for
> 2.6.31, but perhaps a plan to have them implemented for an upcoming
> version is reasonable? Is anybody willing to help put together such a
> patch? Discuss whether it's reasonable / acceptable to do so?
>
> Thanks,
> -Jon
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Mike Frysinger: "Re: [PATCH v3] input/keyboard: new OpenCores Keyboard Controller driver"
Previous message: Steven Rostedt: "[PATCH] [GIT PULL] tracing: optimize global_trace_clock cachelines"
In reply to: Jonathan M. McCune: "Re: [tpmdd-devel] [PATCH] TPM: Fixup pubek sysfs file"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]