* optee-based efi runtime variable service on TI j784s4 platforms
@ 2024-11-08 12:26 Enric Balletbo i Serra
2024-11-08 15:48 ` Ilias Apalodimas
0 siblings, 1 reply; 18+ messages in thread
From: Enric Balletbo i Serra @ 2024-11-08 12:26 UTC (permalink / raw)
To: Ard Biesheuvel, Sumit Garg, Ilias Apalodimas, Masahisa Kojima,
linux-efi, linux-arm-kernel, linux-kernel, op-tee,
Manorit Chawdhry, Udit Kumar, Menon, Nishanth
Hi all,
I'm looking for any advice/clue to help me to progress on enabling
TEE-base EFI Runtime Variable Service on TI a j784s4 platforms.
I basically followed the steps described in u-boot documentation [1],
I enabled some debugging messages but I think I'm at the point that
the problem might be in the StandaloneMM application, and I'm not sure
how to debug it.
What I see is that when I run the tee-supplicant daemon, it looks like
the tee_client_open_session() call loops forever and the tee_stmm_efi
driver never ends to probe.
With debug enabled I got the following messages.
# tee-supplicant
D/TC:? 0 tee_ta_init_session_with_context:557 Re-open trusted service
7011a688-ddde-4053-a5a9-7b3c4ddf13b8
D/TC:? 0 load_stmm:297 stmm load address 0x40004000
D/TC:? 0 spm_handle_scall:859 Received FFA version
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
And tracing the function calls gives me that:
tee_stmm_efi_probe() {
tee_client_open_context() {
optee_get_version() {
tee_get_drvdata(); (ret=0xffff000002e55800)
} (ret=0xd)
tee_ctx_match(); (ret=0x1)
optee_smc_open() {
tee_get_drvdata(); (ret=0xffff000002e55800)
optee_open() {
tee_get_drvdata(); (ret=0xffff000002e55800)
} (ret=0x0)
} (ret=0x0)
} (ret=0xffff000004e71c80)
tee_client_open_session() {
optee_open_session() {
tee_get_drvdata(); (ret=0xffff000002e55800)
optee_get_msg_arg() {
tee_get_drvdata(); (ret=0xffff000002e55800)
tee_shm_get_va(); (ret=0xffff000002909000)
} (ret=0xffff000002909000)
tee_session_calc_client_uuid(); (ret=0x0)
optee_to_msg_param(); (ret=0x0)
optee_smc_do_call_with_arg() {
tee_get_drvdata(); (ret=0xffff000002e55800)
tee_shm_get_va(); (ret=0xffff000002909000)
tee_shm_get_va(); (ret=0xffff000002909060)
optee_cq_wait_init(); (ret=0xffff000002e55910)
optee_smccc_smc(); (ret=0xffff0004)
tee_get_drvdata(); (ret=0xffff000002e55800)
optee_smccc_smc(); (ret=0xffff0004)
tee_get_drvdata(); (ret=0xffff000002e55800)
optee_smccc_smc(); (ret=0xffff0004)
tee_get_drvdata(); (ret=0xffff000002e55800)
optee_smccc_smc(); (ret=0xffff0004)
tee_get_drvdata(); (ret=0xffff000002e55800)
optee_smccc_smc(); (ret=0xffff0004)
... continues sending this forever ...
... Hit ^C to stop recording ...
tee_get_drvdata(); (ret=0xffff000002e55800)
optee_smccc_smc() {
[1] https://docs.u-boot.org/en/latest/develop/uefi/uefi.html#using-op-tee-for-efi-variables
Thanks in advance,
Enric
^ permalink raw reply [flat|nested] 18+ messages in thread
* Re: optee-based efi runtime variable service on TI j784s4 platforms
2024-11-08 12:26 optee-based efi runtime variable service on TI j784s4 platforms Enric Balletbo i Serra
@ 2024-11-08 15:48 ` Ilias Apalodimas
2024-11-08 21:10 ` Enric Balletbo i Serra
0 siblings, 1 reply; 18+ messages in thread
From: Ilias Apalodimas @ 2024-11-08 15:48 UTC (permalink / raw)
To: Enric Balletbo i Serra
Cc: Ard Biesheuvel, Sumit Garg, Masahisa Kojima, linux-efi,
linux-arm-kernel, linux-kernel, op-tee, Manorit Chawdhry,
Udit Kumar, Menon, Nishanth
Hi Enric,
On Fri, 8 Nov 2024 at 12:26, Enric Balletbo i Serra <eballetb@redhat.com> wrote:
>
> Hi all,
>
> I'm looking for any advice/clue to help me to progress on enabling
> TEE-base EFI Runtime Variable Service on TI a j784s4 platforms.
>
> I basically followed the steps described in u-boot documentation [1],
> I enabled some debugging messages but I think I'm at the point that
> the problem might be in the StandaloneMM application, and I'm not sure
> how to debug it.
>
> What I see is that when I run the tee-supplicant daemon, it looks like
> the tee_client_open_session() call loops forever and the tee_stmm_efi
> driver never ends to probe.
>
> With debug enabled I got the following messages.
I assume reading and storing variables already works in U-Boot right?
>
> # tee-supplicant
> D/TC:? 0 tee_ta_init_session_with_context:557 Re-open trusted service
> 7011a688-ddde-4053-a5a9-7b3c4ddf13b8
> D/TC:? 0 load_stmm:297 stmm load address 0x40004000
> D/TC:? 0 spm_handle_scall:859 Received FFA version
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
>
> And tracing the function calls gives me that:
>
> tee_stmm_efi_probe() {
> tee_client_open_context() {
> optee_get_version() {
> tee_get_drvdata(); (ret=0xffff000002e55800)
> } (ret=0xd)
> tee_ctx_match(); (ret=0x1)
> optee_smc_open() {
> tee_get_drvdata(); (ret=0xffff000002e55800)
> optee_open() {
> tee_get_drvdata(); (ret=0xffff000002e55800)
> } (ret=0x0)
> } (ret=0x0)
> } (ret=0xffff000004e71c80)
> tee_client_open_session() {
> optee_open_session() {
> tee_get_drvdata(); (ret=0xffff000002e55800)
> optee_get_msg_arg() {
> tee_get_drvdata(); (ret=0xffff000002e55800)
> tee_shm_get_va(); (ret=0xffff000002909000)
> } (ret=0xffff000002909000)
> tee_session_calc_client_uuid(); (ret=0x0)
> optee_to_msg_param(); (ret=0x0)
> optee_smc_do_call_with_arg() {
> tee_get_drvdata(); (ret=0xffff000002e55800)
> tee_shm_get_va(); (ret=0xffff000002909000)
> tee_shm_get_va(); (ret=0xffff000002909060)
> optee_cq_wait_init(); (ret=0xffff000002e55910)
> optee_smccc_smc(); (ret=0xffff0004)
> tee_get_drvdata(); (ret=0xffff000002e55800)
> optee_smccc_smc(); (ret=0xffff0004)
> tee_get_drvdata(); (ret=0xffff000002e55800)
> optee_smccc_smc(); (ret=0xffff0004)
> tee_get_drvdata(); (ret=0xffff000002e55800)
> optee_smccc_smc(); (ret=0xffff0004)
> tee_get_drvdata(); (ret=0xffff000002e55800)
> optee_smccc_smc(); (ret=0xffff0004)
> ... continues sending this forever ...
> ... Hit ^C to stop recording ...
> tee_get_drvdata(); (ret=0xffff000002e55800)
> optee_smccc_smc() {
>
> [1] https://docs.u-boot.org/en/latest/develop/uefi/uefi.html#using-op-tee-for-efi-variables
>
> Thanks in advance,
The most common problem with this is miscompiling the tee_supplicant
application.
Since we don't know if the system has an RPMB, we emulate it in the
tee_supplicant. How did you get the supplicant and can you check if it
was compiled with RPMB_EMU=0 or 1?
Thanks
/Ilias
> Enric
>
^ permalink raw reply [flat|nested] 18+ messages in thread
* Re: optee-based efi runtime variable service on TI j784s4 platforms
2024-11-08 15:48 ` Ilias Apalodimas
@ 2024-11-08 21:10 ` Enric Balletbo i Serra
2024-11-09 0:31 ` Ilias Apalodimas
0 siblings, 1 reply; 18+ messages in thread
From: Enric Balletbo i Serra @ 2024-11-08 21:10 UTC (permalink / raw)
To: Ilias Apalodimas
Cc: Ard Biesheuvel, Sumit Garg, Masahisa Kojima, linux-efi,
linux-arm-kernel, linux-kernel, op-tee, Manorit Chawdhry,
Udit Kumar, Menon, Nishanth
Hi Ilias,
Thanks for your quick answer.
On Fri, Nov 8, 2024 at 4:48 PM Ilias Apalodimas
<ilias.apalodimas@linaro.org> wrote:
>
> Hi Enric,
>
> On Fri, 8 Nov 2024 at 12:26, Enric Balletbo i Serra <eballetb@redhat.com> wrote:
> >
> > Hi all,
> >
> > I'm looking for any advice/clue to help me to progress on enabling
> > TEE-base EFI Runtime Variable Service on TI a j784s4 platforms.
> >
> > I basically followed the steps described in u-boot documentation [1],
> > I enabled some debugging messages but I think I'm at the point that
> > the problem might be in the StandaloneMM application, and I'm not sure
> > how to debug it.
> >
> > What I see is that when I run the tee-supplicant daemon, it looks like
> > the tee_client_open_session() call loops forever and the tee_stmm_efi
> > driver never ends to probe.
> >
> > With debug enabled I got the following messages.
>
> I assume reading and storing variables already works in U-Boot right?
>
Reading and storing variables to the RPMB partition in U-Boot works,
that's using the mmc rpmb command from u-boot, But setting
CONFIG_EFI_MM_COMM_TEE=y in u-boot I end with a similar behaviour
(although I'm not able to debug at u-boot level) What I see is that
u-boot gets stuck
when bootefi bootmgr is invoqued. I can also reproduce the issue with
bootefi hello.
=> run bootcmd
Scanning for bootflows in all bootdevs
Seq Method State Uclass Part Name Filename
--- ----------- ------ -------- ---- ------------------------
----------------
Scanning global bootmeth 'efi_mgr':
( gets stuck here)
or
=> bootefi hello
(gets stuck)
To debug I disabled CONFIG_EFI_MM_COMM_TEE to not get stuck and bypass
the error and go to Linux. My understanding is that
CONFIG_EFI_MM_COMM_TEE is only required to read/write efi variables at
u-boot level but OPTEE is running the StandaloneMM service. Am I
right?
