From: Nayna <nayna@linux.vnet.ibm.com>
To: Jarkko Sakkinen <jarkko.sakkinen@linux.intel.com>
Cc: Peter Huewe <peterhuewe@gmx.de>,
"moderated list:TPM DEVICE DRIVER"
<tpmdd-devel@lists.sourceforge.net>,
open list <linux-kernel@vger.kernel.org>
Subject: Re: [tpmdd-devel] [PATCH RFC 2/2] tpm: refactor tpm2_get_tpm_pt to tpm2_getcap_cmd
Date: Fri, 18 Nov 2016 17:42:01 +0530 [thread overview]
Message-ID: <582EF011.1050007@linux.vnet.ibm.com> (raw)
In-Reply-To: <20161117174241.wvyd7g5lj4ibfnry@intel.com>
On 11/17/2016 11:12 PM, Jarkko Sakkinen wrote:
> On Thu, Nov 17, 2016 at 05:20:36PM +0530, Nayna wrote:
>
>> I tested this for capability TPM2_CAP_PCRS. It seems TPM2_CAP_PCRS
>> capability always returns full PCR allocation, and more_data as 0, So, I
>> think the idea of looping over based on more_data may not work for this
>> capability.
>
> You can always request one value at a time until there's no more.
>
> If you request N values, depending on the hardware, the hardware returns
> to you anything from 1 to N values. If you implement a function that
> requests N values in the command, you *must* handle the case where
> moreData is 1 even if the hardware you are testing that never happens.
>
> That's the reason why I would start with a function that you request one
> property of one capability and optimize it in future if it doesn't scale
> for some workload.
>
> Do you have a workload where it doesn't scale?
Thanks Jarkko for explaining in detail.
If I understood correctly, the idea is to request for one property at a
time, and if we need multiple properties, then to request for each of
them in a loop. In case of TPM2_CAP_PCRS, property is always zero. This
is how I am calling getcap_cmd for TPM2_CAP_PCRS.
tpm2_getcap_cmd(chip, TPM2_CAP_PCRS, 0, &cap_data, "get active pcr
banks");
Output :
[ 17.081665] tpm: cap id to receive value is 2
[ 17.081666] tpm: TPM2_CAP_COMMANDS: more data 1
[ 17.081667] tpm: 2
[ 17.081668] tpm: tpm2_get_active_banks -------> cap is TPM2_CAP_PCRS
[ 17.171665] tpm: cap id to receive value is 5
[ 17.171666] tpm: TPM2_CAP_PCRS: more data 0 ---> more data is zero.
[ 17.171666] tpm: TPM2_CAP_PCRS: more data 0
[ 17.171667] tpm: count pcr banks is 2 ------> count of active pcr
banks information returned
more_data is always zero here, so am not sure how to handle more_data in
this case ?
Since property_id is always zero, I am not able to request for one
property at a time.
and response_buffer returns the details for both active banks.
This is the expected behavior defined in TCG 2.0 Part 3 Commands
Specification (Section 30.2.1):
"TPM_CAP_PCRS – Returns the current allocation of PCR in a
TPML_PCR_SELECTION. The property parameter shall be zero. The TPM will
always respond to this command with the full PCR allocation and moreData
will be NO."
Please let me know, if I am missing something.
Thanks & Regards,
- Nayna
>
> /Jarkko
>
next prev parent reply other threads:[~2016-11-18 12:12 UTC|newest]
Thread overview: 24+ messages / expand[flat|nested] mbox.gz Atom feed top
2016-10-09 10:14 [PATCH RFC 0/2] Generalize tpm2_get_tpm_pt to tpm2_get_cap Jarkko Sakkinen
2016-10-09 10:14 ` Jarkko Sakkinen
[not found] ` <1476008057-2395-1-git-send-email-jarkko.sakkinen-VuQAYsv1563Yd54FQh9/CA@public.gmane.org>
2016-10-09 10:14 ` [PATCH RFC 1/2] tpm: move TPM 2.0 command and response constants to tpm2-cmd.c Jarkko Sakkinen
2016-10-09 10:14 ` Jarkko Sakkinen
2016-10-09 10:14 ` [PATCH RFC 2/2] tpm: refactor tpm2_get_tpm_pt to tpm2_getcap_cmd Jarkko Sakkinen
2016-10-09 10:14 ` Jarkko Sakkinen
[not found] ` <1476008057-2395-3-git-send-email-jarkko.sakkinen-VuQAYsv1563Yd54FQh9/CA@public.gmane.org>
2016-11-11 4:21 ` Nayna
2016-11-11 4:21 ` [tpmdd-devel] " Nayna
2016-11-12 0:02 ` Jarkko Sakkinen
2016-11-14 23:48 ` Jarkko Sakkinen
2016-11-24 13:42 ` Nayna
[not found] ` <5836EE61.4010200-23VcF4HTsmIX0ybBhKVfKdBPR1lH4CV8@public.gmane.org>
2016-11-25 8:09 ` Jarkko Sakkinen
2016-11-25 8:09 ` [tpmdd-devel] " Jarkko Sakkinen
[not found] ` <20161112000242.63hgv5ujmkr7hy6a-ral2JQCrhuEAvxtiuMwx3w@public.gmane.org>
2016-11-17 11:50 ` Nayna
2016-11-17 11:50 ` [tpmdd-devel] " Nayna
[not found] ` <582D998C.40605-23VcF4HTsmIX0ybBhKVfKdBPR1lH4CV8@public.gmane.org>
2016-11-17 17:42 ` Jarkko Sakkinen
2016-11-17 17:42 ` [tpmdd-devel] " Jarkko Sakkinen
2016-11-18 12:12 ` Nayna [this message]
2016-11-18 16:13 ` Jarkko Sakkinen
[not found] ` <20161118161224.7sq4dbcnyzumbvds-ral2JQCrhuEAvxtiuMwx3w@public.gmane.org>
2016-11-22 9:08 ` Nayna
2016-11-22 9:08 ` [tpmdd-devel] " Nayna
2016-11-22 11:03 ` Jarkko Sakkinen
2016-11-04 7:28 ` [PATCH RFC 0/2] Generalize tpm2_get_tpm_pt to tpm2_get_cap Jarkko Sakkinen
2016-11-11 4:42 ` Nayna
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=582EF011.1050007@linux.vnet.ibm.com \
--to=nayna@linux.vnet.ibm.com \
--cc=jarkko.sakkinen@linux.intel.com \
--cc=linux-kernel@vger.kernel.org \
--cc=peterhuewe@gmx.de \
--cc=tpmdd-devel@lists.sourceforge.net \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.