From: <dan.j.williams@intel.com>
To: Alexey Kardashevskiy <aik@amd.com>, <dan.j.williams@intel.com>,
<linux-coco@lists.linux.dev>, <linux-pci@vger.kernel.org>
Cc: <yilun.xu@linux.intel.com>, <aneesh.kumar@kernel.org>,
<gregkh@linuxfoundation.org>, Lukas Wunner <lukas@wunner.de>,
Samuel Ortiz <sameo@rivosinc.com>,
Bjorn Helgaas <bhelgaas@google.com>
Subject: Re: [PATCH v5 04/10] PCI/TSM: Authenticate devices via platform TSM
Date: Wed, 10 Sep 2025 08:45:55 -0700 [thread overview]
Message-ID: <68c19d33eabba_5addd1005b@dwillia2-mobl4.notmuch> (raw)
In-Reply-To: <47a21e9e-5749-40bd-8207-efccc747e7e5@amd.com>
Alexey Kardashevskiy wrote:
>
>
> On 9/9/25 11:52, dan.j.williams@intel.com wrote:
> > Alexey Kardashevskiy wrote:
> >>
> >>
> >> On 9/9/25 10:41, dan.j.williams@intel.com wrote:
> >>> Alexey Kardashevskiy wrote:
> >>>>> So PCI_EXP_DEVCAP_TEE means that there may be a DSM,
> >>>>
> >>>> This bit I am not sure about. A bit hard to believe that PF0 is always expected to support passing through to a CVM. Thanks,
> >>>
> >>> I am losing track of your specific feedback, or what changes or being
> >>
> >> I've reread the thread, I wrongly assumed "tee" is used to decide whether to show "connect" in sysfs or not. I guess I was a bit tired^woverwhelmed when I made that comment, my bad.
> >>
> >>
> >>> suggested here is the summary of what the spec assumptions and what the
> >>> core supports:
> >>>
> >>> Spec assumptions:
> >>> - DEVCAP_TEE on a physical function is independent of IDE cap
> >>
> >> Right, I just want to make sure that PF0 that manages TEE VFs does not have to have the TEE bit itself.
> >
> > It does. Otherwise, how do you tell the difference between a device that
> > that only supports Component Measurement and Authentication (CMA) in
> > isolation vs a device that support CMA *and* TDISP requests?
>
> I'd check for IDE (not just CMA)
Again, IDE is optional for TDISP.
In section "11.1 Overview of the TEE-I/O Security Model as it Relates to
Devices" it says:
In some cases, e.g. for an RCiEP, it may be possible to ensure by
construction that communication is not be susceptible to tampering, and
therefore may not require the use of IDE. The TSM and DSM are both
responsible for ensuring that Device/Host (and, when peer-to-peer is
used, Device/Device) communication is secured by IDE, or by other means
that satisfy use model requirements.
> and then I'll ask the TSM about TDISP (my PSP asks the PF0 for TDISP
> version at the very end of DEV_CONNECT). It is the TSM which does all
> this IDE_KM and TDISP stuff anyway.
>
> And how do I tell if PF0 allows TDIs or not? Try binding and see it
> failing if it does not? Same thing imho.
Yes, the specification does not define a way, unless I missed it, to
enumerate the valid set of interface ids that the DSM manages. So the
best Linux can do is say "device is a function 0 endpoint and has
DEVCAP_TEE, lets assume that it manages SR-IOV functions, or non-zero
functions of the device. If the device is an upstream switch port, then
assume that it is a DSM for downstream secondary bus devices".
Those assumptions can not be validated in advance of trying to bind the
function. I.e. punt to userspace to figure it out the dependencies.
> > Now, the PCI/TSM core will still attach if that PF0 device has IDE,
> > without DEVCAP_TEE, but that support is incidental.
>
> Sure, I am trying to clarify the PCIe language here, none of this is a
> showstopper really. Thanks,
Again I am confused if you are pointing out a functional incompatibility
with the hardware you have in hand or are just trying to compare
interpretations of the specification.