> >
> > # tee-supplicant
> > D/TC:? 0 tee_ta_init_session_with_context:557 Re-open trusted service
> > 7011a688-ddde-4053-a5a9-7b3c4ddf13b8
> > D/TC:? 0 load_stmm:297 stmm load address 0x40004000
> > D/TC:? 0 spm_handle_scall:859 Received FFA version
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> >
> > And tracing the function calls gives me that:
> >
> > tee_stmm_efi_probe() {
> > tee_client_open_context() {
> > optee_get_version() {
> > tee_get_drvdata(); (ret=0xffff000002e55800)
> > } (ret=0xd)
> > tee_ctx_match(); (ret=0x1)
> > optee_smc_open() {
> > tee_get_drvdata(); (ret=0xffff000002e55800)
> > optee_open() {
> > tee_get_drvdata(); (ret=0xffff000002e55800)
> > } (ret=0x0)
> > } (ret=0x0)
> > } (ret=0xffff000004e71c80)
> > tee_client_open_session() {
> > optee_open_session() {
> > tee_get_drvdata(); (ret=0xffff000002e55800)
> > optee_get_msg_arg() {
> > tee_get_drvdata(); (ret=0xffff000002e55800)
> > tee_shm_get_va(); (ret=0xffff000002909000)
> > } (ret=0xffff000002909000)
> > tee_session_calc_client_uuid(); (ret=0x0)
> > optee_to_msg_param(); (ret=0x0)
> > optee_smc_do_call_with_arg() {
> > tee_get_drvdata(); (ret=0xffff000002e55800)
> > tee_shm_get_va(); (ret=0xffff000002909000)
> > tee_shm_get_va(); (ret=0xffff000002909060)
> > optee_cq_wait_init(); (ret=0xffff000002e55910)
> > optee_smccc_smc(); (ret=0xffff0004)
> > tee_get_drvdata(); (ret=0xffff000002e55800)
> > optee_smccc_smc(); (ret=0xffff0004)
> > tee_get_drvdata(); (ret=0xffff000002e55800)
> > optee_smccc_smc(); (ret=0xffff0004)
> > tee_get_drvdata(); (ret=0xffff000002e55800)
> > optee_smccc_smc(); (ret=0xffff0004)
> > tee_get_drvdata(); (ret=0xffff000002e55800)
> > optee_smccc_smc(); (ret=0xffff0004)
> > ... continues sending this forever ...
> > ... Hit ^C to stop recording ...
> > tee_get_drvdata(); (ret=0xffff000002e55800)
> > optee_smccc_smc() {
> >
> > [1] https://docs.u-boot.org/en/latest/develop/uefi/uefi.html#using-op-tee-for-efi-variables
> >
> > Thanks in advance,
>
> The most common problem with this is miscompiling the tee_supplicant
> application.
> Since we don't know if the system has an RPMB, we emulate it in the
> tee_supplicant. How did you get the supplicant and can you check if it
> was compiled with RPMB_EMU=0 or 1?
>
I'm using the tee-supplicant provided by the fedora package which is
built with ` -DRPMB_EMU=0`, I think that's correct, right?
Thanks,
Enric
> Thanks
> /Ilias
>
> > Enric
> >
>
^ permalink raw reply [flat|nested] 18+ messages in thread
* Re: optee-based efi runtime variable service on TI j784s4 platforms
2024-11-08 21:10 ` Enric Balletbo i Serra
@ 2024-11-09 0:31 ` Ilias Apalodimas
2024-11-11 8:20 ` Enric Balletbo i Serra
0 siblings, 1 reply; 18+ messages in thread
From: Ilias Apalodimas @ 2024-11-09 0:31 UTC (permalink / raw)
To: Enric Balletbo i Serra
Cc: Ard Biesheuvel, Sumit Garg, linux-efi, linux-arm-kernel,
linux-kernel, op-tee, Manorit Chawdhry, Udit Kumar,
Menon, Nishanth, Masahisa Kojima
On Fri, 8 Nov 2024 at 23:11, Enric Balletbo i Serra <eballetb@redhat.com> wrote:
>
> Hi Ilias,
>
> Thanks for your quick answer.
>
> On Fri, Nov 8, 2024 at 4:48 PM Ilias Apalodimas
> <ilias.apalodimas@linaro.org> wrote:
> >
> > Hi Enric,
> >
> > On Fri, 8 Nov 2024 at 12:26, Enric Balletbo i Serra <eballetb@redhat.com> wrote:
> > >
> > > Hi all,
> > >
> > > I'm looking for any advice/clue to help me to progress on enabling
> > > TEE-base EFI Runtime Variable Service on TI a j784s4 platforms.
> > >
> > > I basically followed the steps described in u-boot documentation [1],
> > > I enabled some debugging messages but I think I'm at the point that
> > > the problem might be in the StandaloneMM application, and I'm not sure
> > > how to debug it.
> > >
> > > What I see is that when I run the tee-supplicant daemon, it looks like
> > > the tee_client_open_session() call loops forever and the tee_stmm_efi
> > > driver never ends to probe.
> > >
> > > With debug enabled I got the following messages.
> >
> > I assume reading and storing variables already works in U-Boot right?
> >
>
> Reading and storing variables to the RPMB partition in U-Boot works,
> that's using the mmc rpmb command from u-boot,
Are you talking about env variables? Perhaps you store them in the mmc
and not the RPMB partition?
There's some information here [0]
> But setting
> CONFIG_EFI_MM_COMM_TEE=y in u-boot I end with a similar behaviour
> (although I'm not able to debug at u-boot level) What I see is that
> u-boot gets stuck
> when bootefi bootmgr is invoqued. I can also reproduce the issue with
> bootefi hello.
>
> => run bootcmd
> Scanning for bootflows in all bootdevs
> Seq Method State Uclass Part Name Filename
> --- ----------- ------ -------- ---- ------------------------
> ----------------
> Scanning global bootmeth 'efi_mgr':
> ( gets stuck here)
>
> or
>
> => bootefi hello
> (gets stuck)
>
> To debug I disabled CONFIG_EFI_MM_COMM_TEE to not get stuck and bypass
> the error and go to Linux. My understanding is that
> CONFIG_EFI_MM_COMM_TEE is only required to read/write efi variables at
> u-boot level but OPTEE is running the StandaloneMM service. Am I
> right?
U-Boot has two ways of storing EFI variables [0] . You can either
store them in a file or the RPMB partition. The correct thing to do,
since you want to use the RPMB, is enable CONFIG_EFI_MM_COMM_TEE. I am
not sure why the hand happens, but one thing we can improve is figure
out why it hangs and print a useful message.
There are a number of reasons that might lead to a failure. Is the
RPMB key programmed on your board? Have a look at this [1] in case it
helps
>
> > >
> > > # tee-supplicant
> > > D/TC:? 0 tee_ta_init_session_with_context:557 Re-open trusted service
> > > 7011a688-ddde-4053-a5a9-7b3c4ddf13b8
> > > D/TC:? 0 load_stmm:297 stmm load address 0x40004000
> > > D/TC:? 0 spm_handle_scall:859 Received FFA version
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
If I had to guess, OP-TEE doesn't store the variables in the RPMB, can
you compile it with a bit more debugging enabled?
> > >
> > > And tracing the function calls gives me that:
> > >
> > > tee_stmm_efi_probe() {
> > > tee_client_open_context() {
> > > optee_get_version() {
> > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > } (ret=0xd)
> > > tee_ctx_match(); (ret=0x1)
> > > optee_smc_open() {
> > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > optee_open() {
> > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > } (ret=0x0)
> > > } (ret=0x0)
> > > } (ret=0xffff000004e71c80)
> > > tee_client_open_session() {
> > > optee_open_session() {
> > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > optee_get_msg_arg() {
> > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > tee_shm_get_va(); (ret=0xffff000002909000)
> > > } (ret=0xffff000002909000)
> > > tee_session_calc_client_uuid(); (ret=0x0)
> > > optee_to_msg_param(); (ret=0x0)
> > > optee_smc_do_call_with_arg() {
> > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > tee_shm_get_va(); (ret=0xffff000002909000)
> > > tee_shm_get_va(); (ret=0xffff000002909060)
> > > optee_cq_wait_init(); (ret=0xffff000002e55910)
> > > optee_smccc_smc(); (ret=0xffff0004)
> > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > optee_smccc_smc(); (ret=0xffff0004)
> > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > optee_smccc_smc(); (ret=0xffff0004)
> > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > optee_smccc_smc(); (ret=0xffff0004)
> > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > optee_smccc_smc(); (ret=0xffff0004)
> > > ... continues sending this forever ...
> > > ... Hit ^C to stop recording ...
> > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > optee_smccc_smc() {
> > >
> > > [1] https://docs.u-boot.org/en/latest/develop/uefi/uefi.html#using-op-tee-for-efi-variables
> > >
> > > Thanks in advance,
> >
> > The most common problem with this is miscompiling the tee_supplicant
> > application.
> > Since we don't know if the system has an RPMB, we emulate it in the
> > tee_supplicant. How did you get the supplicant and can you check if it
> > was compiled with RPMB_EMU=0 or 1?
> >
>
> I'm using the tee-supplicant provided by the fedora package which is
> built with ` -DRPMB_EMU=0`, I think that's correct, right?
>
Yes, this is correct. We fixed the Fedora package to compile the
supplicant correctly a while back.
[0] https://www.linaro.org/blog/uefi-secureboot-in-u-boot/
[1] https://apalos.github.io/Protected%20UEFI%20variables%20with%20U-Boot.html#Protected%20UEFI%20variables%20with%20U-Boot
Regards
/Ilias
> Thanks,
> Enric
>
> > Thanks
> > /Ilias
> >
> > > Enric
> > >
> >
>
^ permalink raw reply [flat|nested] 18+ messages in thread
* Re: optee-based efi runtime variable service on TI j784s4 platforms
2024-11-09 0:31 ` Ilias Apalodimas
@ 2024-11-11 8:20 ` Enric Balletbo i Serra
2024-11-11 11:01 ` Ilias Apalodimas
0 siblings, 1 reply; 18+ messages in thread
From: Enric Balletbo i Serra @ 2024-11-11 8:20 UTC (permalink / raw)
To: Ilias Apalodimas
Cc: Ard Biesheuvel, Sumit Garg, linux-efi, linux-arm-kernel,
linux-kernel, op-tee, Manorit Chawdhry, Udit Kumar,
Menon, Nishanth, Masahisa Kojima
Hi Ilias,
On Sat, Nov 9, 2024 at 1:31 AM Ilias Apalodimas
<ilias.apalodimas@linaro.org> wrote:
>
> On Fri, 8 Nov 2024 at 23:11, Enric Balletbo i Serra <eballetb@redhat.com> wrote:
> >
> > Hi Ilias,
> >
> > Thanks for your quick answer.
> >
> > On Fri, Nov 8, 2024 at 4:48 PM Ilias Apalodimas
> > <ilias.apalodimas@linaro.org> wrote:
> > >
> > > Hi Enric,
> > >
> > > On Fri, 8 Nov 2024 at 12:26, Enric Balletbo i Serra <eballetb@redhat.com> wrote:
> > > >
> > > > Hi all,
> > > >
> > > > I'm looking for any advice/clue to help me to progress on enabling
> > > > TEE-base EFI Runtime Variable Service on TI a j784s4 platforms.
> > > >
> > > > I basically followed the steps described in u-boot documentation [1],
> > > > I enabled some debugging messages but I think I'm at the point that
> > > > the problem might be in the StandaloneMM application, and I'm not sure
> > > > how to debug it.
> > > >
> > > > What I see is that when I run the tee-supplicant daemon, it looks like
> > > > the tee_client_open_session() call loops forever and the tee_stmm_efi
> > > > driver never ends to probe.
> > > >
> > > > With debug enabled I got the following messages.
> > >
> > > I assume reading and storing variables already works in U-Boot right?
> > >
> >
> > Reading and storing variables to the RPMB partition in U-Boot works,
> > that's using the mmc rpmb command from u-boot,
>
> Are you talking about env variables? Perhaps you store them in the mmc
> and not the RPMB partition?
> There's some information here [0]
>
> > But setting
> > CONFIG_EFI_MM_COMM_TEE=y in u-boot I end with a similar behaviour
> > (although I'm not able to debug at u-boot level) What I see is that
> > u-boot gets stuck
> > when bootefi bootmgr is invoqued. I can also reproduce the issue with
> > bootefi hello.
> >
> > => run bootcmd
> > Scanning for bootflows in all bootdevs
> > Seq Method State Uclass Part Name Filename
> > --- ----------- ------ -------- ---- ------------------------
> > ----------------
> > Scanning global bootmeth 'efi_mgr':
> > ( gets stuck here)
> >
> > or
> >
> > => bootefi hello
> > (gets stuck)
> >
> > To debug I disabled CONFIG_EFI_MM_COMM_TEE to not get stuck and bypass
> > the error and go to Linux. My understanding is that
> > CONFIG_EFI_MM_COMM_TEE is only required to read/write efi variables at
> > u-boot level but OPTEE is running the StandaloneMM service. Am I
> > right?
>
> U-Boot has two ways of storing EFI variables [0] . You can either
> store them in a file or the RPMB partition. The correct thing to do,
> since you want to use the RPMB, is enable CONFIG_EFI_MM_COMM_TEE. I am
> not sure why the hand happens, but one thing we can improve is figure
> out why it hangs and print a useful message.
> There are a number of reasons that might lead to a failure. Is the
> RPMB key programmed on your board? Have a look at this [1] in case it
> helps
>
> >
> > > >
> > > > # tee-supplicant
> > > > D/TC:? 0 tee_ta_init_session_with_context:557 Re-open trusted service
> > > > 7011a688-ddde-4053-a5a9-7b3c4ddf13b8
> > > > D/TC:? 0 load_stmm:297 stmm load address 0x40004000
> > > > D/TC:? 0 spm_handle_scall:859 Received FFA version
> > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
>
> If I had to guess, OP-TEE doesn't store the variables in the RPMB, can
> you compile it with a bit more debugging enabled?
>
Here is a log with CFG_TEE_CORE_LOG_LEVEL=4, CFG_TEE_CORE_DEBUG=y and
CFG_TEE_TA_LOG_LEVEL=4
https://paste.centos.org/view/eed83a5b
At the beginning of the log I see
D/TC:0 0 check_ta_store:449 TA store: "REE"
Which looks wrong to me as I built optee with:
CFG_REE_FS=n
CFG_RPMB_FS_DEV_ID=0
CFG_RPMB_FS=y
I'll try to add some more prints to verify if REE is used as a store
system, I assume this should say something about RPMB. Am I right with
this?
> > > >
> > > > And tracing the function calls gives me that:
> > > >
> > > > tee_stmm_efi_probe() {
> > > > tee_client_open_context() {
> > > > optee_get_version() {
> > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > } (ret=0xd)
> > > > tee_ctx_match(); (ret=0x1)
> > > > optee_smc_open() {
> > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > optee_open() {
> > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > } (ret=0x0)
> > > > } (ret=0x0)
> > > > } (ret=0xffff000004e71c80)
> > > > tee_client_open_session() {
> > > > optee_open_session() {
> > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > optee_get_msg_arg() {
> > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > tee_shm_get_va(); (ret=0xffff000002909000)
> > > > } (ret=0xffff000002909000)
> > > > tee_session_calc_client_uuid(); (ret=0x0)
> > > > optee_to_msg_param(); (ret=0x0)
> > > > optee_smc_do_call_with_arg() {
> > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > tee_shm_get_va(); (ret=0xffff000002909000)
> > > > tee_shm_get_va(); (ret=0xffff000002909060)
> > > > optee_cq_wait_init(); (ret=0xffff000002e55910)
> > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > ... continues sending this forever ...
> > > > ... Hit ^C to stop recording ...
> > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > optee_smccc_smc() {
> > > >
> > > > [1] https://docs.u-boot.org/en/latest/develop/uefi/uefi.html#using-op-tee-for-efi-variables
> > > >
> > > > Thanks in advance,
> > >
> > > The most common problem with this is miscompiling the tee_supplicant
> > > application.
> > > Since we don't know if the system has an RPMB, we emulate it in the
> > > tee_supplicant. How did you get the supplicant and can you check if it
> > > was compiled with RPMB_EMU=0 or 1?
> > >
> >
> > I'm using the tee-supplicant provided by the fedora package which is
> > built with ` -DRPMB_EMU=0`, I think that's correct, right?
> >
>
> Yes, this is correct. We fixed the Fedora package to compile the
> supplicant correctly a while back.
>
> [0] https://www.linaro.org/blog/uefi-secureboot-in-u-boot/
> [1] https://apalos.github.io/Protected%20UEFI%20variables%20with%20U-Boot.html#Protected%20UEFI%20variables%20with%20U-Boot
>
>
> Regards
> /Ilias
> > Thanks,
> > Enric
> >
> > > Thanks
> > > /Ilias
> > >
> > > > Enric
> > > >
> > >
> >
>
^ permalink raw reply [flat|nested] 18+ messages in thread
* Re: optee-based efi runtime variable service on TI j784s4 platforms
2024-11-11 8:20 ` Enric Balletbo i Serra
@ 2024-11-11 11:01 ` Ilias Apalodimas
2024-11-11 14:13 ` Enric Balletbo i Serra
0 siblings, 1 reply; 18+ messages in thread
From: Ilias Apalodimas @ 2024-11-11 11:01 UTC (permalink / raw)
To: Enric Balletbo i Serra
Cc: Ard Biesheuvel, Sumit Garg, linux-efi, linux-arm-kernel,
linux-kernel, op-tee, Manorit Chawdhry, Udit Kumar,
Menon, Nishanth, Masahisa Kojima
On Mon, 11 Nov 2024 at 10:21, Enric Balletbo i Serra
<eballetb@redhat.com> wrote:
>
> Hi Ilias,
>
> On Sat, Nov 9, 2024 at 1:31 AM Ilias Apalodimas
> <ilias.apalodimas@linaro.org> wrote:
> >
> > On Fri, 8 Nov 2024 at 23:11, Enric Balletbo i Serra <eballetb@redhat.com> wrote:
> > >
> > > Hi Ilias,
> > >
> > > Thanks for your quick answer.
> > >
> > > On Fri, Nov 8, 2024 at 4:48 PM Ilias Apalodimas
> > > <ilias.apalodimas@linaro.org> wrote:
> > > >
> > > > Hi Enric,
> > > >
> > > > On Fri, 8 Nov 2024 at 12:26, Enric Balletbo i Serra <eballetb@redhat.com> wrote:
> > > > >
> > > > > Hi all,
> > > > >
> > > > > I'm looking for any advice/clue to help me to progress on enabling
> > > > > TEE-base EFI Runtime Variable Service on TI a j784s4 platforms.
> > > > >
> > > > > I basically followed the steps described in u-boot documentation [1],
> > > > > I enabled some debugging messages but I think I'm at the point that
> > > > > the problem might be in the StandaloneMM application, and I'm not sure
> > > > > how to debug it.
> > > > >
> > > > > What I see is that when I run the tee-supplicant daemon, it looks like
> > > > > the tee_client_open_session() call loops forever and the tee_stmm_efi
> > > > > driver never ends to probe.
> > > > >
> > > > > With debug enabled I got the following messages.
> > > >
> > > > I assume reading and storing variables already works in U-Boot right?
> > > >
> > >
> > > Reading and storing variables to the RPMB partition in U-Boot works,
> > > that's using the mmc rpmb command from u-boot,
> >
> > Are you talking about env variables? Perhaps you store them in the mmc
> > and not the RPMB partition?
> > There's some information here [0]
> >
> > > But setting
> > > CONFIG_EFI_MM_COMM_TEE=y in u-boot I end with a similar behaviour
> > > (although I'm not able to debug at u-boot level) What I see is that
> > > u-boot gets stuck
> > > when bootefi bootmgr is invoqued. I can also reproduce the issue with
> > > bootefi hello.
> > >
> > > => run bootcmd
> > > Scanning for bootflows in all bootdevs
> > > Seq Method State Uclass Part Name Filename
> > > --- ----------- ------ -------- ---- ------------------------
> > > ----------------
> > > Scanning global bootmeth 'efi_mgr':
> > > ( gets stuck here)
> > >
> > > or
> > >
> > > => bootefi hello
> > > (gets stuck)
> > >
> > > To debug I disabled CONFIG_EFI_MM_COMM_TEE to not get stuck and bypass
> > > the error and go to Linux. My understanding is that
> > > CONFIG_EFI_MM_COMM_TEE is only required to read/write efi variables at
> > > u-boot level but OPTEE is running the StandaloneMM service. Am I
> > > right?
> >
> > U-Boot has two ways of storing EFI variables [0] . You can either
> > store them in a file or the RPMB partition. The correct thing to do,
> > since you want to use the RPMB, is enable CONFIG_EFI_MM_COMM_TEE. I am
> > not sure why the hand happens, but one thing we can improve is figure
> > out why it hangs and print a useful message.
> > There are a number of reasons that might lead to a failure. Is the
> > RPMB key programmed on your board? Have a look at this [1] in case it
> > helps
> >
> > >
> > > > >
> > > > > # tee-supplicant
> > > > > D/TC:? 0 tee_ta_init_session_with_context:557 Re-open trusted service
> > > > > 7011a688-ddde-4053-a5a9-7b3c4ddf13b8
> > > > > D/TC:? 0 load_stmm:297 stmm load address 0x40004000
> > > > > D/TC:? 0 spm_handle_scall:859 Received FFA version
> > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> >
> > If I had to guess, OP-TEE doesn't store the variables in the RPMB, can
> > you compile it with a bit more debugging enabled?
> >
>
> Here is a log with CFG_TEE_CORE_LOG_LEVEL=4, CFG_TEE_CORE_DEBUG=y and
> CFG_TEE_TA_LOG_LEVEL=4
>
> https://paste.centos.org/view/eed83a5b
>
> At the beginning of the log I see
>
> D/TC:0 0 check_ta_store:449 TA store: "REE"
>
> Which looks wrong to me as I built optee with:
> CFG_REE_FS=n
> CFG_RPMB_FS_DEV_ID=0
> CFG_RPMB_FS=y
Yes it does look wrong. Our compilation flags are
CFG_RPMB_FS=y CFG_RPMB_FS_DEV_ID=0 CFG_RPMB_WRITE_KEY=y
CFG_RPMB_TESTKEY=y CFG_REE_FS=n CFG_CORE_ARM64_PA_BITS=48
CFG_SCTLR_ALIGNMENT_CHECK=n
The testkey etc aren't required if your board has a way of reading the
RPMB key from a secure location -- in fact, using the testkey is not
secure. Is the RPMB programmed on your board? Also can you make sure
CFG_RPMB_FS_DEV_ID needs to be 0? How many sd interfaces your board
has?
IOW in U-Boot does 'mmc dev 0 && mmc info' print information for the
RPMB partition?
Thanks
/Ilias
>
> I'll try to add some more prints to verify if REE is used as a store
> system, I assume this should say something about RPMB. Am I right with
> this?