next prev parent reply other threads:[~2025-09-10 15:46 UTC|newest]
Thread overview: 57+ messages / expand[flat|nested] mbox.gz Atom feed top
2025-08-27 3:51 [PATCH v5 00/10] PCI/TSM: Core infrastructure for PCI device security (TDISP) Dan Williams
2025-08-27 3:51 ` [PATCH v5 01/10] coco/tsm: Introduce a core device for TEE Security Managers Dan Williams
2025-08-27 3:51 ` [PATCH v5 02/10] PCI/IDE: Enumerate Selective Stream IDE capabilities Dan Williams
2025-09-15 16:18 ` Jonathan Cameron
2025-09-19 23:32 ` dan.j.williams
2025-08-27 3:51 ` [PATCH v5 03/10] PCI: Introduce pci_walk_bus_reverse(), for_each_pci_dev_reverse() Dan Williams
2025-08-27 3:51 ` [PATCH v5 04/10] PCI/TSM: Authenticate devices via platform TSM Dan Williams
2025-08-27 13:25 ` Alexey Kardashevskiy
2025-08-29 1:06 ` dan.j.williams
2025-08-29 1:58 ` Alexey Kardashevskiy
2025-09-05 0:50 ` dan.j.williams
2025-09-05 3:34 ` Alexey Kardashevskiy
2025-09-06 2:07 ` dan.j.williams
2025-09-08 6:13 ` Alexey Kardashevskiy
2025-09-09 0:41 ` dan.j.williams
2025-09-09 1:35 ` Alexey Kardashevskiy
2025-09-09 1:52 ` dan.j.williams
2025-09-10 10:55 ` Alexey Kardashevskiy
2025-09-10 15:45 ` dan.j.williams [this message]
2025-08-28 11:43 ` Alexey Kardashevskiy
2025-08-29 1:23 ` dan.j.williams
2025-08-30 13:26 ` Alexey Kardashevskiy
2025-09-05 0:51 ` dan.j.williams
2025-09-02 15:08 ` Aneesh Kumar K.V
2025-09-03 2:03 ` Alexey Kardashevskiy
2025-09-05 20:06 ` dan.j.williams
2025-09-05 19:13 ` dan.j.williams
2025-09-02 15:13 ` Aneesh Kumar K.V
2025-09-03 2:07 ` Alexey Kardashevskiy
2025-09-05 20:13 ` dan.j.williams
2025-09-08 11:19 ` Alexey Kardashevskiy
2025-09-05 20:03 ` dan.j.williams
2025-09-03 2:17 ` Alexey Kardashevskiy
2025-09-05 20:35 ` dan.j.williams
2025-08-27 3:51 ` [PATCH v5 05/10] samples/devsec: Introduce a PCI device-security bus + endpoint sample Dan Williams
2025-08-27 3:51 ` [PATCH v5 06/10] PCI: Add PCIe Device 3 Extended Capability enumeration Dan Williams
2025-08-27 3:51 ` [PATCH v5 07/10] PCI/IDE: Add IDE establishment helpers Dan Williams
2025-09-02 1:29 ` Alexey Kardashevskiy
2025-09-02 1:54 ` Alexey Kardashevskiy
2025-09-05 1:40 ` dan.j.williams
2025-09-05 2:14 ` Alexey Kardashevskiy
2025-09-06 2:00 ` dan.j.williams
2025-09-08 6:25 ` Alexey Kardashevskiy
2025-09-09 0:42 ` dan.j.williams
2025-09-15 11:46 ` Alexey Kardashevskiy
2025-10-17 4:06 ` Alexey Kardashevskiy
2025-10-17 4:40 ` dan.j.williams
2025-10-17 11:15 ` Alexey Kardashevskiy
2025-09-05 1:27 ` dan.j.williams
2025-09-05 2:23 ` Alexey Kardashevskiy
2025-10-17 11:31 ` Alexey Kardashevskiy
2025-10-17 19:18 ` dan.j.williams
2025-10-28 23:00 ` dan.j.williams
2025-10-29 8:04 ` Alexey Kardashevskiy
2025-08-27 3:51 ` [PATCH v5 08/10] PCI/IDE: Report available IDE streams Dan Williams
2025-08-27 3:51 ` [PATCH v5 09/10] PCI/TSM: Report active " Dan Williams
2025-08-27 3:51 ` [PATCH v5 10/10] samples/devsec: Add sample IDE establishment Dan Williams
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=68c19d33eabba_5addd1005b@dwillia2-mobl4.notmuch \
--to=dan.j.williams@intel.com \
--cc=aik@amd.com \
--cc=aneesh.kumar@kernel.org \
--cc=bhelgaas@google.com \
--cc=gregkh@linuxfoundation.org \
--cc=linux-coco@lists.linux.dev \
--cc=linux-pci@vger.kernel.org \
--cc=lukas@wunner.de \
--cc=sameo@rivosinc.com \
--cc=yilun.xu@linux.intel.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).