>
> > > > >
> > > > > And tracing the function calls gives me that:
> > > > >
> > > > > tee_stmm_efi_probe() {
> > > > > tee_client_open_context() {
> > > > > optee_get_version() {
> > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > } (ret=0xd)
> > > > > tee_ctx_match(); (ret=0x1)
> > > > > optee_smc_open() {
> > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > optee_open() {
> > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > } (ret=0x0)
> > > > > } (ret=0x0)
> > > > > } (ret=0xffff000004e71c80)
> > > > > tee_client_open_session() {
> > > > > optee_open_session() {
> > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > optee_get_msg_arg() {
> > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > tee_shm_get_va(); (ret=0xffff000002909000)
> > > > > } (ret=0xffff000002909000)
> > > > > tee_session_calc_client_uuid(); (ret=0x0)
> > > > > optee_to_msg_param(); (ret=0x0)
> > > > > optee_smc_do_call_with_arg() {
> > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > tee_shm_get_va(); (ret=0xffff000002909000)
> > > > > tee_shm_get_va(); (ret=0xffff000002909060)
> > > > > optee_cq_wait_init(); (ret=0xffff000002e55910)
> > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > ... continues sending this forever ...
> > > > > ... Hit ^C to stop recording ...
> > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > optee_smccc_smc() {
> > > > >
> > > > > [1] https://docs.u-boot.org/en/latest/develop/uefi/uefi.html#using-op-tee-for-efi-variables
> > > > >
> > > > > Thanks in advance,
> > > >
> > > > The most common problem with this is miscompiling the tee_supplicant
> > > > application.
> > > > Since we don't know if the system has an RPMB, we emulate it in the
> > > > tee_supplicant. How did you get the supplicant and can you check if it
> > > > was compiled with RPMB_EMU=0 or 1?
> > > >
> > >
> > > I'm using the tee-supplicant provided by the fedora package which is
> > > built with ` -DRPMB_EMU=0`, I think that's correct, right?
> > >
> >
> > Yes, this is correct. We fixed the Fedora package to compile the
> > supplicant correctly a while back.
> >
> > [0] https://www.linaro.org/blog/uefi-secureboot-in-u-boot/
> > [1] https://apalos.github.io/Protected%20UEFI%20variables%20with%20U-Boot.html#Protected%20UEFI%20variables%20with%20U-Boot
> >
> >
> > Regards
> > /Ilias
> > > Thanks,
> > > Enric
> > >
> > > > Thanks
> > > > /Ilias
> > > >
> > > > > Enric
> > > > >
> > > >
> > >
> >
>
^ permalink raw reply [flat|nested] 18+ messages in thread
* Re: optee-based efi runtime variable service on TI j784s4 platforms
2024-11-11 11:01 ` Ilias Apalodimas
@ 2024-11-11 14:13 ` Enric Balletbo i Serra
2024-11-11 14:25 ` Ilias Apalodimas
0 siblings, 1 reply; 18+ messages in thread
From: Enric Balletbo i Serra @ 2024-11-11 14:13 UTC (permalink / raw)
To: Ilias Apalodimas
Cc: Ard Biesheuvel, Sumit Garg, linux-efi, linux-arm-kernel,
linux-kernel, op-tee, Manorit Chawdhry, Udit Kumar,
Menon, Nishanth, Masahisa Kojima
Hi,
Thanks a lot for your support.
On Mon, Nov 11, 2024 at 12:01 PM Ilias Apalodimas
<ilias.apalodimas@linaro.org> wrote:
>
> On Mon, 11 Nov 2024 at 10:21, Enric Balletbo i Serra
> <eballetb@redhat.com> wrote:
> >
> > Hi Ilias,
> >
> > On Sat, Nov 9, 2024 at 1:31 AM Ilias Apalodimas
> > <ilias.apalodimas@linaro.org> wrote:
> > >
> > > On Fri, 8 Nov 2024 at 23:11, Enric Balletbo i Serra <eballetb@redhat.com> wrote:
> > > >
> > > > Hi Ilias,
> > > >
> > > > Thanks for your quick answer.
> > > >
> > > > On Fri, Nov 8, 2024 at 4:48 PM Ilias Apalodimas
> > > > <ilias.apalodimas@linaro.org> wrote:
> > > > >
> > > > > Hi Enric,
> > > > >
> > > > > On Fri, 8 Nov 2024 at 12:26, Enric Balletbo i Serra <eballetb@redhat.com> wrote:
> > > > > >
> > > > > > Hi all,
> > > > > >
> > > > > > I'm looking for any advice/clue to help me to progress on enabling
> > > > > > TEE-base EFI Runtime Variable Service on TI a j784s4 platforms.
> > > > > >
> > > > > > I basically followed the steps described in u-boot documentation [1],
> > > > > > I enabled some debugging messages but I think I'm at the point that
> > > > > > the problem might be in the StandaloneMM application, and I'm not sure
> > > > > > how to debug it.
> > > > > >
> > > > > > What I see is that when I run the tee-supplicant daemon, it looks like
> > > > > > the tee_client_open_session() call loops forever and the tee_stmm_efi
> > > > > > driver never ends to probe.
> > > > > >
> > > > > > With debug enabled I got the following messages.
> > > > >
> > > > > I assume reading and storing variables already works in U-Boot right?
> > > > >
> > > >
> > > > Reading and storing variables to the RPMB partition in U-Boot works,
> > > > that's using the mmc rpmb command from u-boot,
> > >
> > > Are you talking about env variables? Perhaps you store them in the mmc
> > > and not the RPMB partition?
> > > There's some information here [0]
> > >
> > > > But setting
> > > > CONFIG_EFI_MM_COMM_TEE=y in u-boot I end with a similar behaviour
> > > > (although I'm not able to debug at u-boot level) What I see is that
> > > > u-boot gets stuck
> > > > when bootefi bootmgr is invoqued. I can also reproduce the issue with
> > > > bootefi hello.
> > > >
> > > > => run bootcmd
> > > > Scanning for bootflows in all bootdevs
> > > > Seq Method State Uclass Part Name Filename
> > > > --- ----------- ------ -------- ---- ------------------------
> > > > ----------------
> > > > Scanning global bootmeth 'efi_mgr':
> > > > ( gets stuck here)
> > > >
> > > > or
> > > >
> > > > => bootefi hello
> > > > (gets stuck)
> > > >
> > > > To debug I disabled CONFIG_EFI_MM_COMM_TEE to not get stuck and bypass
> > > > the error and go to Linux. My understanding is that
> > > > CONFIG_EFI_MM_COMM_TEE is only required to read/write efi variables at
> > > > u-boot level but OPTEE is running the StandaloneMM service. Am I
> > > > right?
> > >
> > > U-Boot has two ways of storing EFI variables [0] . You can either
> > > store them in a file or the RPMB partition. The correct thing to do,
> > > since you want to use the RPMB, is enable CONFIG_EFI_MM_COMM_TEE. I am
> > > not sure why the hand happens, but one thing we can improve is figure
> > > out why it hangs and print a useful message.
> > > There are a number of reasons that might lead to a failure. Is the
> > > RPMB key programmed on your board? Have a look at this [1] in case it
> > > helps
> > >
> > > >
> > > > > >
> > > > > > # tee-supplicant
> > > > > > D/TC:? 0 tee_ta_init_session_with_context:557 Re-open trusted service
> > > > > > 7011a688-ddde-4053-a5a9-7b3c4ddf13b8
> > > > > > D/TC:? 0 load_stmm:297 stmm load address 0x40004000
> > > > > > D/TC:? 0 spm_handle_scall:859 Received FFA version
> > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > >
> > > If I had to guess, OP-TEE doesn't store the variables in the RPMB, can
> > > you compile it with a bit more debugging enabled?
> > >
> >
> > Here is a log with CFG_TEE_CORE_LOG_LEVEL=4, CFG_TEE_CORE_DEBUG=y and
> > CFG_TEE_TA_LOG_LEVEL=4
> >
> > https://paste.centos.org/view/eed83a5b
> >
> > At the beginning of the log I see
> >
> > D/TC:0 0 check_ta_store:449 TA store: "REE"
> >
> > Which looks wrong to me as I built optee with:
> > CFG_REE_FS=n
> > CFG_RPMB_FS_DEV_ID=0
> > CFG_RPMB_FS=y
>
> Yes it does look wrong. Our compilation flags are
> CFG_RPMB_FS=y CFG_RPMB_FS_DEV_ID=0 CFG_RPMB_WRITE_KEY=y
> CFG_RPMB_TESTKEY=y CFG_REE_FS=n CFG_CORE_ARM64_PA_BITS=48
> CFG_SCTLR_ALIGNMENT_CHECK=n
>
Mine are very similar
make CROSS_COMPILE="$CC32" CROSS_COMPILE64="$CC64" \
PLATFORM=k3-j784s4 CFG_ARM64_core=y CFG_CONSOLE_UART=0x8 \
CFG_RPMB_FS_DEV_ID=0 CFG_REE_FS=n CFG_RPMB_FS=y \
CFG_RPMB_WRITE_KEY=y CFG_RPMB_TESTKEY=y \
CFG_STMM_PATH=BL32_AP_MM.fd \
CFG_CORE_HEAP_SIZE=524288 CFG_CORE_DYN_SHM=y CFG_SCTLR_ALIGNMENT_CHECK=n \
CFG_TEE_CORE_LOG_LEVEL=4 CFG_TEE_CORE_DEBUG=y CFG_TEE_TA_LOG_LEVEL=4
There is a difference with CFG_CORE_ARM64_PA_BITS=48 , my platform defines it to
core/arch/arm/plat-k3/conf.mk:$(call force,CFG_CORE_ARM64_PA_BITS,36)
But I don't think this is the problem.
> The testkey etc aren't required if your board has a way of reading the
> RPMB key from a secure location -- in fact, using the testkey is not
> secure. Is the RPMB programmed on your board? Also can you make sure
> CFG_RPMB_FS_DEV_ID needs to be 0? How many sd interfaces your board
> has?
My board has two interfaces, an eMMC and a SD-card, 0 is indeed the
eMMC and I'm using the testkey which I assume was programmed the first
time I booted with all this. Unfortunately I lost the traces. But,
optee_rpmb works. I.e:
=> optee_rpmb write test 1234
=> optee_rpmb read test 4
Read 4 bytes, value = 1234
> IOW in U-Boot does 'mmc dev 0 && mmc info' print information for the
> RPMB partition?
>
=> mmc dev 0
switch to partitions #0, OK
mmc0(part 0) is current device
=> mmc info
Device: mmc@4f80000
Manufacturer ID: 13
OEM: 4e
Name: G1M15L
Bus Speed: 200000000
Mode: HS400 (200MHz)
Rd Block Len: 512
MMC version 5.1
High Capacity: Yes
Capacity: 29.6 GiB
Bus Width: 8-bit DDR
Erase Group Size: 512 KiB
HC WP Group Size: 8 MiB
User Capacity: 29.6 GiB WRREL
Boot Capacity: 31.5 MiB ENH
RPMB Capacity: 4 MiB ENH
Boot area 0 is not write protected
Boot area 1 is not write protected
=> mmc list
mmc@4f80000: 0 (eMMC)
mmc@4fb0000: 1
Any interaction with efi gives me the same result (printenv -e,
efidebug, bootefi ...)
=> efidebug query -bs -rt -nv
D/TC:? 0 load_stmm:297 stmm load address 0x40004000
D/TC:? 0 spm_handle_scall:859 Received FFA version
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
... stuck here ... I need to reset the board
Will continue to see if I can get more useful messages
Thanks,
Enric
> Thanks
> /Ilias
> >
> > I'll try to add some more prints to verify if REE is used as a store
> > system, I assume this should say something about RPMB. Am I right with
> > this?
>
>
> >
> > > > > >
> > > > > > And tracing the function calls gives me that:
> > > > > >
> > > > > > tee_stmm_efi_probe() {
> > > > > > tee_client_open_context() {
> > > > > > optee_get_version() {
> > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > } (ret=0xd)
> > > > > > tee_ctx_match(); (ret=0x1)
> > > > > > optee_smc_open() {
> > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > optee_open() {
> > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > } (ret=0x0)
> > > > > > } (ret=0x0)
> > > > > > } (ret=0xffff000004e71c80)
> > > > > > tee_client_open_session() {
> > > > > > optee_open_session() {
> > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > optee_get_msg_arg() {
> > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > tee_shm_get_va(); (ret=0xffff000002909000)
> > > > > > } (ret=0xffff000002909000)
> > > > > > tee_session_calc_client_uuid(); (ret=0x0)
> > > > > > optee_to_msg_param(); (ret=0x0)
> > > > > > optee_smc_do_call_with_arg() {
> > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > tee_shm_get_va(); (ret=0xffff000002909000)
> > > > > > tee_shm_get_va(); (ret=0xffff000002909060)
> > > > > > optee_cq_wait_init(); (ret=0xffff000002e55910)
> > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > ... continues sending this forever ...
> > > > > > ... Hit ^C to stop recording ...
> > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > optee_smccc_smc() {
> > > > > >
> > > > > > [1] https://docs.u-boot.org/en/latest/develop/uefi/uefi.html#using-op-tee-for-efi-variables
> > > > > >
> > > > > > Thanks in advance,
> > > > >
> > > > > The most common problem with this is miscompiling the tee_supplicant
> > > > > application.
> > > > > Since we don't know if the system has an RPMB, we emulate it in the
> > > > > tee_supplicant. How did you get the supplicant and can you check if it
> > > > > was compiled with RPMB_EMU=0 or 1?
> > > > >
> > > >
> > > > I'm using the tee-supplicant provided by the fedora package which is
> > > > built with ` -DRPMB_EMU=0`, I think that's correct, right?
> > > >
> > >
> > > Yes, this is correct. We fixed the Fedora package to compile the
> > > supplicant correctly a while back.
> > >
> > > [0] https://www.linaro.org/blog/uefi-secureboot-in-u-boot/
> > > [1] https://apalos.github.io/Protected%20UEFI%20variables%20with%20U-Boot.html#Protected%20UEFI%20variables%20with%20U-Boot
> > >
> > >
> > > Regards
> > > /Ilias
> > > > Thanks,
> > > > Enric
> > > >
> > > > > Thanks
> > > > > /Ilias
> > > > >
> > > > > > Enric
> > > > > >
> > > > >
> > > >
> > >
> >
>
^ permalink raw reply [flat|nested] 18+ messages in thread
* Re: optee-based efi runtime variable service on TI j784s4 platforms
2024-11-11 14:13 ` Enric Balletbo i Serra
@ 2024-11-11 14:25 ` Ilias Apalodimas
2024-11-12 8:17 ` Enric Balletbo i Serra
0 siblings, 1 reply; 18+ messages in thread
From: Ilias Apalodimas @ 2024-11-11 14:25 UTC (permalink / raw)
To: Enric Balletbo i Serra
Cc: Ard Biesheuvel, Sumit Garg, linux-efi, linux-arm-kernel,
linux-kernel, op-tee, Manorit Chawdhry, Udit Kumar,
Menon, Nishanth, Masahisa Kojima
On Mon, 11 Nov 2024 at 16:13, Enric Balletbo i Serra
<eballetb@redhat.com> wrote:
>
> Hi,
>
> Thanks a lot for your support.
You're welcome. FWIW I did test this in the past with an AM62x SoC.
>
> On Mon, Nov 11, 2024 at 12:01 PM Ilias Apalodimas
> <ilias.apalodimas@linaro.org> wrote:
> >
> > On Mon, 11 Nov 2024 at 10:21, Enric Balletbo i Serra
> > <eballetb@redhat.com> wrote:
> > >
> > > Hi Ilias,
> > >
> > > On Sat, Nov 9, 2024 at 1:31 AM Ilias Apalodimas
> > > <ilias.apalodimas@linaro.org> wrote:
> > > >
> > > > On Fri, 8 Nov 2024 at 23:11, Enric Balletbo i Serra <eballetb@redhat.com> wrote:
> > > > >
> > > > > Hi Ilias,
> > > > >
> > > > > Thanks for your quick answer.
> > > > >
> > > > > On Fri, Nov 8, 2024 at 4:48 PM Ilias Apalodimas
> > > > > <ilias.apalodimas@linaro.org> wrote:
> > > > > >
> > > > > > Hi Enric,
> > > > > >
> > > > > > On Fri, 8 Nov 2024 at 12:26, Enric Balletbo i Serra <eballetb@redhat.com> wrote:
> > > > > > >
> > > > > > > Hi all,
> > > > > > >
> > > > > > > I'm looking for any advice/clue to help me to progress on enabling
> > > > > > > TEE-base EFI Runtime Variable Service on TI a j784s4 platforms.
> > > > > > >
> > > > > > > I basically followed the steps described in u-boot documentation [1],
> > > > > > > I enabled some debugging messages but I think I'm at the point that
> > > > > > > the problem might be in the StandaloneMM application, and I'm not sure
> > > > > > > how to debug it.
> > > > > > >
> > > > > > > What I see is that when I run the tee-supplicant daemon, it looks like
> > > > > > > the tee_client_open_session() call loops forever and the tee_stmm_efi
> > > > > > > driver never ends to probe.
> > > > > > >
> > > > > > > With debug enabled I got the following messages.
> > > > > >
> > > > > > I assume reading and storing variables already works in U-Boot right?
> > > > > >
> > > > >
> > > > > Reading and storing variables to the RPMB partition in U-Boot works,
> > > > > that's using the mmc rpmb command from u-boot,
> > > >
> > > > Are you talking about env variables? Perhaps you store them in the mmc
> > > > and not the RPMB partition?
> > > > There's some information here [0]
> > > >
> > > > > But setting
> > > > > CONFIG_EFI_MM_COMM_TEE=y in u-boot I end with a similar behaviour
> > > > > (although I'm not able to debug at u-boot level) What I see is that
> > > > > u-boot gets stuck
> > > > > when bootefi bootmgr is invoqued. I can also reproduce the issue with
> > > > > bootefi hello.
> > > > >
> > > > > => run bootcmd
> > > > > Scanning for bootflows in all bootdevs
> > > > > Seq Method State Uclass Part Name Filename
> > > > > --- ----------- ------ -------- ---- ------------------------
> > > > > ----------------
> > > > > Scanning global bootmeth 'efi_mgr':
> > > > > ( gets stuck here)
> > > > >
> > > > > or
> > > > >
> > > > > => bootefi hello
> > > > > (gets stuck)
> > > > >
> > > > > To debug I disabled CONFIG_EFI_MM_COMM_TEE to not get stuck and bypass
> > > > > the error and go to Linux. My understanding is that
> > > > > CONFIG_EFI_MM_COMM_TEE is only required to read/write efi variables at
> > > > > u-boot level but OPTEE is running the StandaloneMM service. Am I
> > > > > right?
> > > >
> > > > U-Boot has two ways of storing EFI variables [0] . You can either
> > > > store them in a file or the RPMB partition. The correct thing to do,
> > > > since you want to use the RPMB, is enable CONFIG_EFI_MM_COMM_TEE. I am
> > > > not sure why the hand happens, but one thing we can improve is figure
> > > > out why it hangs and print a useful message.
> > > > There are a number of reasons that might lead to a failure. Is the
> > > > RPMB key programmed on your board? Have a look at this [1] in case it
> > > > helps
> > > >
> > > > >
> > > > > > >
> > > > > > > # tee-supplicant
> > > > > > > D/TC:? 0 tee_ta_init_session_with_context:557 Re-open trusted service
> > > > > > > 7011a688-ddde-4053-a5a9-7b3c4ddf13b8
> > > > > > > D/TC:? 0 load_stmm:297 stmm load address 0x40004000
> > > > > > > D/TC:? 0 spm_handle_scall:859 Received FFA version
> > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > >
> > > > If I had to guess, OP-TEE doesn't store the variables in the RPMB, can
> > > > you compile it with a bit more debugging enabled?
> > > >
> > >
> > > Here is a log with CFG_TEE_CORE_LOG_LEVEL=4, CFG_TEE_CORE_DEBUG=y and
> > > CFG_TEE_TA_LOG_LEVEL=4
> > >
> > > https://paste.centos.org/view/eed83a5b
> > >
> > > At the beginning of the log I see
> > >
> > > D/TC:0 0 check_ta_store:449 TA store: "REE"
> > >
> > > Which looks wrong to me as I built optee with:
> > > CFG_REE_FS=n
> > > CFG_RPMB_FS_DEV_ID=0
> > > CFG_RPMB_FS=y
> >
> > Yes it does look wrong. Our compilation flags are
> > CFG_RPMB_FS=y CFG_RPMB_FS_DEV_ID=0 CFG_RPMB_WRITE_KEY=y
> > CFG_RPMB_TESTKEY=y CFG_REE_FS=n CFG_CORE_ARM64_PA_BITS=48
> > CFG_SCTLR_ALIGNMENT_CHECK=n
> >
>
> Mine are very similar
>
> make CROSS_COMPILE="$CC32" CROSS_COMPILE64="$CC64" \
> PLATFORM=k3-j784s4 CFG_ARM64_core=y CFG_CONSOLE_UART=0x8 \
> CFG_RPMB_FS_DEV_ID=0 CFG_REE_FS=n CFG_RPMB_FS=y \
> CFG_RPMB_WRITE_KEY=y CFG_RPMB_TESTKEY=y \
> CFG_STMM_PATH=BL32_AP_MM.fd \
> CFG_CORE_HEAP_SIZE=524288 CFG_CORE_DYN_SHM=y CFG_SCTLR_ALIGNMENT_CHECK=n \
> CFG_TEE_CORE_LOG_LEVEL=4 CFG_TEE_CORE_DEBUG=y CFG_TEE_TA_LOG_LEVEL=4
>
> There is a difference with CFG_CORE_ARM64_PA_BITS=48 , my platform defines it to
>
> core/arch/arm/plat-k3/conf.mk:$(call force,CFG_CORE_ARM64_PA_BITS,36)
>
> But I don't think this is the problem.
>
> > The testkey etc aren't required if your board has a way of reading the
> > RPMB key from a secure location -- in fact, using the testkey is not
> > secure. Is the RPMB programmed on your board? Also can you make sure
> > CFG_RPMB_FS_DEV_ID needs to be 0? How many sd interfaces your board
> > has?
>
> My board has two interfaces, an eMMC and a SD-card, 0 is indeed the
> eMMC and I'm using the testkey which I assume was programmed the first
> time I booted with all this. Unfortunately I lost the traces. But,
> optee_rpmb works. I.e:
>
> => optee_rpmb write test 1234
> => optee_rpmb read test 4
> Read 4 bytes, value = 1234
>
>
> > IOW in U-Boot does 'mmc dev 0 && mmc info' print information for the
> > RPMB partition?
> >
>
> => mmc dev 0
> switch to partitions #0, OK
> mmc0(part 0) is current device
> => mmc info
> Device: mmc@4f80000
> Manufacturer ID: 13
> OEM: 4e
> Name: G1M15L
> Bus Speed: 200000000
> Mode: HS400 (200MHz)
> Rd Block Len: 512
> MMC version 5.1
> High Capacity: Yes
> Capacity: 29.6 GiB
> Bus Width: 8-bit DDR
> Erase Group Size: 512 KiB
> HC WP Group Size: 8 MiB
> User Capacity: 29.6 GiB WRREL
> Boot Capacity: 31.5 MiB ENH
> RPMB Capacity: 4 MiB ENH
> Boot area 0 is not write protected
> Boot area 1 is not write protected
> => mmc list
> mmc@4f80000: 0 (eMMC)
> mmc@4fb0000: 1
>
> Any interaction with efi gives me the same result (printenv -e,
> efidebug, bootefi ...)
Yes, that makes sense, because variables fail to initialize -- which
is a core part of bringing up the EFI subsystem.
Can you recompile op-tee with CFG_RPMB_RESET_FAT and try again?
Thanks
/Ilias
>
> => efidebug query -bs -rt -nv
> D/TC:? 0 load_stmm:297 stmm load address 0x40004000
> D/TC:? 0 spm_handle_scall:859 Received FFA version
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> ... stuck here ... I need to reset the board
>
> Will continue to see if I can get more useful messages
>
> Thanks,
> Enric
>
> > Thanks
> > /Ilias
> > >
> > > I'll try to add some more prints to verify if REE is used as a store
> > > system, I assume this should say something about RPMB. Am I right with
> > > this?
> >
> >
> > >
> > > > > > >
> > > > > > > And tracing the function calls gives me that:
> > > > > > >
> > > > > > > tee_stmm_efi_probe() {
> > > > > > > tee_client_open_context() {
> > > > > > > optee_get_version() {
> > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > } (ret=0xd)
> > > > > > > tee_ctx_match(); (ret=0x1)
> > > > > > > optee_smc_open() {
> > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > optee_open() {
> > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > } (ret=0x0)
> > > > > > > } (ret=0x0)
> > > > > > > } (ret=0xffff000004e71c80)
> > > > > > > tee_client_open_session() {
> > > > > > > optee_open_session() {
> > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > optee_get_msg_arg() {
> > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > tee_shm_get_va(); (ret=0xffff000002909000)
> > > > > > > } (ret=0xffff000002909000)
> > > > > > > tee_session_calc_client_uuid(); (ret=0x0)
> > > > > > > optee_to_msg_param(); (ret=0x0)
> > > > > > > optee_smc_do_call_with_arg() {
> > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > tee_shm_get_va(); (ret=0xffff000002909000)
> > > > > > > tee_shm_get_va(); (ret=0xffff000002909060)
> > > > > > > optee_cq_wait_init(); (ret=0xffff000002e55910)
> > > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > > ... continues sending this forever ...
> > > > > > > ... Hit ^C to stop recording ...
> > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > optee_smccc_smc() {
> > > > > > >
> > > > > > > [1] https://docs.u-boot.org/en/latest/develop/uefi/uefi.html#using-op-tee-for-efi-variables
> > > > > > >
> > > > > > > Thanks in advance,
> > > > > >
> > > > > > The most common problem with this is miscompiling the tee_supplicant
> > > > > > application.
> > > > > > Since we don't know if the system has an RPMB, we emulate it in the
> > > > > > tee_supplicant. How did you get the supplicant and can you check if it
> > > > > > was compiled with RPMB_EMU=0 or 1?
> > > > > >
> > > > >
> > > > > I'm using the tee-supplicant provided by the fedora package which is
> > > > > built with ` -DRPMB_EMU=0`, I think that's correct, right?
> > > > >
> > > >
> > > > Yes, this is correct. We fixed the Fedora package to compile the
> > > > supplicant correctly a while back.
> > > >
> > > > [0] https://www.linaro.org/blog/uefi-secureboot-in-u-boot/
> > > > [1] https://apalos.github.io/Protected%20UEFI%20variables%20with%20U-Boot.html#Protected%20UEFI%20variables%20with%20U-Boot
> > > >
> > > >
> > > > Regards
> > > > /Ilias
> > > > > Thanks,
> > > > > Enric
> > > > >
> > > > > > Thanks
> > > > > > /Ilias
> > > > > >
> > > > > > > Enric
> > > > > > >
> > > > > >
> > > > >
> > > >
> > >
> >
>
^ permalink raw reply [flat|nested] 18+ messages in thread
* Re: optee-based efi runtime variable service on TI j784s4 platforms
2024-11-11 14:25 ` Ilias Apalodimas
@ 2024-11-12 8:17 ` Enric Balletbo i Serra
2024-11-12 11:40 ` Enric Balletbo i Serra
0 siblings, 1 reply; 18+ messages in thread
From: Enric Balletbo i Serra @ 2024-11-12 8:17 UTC (permalink / raw)
To: Ilias Apalodimas
Cc: Ard Biesheuvel, Sumit Garg, linux-efi, linux-arm-kernel,
linux-kernel, op-tee, Manorit Chawdhry, Udit Kumar,
Menon, Nishanth, Masahisa Kojima
Hi,
On Mon, Nov 11, 2024 at 3:26 PM Ilias Apalodimas
<ilias.apalodimas@linaro.org> wrote:
>
> On Mon, 11 Nov 2024 at 16:13, Enric Balletbo i Serra
> <eballetb@redhat.com> wrote:
> >
> > Hi,
> >
> > Thanks a lot for your support.
>
> You're welcome. FWIW I did test this in the past with an AM62x SoC.
>
Thanks for the info, maybe I can give it a try with my BeaglePlay then...
> >
> > On Mon, Nov 11, 2024 at 12:01 PM Ilias Apalodimas
> > <ilias.apalodimas@linaro.org> wrote:
> > >
> > > On Mon, 11 Nov 2024 at 10:21, Enric Balletbo i Serra
> > > <eballetb@redhat.com> wrote:
> > > >
> > > > Hi Ilias,
> > > >
> > > > On Sat, Nov 9, 2024 at 1:31 AM Ilias Apalodimas
> > > > <ilias.apalodimas@linaro.org> wrote:
> > > > >
> > > > > On Fri, 8 Nov 2024 at 23:11, Enric Balletbo i Serra <eballetb@redhat.com> wrote:
> > > > > >
> > > > > > Hi Ilias,
> > > > > >
> > > > > > Thanks for your quick answer.
> > > > > >
> > > > > > On Fri, Nov 8, 2024 at 4:48 PM Ilias Apalodimas
> > > > > > <ilias.apalodimas@linaro.org> wrote:
> > > > > > >
> > > > > > > Hi Enric,
> > > > > > >
> > > > > > > On Fri, 8 Nov 2024 at 12:26, Enric Balletbo i Serra <eballetb@redhat.com> wrote:
> > > > > > > >
> > > > > > > > Hi all,
> > > > > > > >
> > > > > > > > I'm looking for any advice/clue to help me to progress on enabling
> > > > > > > > TEE-base EFI Runtime Variable Service on TI a j784s4 platforms.
> > > > > > > >
> > > > > > > > I basically followed the steps described in u-boot documentation [1],
> > > > > > > > I enabled some debugging messages but I think I'm at the point that
> > > > > > > > the problem might be in the StandaloneMM application, and I'm not sure
> > > > > > > > how to debug it.
> > > > > > > >
> > > > > > > > What I see is that when I run the tee-supplicant daemon, it looks like
> > > > > > > > the tee_client_open_session() call loops forever and the tee_stmm_efi
> > > > > > > > driver never ends to probe.
> > > > > > > >
> > > > > > > > With debug enabled I got the following messages.
> > > > > > >
> > > > > > > I assume reading and storing variables already works in U-Boot right?
> > > > > > >
> > > > > >
> > > > > > Reading and storing variables to the RPMB partition in U-Boot works,
> > > > > > that's using the mmc rpmb command from u-boot,
> > > > >
> > > > > Are you talking about env variables? Perhaps you store them in the mmc
> > > > > and not the RPMB partition?
> > > > > There's some information here [0]
> > > > >
> > > > > > But setting
> > > > > > CONFIG_EFI_MM_COMM_TEE=y in u-boot I end with a similar behaviour
> > > > > > (although I'm not able to debug at u-boot level) What I see is that
> > > > > > u-boot gets stuck
> > > > > > when bootefi bootmgr is invoqued. I can also reproduce the issue with
> > > > > > bootefi hello.
> > > > > >
> > > > > > => run bootcmd
> > > > > > Scanning for bootflows in all bootdevs
> > > > > > Seq Method State Uclass Part Name Filename
> > > > > > --- ----------- ------ -------- ---- ------------------------
> > > > > > ----------------
> > > > > > Scanning global bootmeth 'efi_mgr':
> > > > > > ( gets stuck here)
> > > > > >
> > > > > > or
> > > > > >
> > > > > > => bootefi hello
> > > > > > (gets stuck)
> > > > > >
> > > > > > To debug I disabled CONFIG_EFI_MM_COMM_TEE to not get stuck and bypass
> > > > > > the error and go to Linux. My understanding is that
> > > > > > CONFIG_EFI_MM_COMM_TEE is only required to read/write efi variables at
> > > > > > u-boot level but OPTEE is running the StandaloneMM service. Am I
> > > > > > right?
> > > > >
> > > > > U-Boot has two ways of storing EFI variables [0] . You can either
> > > > > store them in a file or the RPMB partition. The correct thing to do,
> > > > > since you want to use the RPMB, is enable CONFIG_EFI_MM_COMM_TEE. I am
> > > > > not sure why the hand happens, but one thing we can improve is figure
> > > > > out why it hangs and print a useful message.
> > > > > There are a number of reasons that might lead to a failure. Is the
> > > > > RPMB key programmed on your board? Have a look at this [1] in case it
> > > > > helps
> > > > >
> > > > > >
> > > > > > > >
> > > > > > > > # tee-supplicant
> > > > > > > > D/TC:? 0 tee_ta_init_session_with_context:557 Re-open trusted service
> > > > > > > > 7011a688-ddde-4053-a5a9-7b3c4ddf13b8
> > > > > > > > D/TC:? 0 load_stmm:297 stmm load address 0x40004000
> > > > > > > > D/TC:? 0 spm_handle_scall:859 Received FFA version
> > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > >
> > > > > If I had to guess, OP-TEE doesn't store the variables in the RPMB, can
> > > > > you compile it with a bit more debugging enabled?
> > > > >
> > > >
> > > > Here is a log with CFG_TEE_CORE_LOG_LEVEL=4, CFG_TEE_CORE_DEBUG=y and
> > > > CFG_TEE_TA_LOG_LEVEL=4
> > > >
> > > > https://paste.centos.org/view/eed83a5b
> > > >
> > > > At the beginning of the log I see
> > > >
> > > > D/TC:0 0 check_ta_store:449 TA store: "REE"
> > > >
> > > > Which looks wrong to me as I built optee with:
> > > > CFG_REE_FS=n
> > > > CFG_RPMB_FS_DEV_ID=0
> > > > CFG_RPMB_FS=y
> > >
> > > Yes it does look wrong. Our compilation flags are
> > > CFG_RPMB_FS=y CFG_RPMB_FS_DEV_ID=0 CFG_RPMB_WRITE_KEY=y
> > > CFG_RPMB_TESTKEY=y CFG_REE_FS=n CFG_CORE_ARM64_PA_BITS=48
> > > CFG_SCTLR_ALIGNMENT_CHECK=n
> > >
> >
> > Mine are very similar
> >
> > make CROSS_COMPILE="$CC32" CROSS_COMPILE64="$CC64" \
> > PLATFORM=k3-j784s4 CFG_ARM64_core=y CFG_CONSOLE_UART=0x8 \
> > CFG_RPMB_FS_DEV_ID=0 CFG_REE_FS=n CFG_RPMB_FS=y \
> > CFG_RPMB_WRITE_KEY=y CFG_RPMB_TESTKEY=y \
> > CFG_STMM_PATH=BL32_AP_MM.fd \
> > CFG_CORE_HEAP_SIZE=524288 CFG_CORE_DYN_SHM=y CFG_SCTLR_ALIGNMENT_CHECK=n \
> > CFG_TEE_CORE_LOG_LEVEL=4 CFG_TEE_CORE_DEBUG=y CFG_TEE_TA_LOG_LEVEL=4
> >
> > There is a difference with CFG_CORE_ARM64_PA_BITS=48 , my platform defines it to
> >
> > core/arch/arm/plat-k3/conf.mk:$(call force,CFG_CORE_ARM64_PA_BITS,36)
> >
> > But I don't think this is the problem.
> >
> > > The testkey etc aren't required if your board has a way of reading the
> > > RPMB key from a secure location -- in fact, using the testkey is not
> > > secure. Is the RPMB programmed on your board? Also can you make sure
> > > CFG_RPMB_FS_DEV_ID needs to be 0? How many sd interfaces your board
> > > has?
> >
> > My board has two interfaces, an eMMC and a SD-card, 0 is indeed the
> > eMMC and I'm using the testkey which I assume was programmed the first
> > time I booted with all this. Unfortunately I lost the traces. But,
> > optee_rpmb works. I.e:
> >
> > => optee_rpmb write test 1234
> > => optee_rpmb read test 4
> > Read 4 bytes, value = 1234
> >
> >
> > > IOW in U-Boot does 'mmc dev 0 && mmc info' print information for the
> > > RPMB partition?
> > >
> >
> > => mmc dev 0
> > switch to partitions #0, OK
> > mmc0(part 0) is current device
> > => mmc info
> > Device: mmc@4f80000
> > Manufacturer ID: 13
> > OEM: 4e
> > Name: G1M15L
> > Bus Speed: 200000000
> > Mode: HS400 (200MHz)
> > Rd Block Len: 512
> > MMC version 5.1
> > High Capacity: Yes
> > Capacity: 29.6 GiB
> > Bus Width: 8-bit DDR
> > Erase Group Size: 512 KiB
> > HC WP Group Size: 8 MiB
> > User Capacity: 29.6 GiB WRREL
> > Boot Capacity: 31.5 MiB ENH
> > RPMB Capacity: 4 MiB ENH
> > Boot area 0 is not write protected
> > Boot area 1 is not write protected
> > => mmc list
> > mmc@4f80000: 0 (eMMC)
> > mmc@4fb0000: 1
> >
> > Any interaction with efi gives me the same result (printenv -e,
> > efidebug, bootefi ...)
>
> Yes, that makes sense, because variables fail to initialize -- which
> is a core part of bringing up the EFI subsystem.
>
> Can you recompile op-tee with CFG_RPMB_RESET_FAT and try again?
>
Unfortunately that didn't help, but I don't see this code being run.
Who sets for the first place the uefi variables, is this u-boot
writing them to the rpmb? or is optee itself?
> Thanks
> /Ilias
> >
> > => efidebug query -bs -rt -nv
> > D/TC:? 0 load_stmm:297 stmm load address 0x40004000
> > D/TC:? 0 spm_handle_scall:859 Received FFA version
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > ... stuck here ... I need to reset the board
> >
> > Will continue to see if I can get more useful messages
> >
> > Thanks,
> > Enric
> >
> > > Thanks
> > > /Ilias
> > > >
> > > > I'll try to add some more prints to verify if REE is used as a store
> > > > system, I assume this should say something about RPMB. Am I right with
> > > > this?
> > >
> > >
> > > >
> > > > > > > >
> > > > > > > > And tracing the function calls gives me that:
> > > > > > > >
> > > > > > > > tee_stmm_efi_probe() {
> > > > > > > > tee_client_open_context() {
> > > > > > > > optee_get_version() {
> > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > } (ret=0xd)
> > > > > > > > tee_ctx_match(); (ret=0x1)
> > > > > > > > optee_smc_open() {
> > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > optee_open() {
> > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > } (ret=0x0)
> > > > > > > > } (ret=0x0)
> > > > > > > > } (ret=0xffff000004e71c80)
> > > > > > > > tee_client_open_session() {
> > > > > > > > optee_open_session() {
> > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > optee_get_msg_arg() {
> > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > tee_shm_get_va(); (ret=0xffff000002909000)
> > > > > > > > } (ret=0xffff000002909000)
> > > > > > > > tee_session_calc_client_uuid(); (ret=0x0)
> > > > > > > > optee_to_msg_param(); (ret=0x0)
> > > > > > > > optee_smc_do_call_with_arg() {
> > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > tee_shm_get_va(); (ret=0xffff000002909000)
> > > > > > > > tee_shm_get_va(); (ret=0xffff000002909060)
> > > > > > > > optee_cq_wait_init(); (ret=0xffff000002e55910)
> > > > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > > > ... continues sending this forever ...
> > > > > > > > ... Hit ^C to stop recording ...
> > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > optee_smccc_smc() {
> > > > > > > >
> > > > > > > > [1] https://docs.u-boot.org/en/latest/develop/uefi/uefi.html#using-op-tee-for-efi-variables
> > > > > > > >
> > > > > > > > Thanks in advance,
> > > > > > >
> > > > > > > The most common problem with this is miscompiling the tee_supplicant
> > > > > > > application.
> > > > > > > Since we don't know if the system has an RPMB, we emulate it in the
> > > > > > > tee_supplicant. How did you get the supplicant and can you check if it
> > > > > > > was compiled with RPMB_EMU=0 or 1?
> > > > > > >
> > > > > >
> > > > > > I'm using the tee-supplicant provided by the fedora package which is
> > > > > > built with ` -DRPMB_EMU=0`, I think that's correct, right?
> > > > > >
> > > > >
> > > > > Yes, this is correct. We fixed the Fedora package to compile the
> > > > > supplicant correctly a while back.
> > > > >
> > > > > [0] https://www.linaro.org/blog/uefi-secureboot-in-u-boot/
> > > > > [1] https://apalos.github.io/Protected%20UEFI%20variables%20with%20U-Boot.html#Protected%20UEFI%20variables%20with%20U-Boot
> > > > >
> > > > >
> > > > > Regards
> > > > > /Ilias
> > > > > > Thanks,
> > > > > > Enric
> > > > > >
> > > > > > > Thanks
> > > > > > > /Ilias
> > > > > > >
> > > > > > > > Enric
> > > > > > > >
> > > > > > >
> > > > > >
> > > > >
> > > >
> > >
> >
>
^ permalink raw reply [flat|nested] 18+ messages in thread
* Re: optee-based efi runtime variable service on TI j784s4 platforms
2024-11-12 8:17 ` Enric Balletbo i Serra
@ 2024-11-12 11:40 ` Enric Balletbo i Serra
2024-11-12 11:50 ` Ilias Apalodimas
0 siblings, 1 reply; 18+ messages in thread
From: Enric Balletbo i Serra @ 2024-11-12 11:40 UTC (permalink / raw)
To: Ilias Apalodimas
Cc: Ard Biesheuvel, Sumit Garg, linux-efi, linux-arm-kernel,
linux-kernel, op-tee, Manorit Chawdhry, Udit Kumar,
Menon, Nishanth, Masahisa Kojima
Hi again,
On Tue, Nov 12, 2024 at 9:17 AM Enric Balletbo i Serra
<eballetb@redhat.com> wrote:
>
> Hi,
>
> On Mon, Nov 11, 2024 at 3:26 PM Ilias Apalodimas
> <ilias.apalodimas@linaro.org> wrote:
> >
> > On Mon, 11 Nov 2024 at 16:13, Enric Balletbo i Serra
> > <eballetb@redhat.com> wrote:
> > >
> > > Hi,
> > >
> > > Thanks a lot for your support.
> >
> > You're welcome. FWIW I did test this in the past with an AM62x SoC.
> >
>
> Thanks for the info, maybe I can give it a try with my BeaglePlay then...
>
> > >
> > > On Mon, Nov 11, 2024 at 12:01 PM Ilias Apalodimas
> > > <ilias.apalodimas@linaro.org> wrote:
> > > >
> > > > On Mon, 11 Nov 2024 at 10:21, Enric Balletbo i Serra
> > > > <eballetb@redhat.com> wrote:
> > > > >
> > > > > Hi Ilias,
> > > > >
> > > > > On Sat, Nov 9, 2024 at 1:31 AM Ilias Apalodimas
> > > > > <ilias.apalodimas@linaro.org> wrote:
> > > > > >
> > > > > > On Fri, 8 Nov 2024 at 23:11, Enric Balletbo i Serra <eballetb@redhat.com> wrote:
> > > > > > >
> > > > > > > Hi Ilias,
> > > > > > >
> > > > > > > Thanks for your quick answer.
> > > > > > >
> > > > > > > On Fri, Nov 8, 2024 at 4:48 PM Ilias Apalodimas
> > > > > > > <ilias.apalodimas@linaro.org> wrote:
> > > > > > > >
> > > > > > > > Hi Enric,
> > > > > > > >
> > > > > > > > On Fri, 8 Nov 2024 at 12:26, Enric Balletbo i Serra <eballetb@redhat.com> wrote:
> > > > > > > > >
> > > > > > > > > Hi all,
> > > > > > > > >
> > > > > > > > > I'm looking for any advice/clue to help me to progress on enabling
> > > > > > > > > TEE-base EFI Runtime Variable Service on TI a j784s4 platforms.
> > > > > > > > >
> > > > > > > > > I basically followed the steps described in u-boot documentation [1],
> > > > > > > > > I enabled some debugging messages but I think I'm at the point that
> > > > > > > > > the problem might be in the StandaloneMM application, and I'm not sure
> > > > > > > > > how to debug it.
> > > > > > > > >
> > > > > > > > > What I see is that when I run the tee-supplicant daemon, it looks like
> > > > > > > > > the tee_client_open_session() call loops forever and the tee_stmm_efi
> > > > > > > > > driver never ends to probe.
> > > > > > > > >
> > > > > > > > > With debug enabled I got the following messages.
> > > > > > > >
> > > > > > > > I assume reading and storing variables already works in U-Boot right?
> > > > > > > >
> > > > > > >
> > > > > > > Reading and storing variables to the RPMB partition in U-Boot works,
> > > > > > > that's using the mmc rpmb command from u-boot,
> > > > > >
> > > > > > Are you talking about env variables? Perhaps you store them in the mmc
> > > > > > and not the RPMB partition?
> > > > > > There's some information here [0]
> > > > > >
> > > > > > > But setting
> > > > > > > CONFIG_EFI_MM_COMM_TEE=y in u-boot I end with a similar behaviour
> > > > > > > (although I'm not able to debug at u-boot level) What I see is that
> > > > > > > u-boot gets stuck
> > > > > > > when bootefi bootmgr is invoqued. I can also reproduce the issue with
> > > > > > > bootefi hello.
> > > > > > >
> > > > > > > => run bootcmd
> > > > > > > Scanning for bootflows in all bootdevs
> > > > > > > Seq Method State Uclass Part Name Filename
> > > > > > > --- ----------- ------ -------- ---- ------------------------
> > > > > > > ----------------
> > > > > > > Scanning global bootmeth 'efi_mgr':
> > > > > > > ( gets stuck here)
> > > > > > >
> > > > > > > or
> > > > > > >
> > > > > > > => bootefi hello
> > > > > > > (gets stuck)
> > > > > > >
> > > > > > > To debug I disabled CONFIG_EFI_MM_COMM_TEE to not get stuck and bypass
> > > > > > > the error and go to Linux. My understanding is that
> > > > > > > CONFIG_EFI_MM_COMM_TEE is only required to read/write efi variables at
> > > > > > > u-boot level but OPTEE is running the StandaloneMM service. Am I
> > > > > > > right?
> > > > > >
> > > > > > U-Boot has two ways of storing EFI variables [0] . You can either
> > > > > > store them in a file or the RPMB partition. The correct thing to do,
> > > > > > since you want to use the RPMB, is enable CONFIG_EFI_MM_COMM_TEE. I am
> > > > > > not sure why the hand happens, but one thing we can improve is figure
> > > > > > out why it hangs and print a useful message.
> > > > > > There are a number of reasons that might lead to a failure. Is the
> > > > > > RPMB key programmed on your board? Have a look at this [1] in case it
> > > > > > helps
> > > > > >
> > > > > > >
> > > > > > > > >
> > > > > > > > > # tee-supplicant
> > > > > > > > > D/TC:? 0 tee_ta_init_session_with_context:557 Re-open trusted service
> > > > > > > > > 7011a688-ddde-4053-a5a9-7b3c4ddf13b8
> > > > > > > > > D/TC:? 0 load_stmm:297 stmm load address 0x40004000
> > > > > > > > > D/TC:? 0 spm_handle_scall:859 Received FFA version
> > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > >
> > > > > > If I had to guess, OP-TEE doesn't store the variables in the RPMB, can
> > > > > > you compile it with a bit more debugging enabled?
> > > > > >
> > > > >
> > > > > Here is a log with CFG_TEE_CORE_LOG_LEVEL=4, CFG_TEE_CORE_DEBUG=y and
> > > > > CFG_TEE_TA_LOG_LEVEL=4
> > > > >
> > > > > https://paste.centos.org/view/eed83a5b
> > > > >
> > > > > At the beginning of the log I see
> > > > >
> > > > > D/TC:0 0 check_ta_store:449 TA store: "REE"
> > > > >
> > > > > Which looks wrong to me as I built optee with:
> > > > > CFG_REE_FS=n
> > > > > CFG_RPMB_FS_DEV_ID=0
> > > > > CFG_RPMB_FS=y
> > > >
> > > > Yes it does look wrong. Our compilation flags are
> > > > CFG_RPMB_FS=y CFG_RPMB_FS_DEV_ID=0 CFG_RPMB_WRITE_KEY=y
> > > > CFG_RPMB_TESTKEY=y CFG_REE_FS=n CFG_CORE_ARM64_PA_BITS=48
> > > > CFG_SCTLR_ALIGNMENT_CHECK=n
> > > >
> > >
> > > Mine are very similar
> > >
> > > make CROSS_COMPILE="$CC32" CROSS_COMPILE64="$CC64" \
> > > PLATFORM=k3-j784s4 CFG_ARM64_core=y CFG_CONSOLE_UART=0x8 \
> > > CFG_RPMB_FS_DEV_ID=0 CFG_REE_FS=n CFG_RPMB_FS=y \
> > > CFG_RPMB_WRITE_KEY=y CFG_RPMB_TESTKEY=y \
> > > CFG_STMM_PATH=BL32_AP_MM.fd \
> > > CFG_CORE_HEAP_SIZE=524288 CFG_CORE_DYN_SHM=y CFG_SCTLR_ALIGNMENT_CHECK=n \
> > > CFG_TEE_CORE_LOG_LEVEL=4 CFG_TEE_CORE_DEBUG=y CFG_TEE_TA_LOG_LEVEL=4
> > >
> > > There is a difference with CFG_CORE_ARM64_PA_BITS=48 , my platform defines it to
> > >
> > > core/arch/arm/plat-k3/conf.mk:$(call force,CFG_CORE_ARM64_PA_BITS,36)
> > >
> > > But I don't think this is the problem.
> > >
> > > > The testkey etc aren't required if your board has a way of reading the
> > > > RPMB key from a secure location -- in fact, using the testkey is not
> > > > secure. Is the RPMB programmed on your board? Also can you make sure
> > > > CFG_RPMB_FS_DEV_ID needs to be 0? How many sd interfaces your board
> > > > has?
> > >
> > > My board has two interfaces, an eMMC and a SD-card, 0 is indeed the
> > > eMMC and I'm using the testkey which I assume was programmed the first
> > > time I booted with all this. Unfortunately I lost the traces. But,
> > > optee_rpmb works. I.e:
> > >
> > > => optee_rpmb write test 1234
> > > => optee_rpmb read test 4
> > > Read 4 bytes, value = 1234
> > >
> > >
> > > > IOW in U-Boot does 'mmc dev 0 && mmc info' print information for the
> > > > RPMB partition?
> > > >
> > >
> > > => mmc dev 0
> > > switch to partitions #0, OK
> > > mmc0(part 0) is current device
> > > => mmc info
> > > Device: mmc@4f80000
> > > Manufacturer ID: 13
> > > OEM: 4e
> > > Name: G1M15L
> > > Bus Speed: 200000000
> > > Mode: HS400 (200MHz)
> > > Rd Block Len: 512
> > > MMC version 5.1
> > > High Capacity: Yes
> > > Capacity: 29.6 GiB
> > > Bus Width: 8-bit DDR
> > > Erase Group Size: 512 KiB
> > > HC WP Group Size: 8 MiB
> > > User Capacity: 29.6 GiB WRREL
> > > Boot Capacity: 31.5 MiB ENH
> > > RPMB Capacity: 4 MiB ENH
> > > Boot area 0 is not write protected
> > > Boot area 1 is not write protected
> > > => mmc list
> > > mmc@4f80000: 0 (eMMC)
> > > mmc@4fb0000: 1
> > >
> > > Any interaction with efi gives me the same result (printenv -e,
> > > efidebug, bootefi ...)
> >
> > Yes, that makes sense, because variables fail to initialize -- which
> > is a core part of bringing up the EFI subsystem.
> >
> > Can you recompile op-tee with CFG_RPMB_RESET_FAT and try again?
> >
>
> Unfortunately that didn't help, but I don't see this code being run.
> Who sets for the first place the uefi variables, is this u-boot
> writing them to the rpmb? or is optee itself?
>
I tried to compare the behaviour between optee_rpmb (works) and
efidebug (doesn't worrk). I see that the first thing optee_rpmb
command does is open a session against the TA application, something
that efidebug doesn't do, shouldn't efidebug do the same to access to
the rpmb device and read or write the efi variables?
=> optee_rpmb read test 4
D/TC:? 0 tee_ta_init_pseudo_ta_session:303 Lookup pseudo TA
023f8f1a-292a-432b-8fc4-de8471358067
D/TC:? 0 ldelf_load_ldelf:110 ldelf load address 0x40007000
D/LD: ldelf:142 Loading TS 023f8f1a-292a-432b-8fc4-de8471358067
F/TC:? 0 trace_syscall:147 syscall #3 (syscall_get_property)
F/TC:? 0 trace_syscall:147 syscall #5 (syscall_open_ta_session)
D/TC:? 0 ldelf_syscall_open_bin:163 Lookup user TA ELF
023f8f1a-292a-432b-8fc4-de8471358067 (early TA)
D/TC:? 0 ldelf_syscall_open_bin:167 res=0
F/TC:? 0 trace_syscall:147 syscall #7 (syscall_invoke_ta_command)
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 trace_syscall:147 syscall #11 (syscall_mask_cancellation)
F/TC:? 0 trace_syscall:147 syscall #7 (syscall_invoke_ta_command)
=> efidebug query -bs -rt -nv
MMC: no card present
mmc_init: -123, time 2002
D/TC:? 0 load_stmm:297 stmm load address 0x40004000
D/TC:? 0 spm_handle_scall:859 Received FFA version
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
>
> > Thanks
> > /Ilias
> > >
> > > => efidebug query -bs -rt -nv
> > > D/TC:? 0 load_stmm:297 stmm load address 0x40004000
> > > D/TC:? 0 spm_handle_scall:859 Received FFA version
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > ... stuck here ... I need to reset the board
> > >
> > > Will continue to see if I can get more useful messages
> > >
> > > Thanks,
> > > Enric
> > >
> > > > Thanks
> > > > /Ilias
> > > > >
> > > > > I'll try to add some more prints to verify if REE is used as a store
> > > > > system, I assume this should say something about RPMB. Am I right with
> > > > > this?
> > > >
> > > >
> > > > >
> > > > > > > > >
> > > > > > > > > And tracing the function calls gives me that:
> > > > > > > > >
> > > > > > > > > tee_stmm_efi_probe() {
> > > > > > > > > tee_client_open_context() {
> > > > > > > > > optee_get_version() {
> > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > } (ret=0xd)
> > > > > > > > > tee_ctx_match(); (ret=0x1)
> > > > > > > > > optee_smc_open() {
> > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > optee_open() {
> > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > } (ret=0x0)
> > > > > > > > > } (ret=0x0)
> > > > > > > > > } (ret=0xffff000004e71c80)
> > > > > > > > > tee_client_open_session() {
> > > > > > > > > optee_open_session() {
> > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > optee_get_msg_arg() {
> > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > tee_shm_get_va(); (ret=0xffff000002909000)
> > > > > > > > > } (ret=0xffff000002909000)
> > > > > > > > > tee_session_calc_client_uuid(); (ret=0x0)
> > > > > > > > > optee_to_msg_param(); (ret=0x0)
> > > > > > > > > optee_smc_do_call_with_arg() {
> > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > tee_shm_get_va(); (ret=0xffff000002909000)
> > > > > > > > > tee_shm_get_va(); (ret=0xffff000002909060)
> > > > > > > > > optee_cq_wait_init(); (ret=0xffff000002e55910)
> > > > > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > > > > ... continues sending this forever ...
> > > > > > > > > ... Hit ^C to stop recording ...
> > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > optee_smccc_smc() {
> > > > > > > > >
> > > > > > > > > [1] https://docs.u-boot.org/en/latest/develop/uefi/uefi.html#using-op-tee-for-efi-variables
> > > > > > > > >
> > > > > > > > > Thanks in advance,
> > > > > > > >
> > > > > > > > The most common problem with this is miscompiling the tee_supplicant
> > > > > > > > application.
> > > > > > > > Since we don't know if the system has an RPMB, we emulate it in the
> > > > > > > > tee_supplicant. How did you get the supplicant and can you check if it
> > > > > > > > was compiled with RPMB_EMU=0 or 1?
> > > > > > > >
> > > > > > >
> > > > > > > I'm using the tee-supplicant provided by the fedora package which is
> > > > > > > built with ` -DRPMB_EMU=0`, I think that's correct, right?
> > > > > > >
> > > > > >
> > > > > > Yes, this is correct. We fixed the Fedora package to compile the
> > > > > > supplicant correctly a while back.
> > > > > >
> > > > > > [0] https://www.linaro.org/blog/uefi-secureboot-in-u-boot/
> > > > > > [1] https://apalos.github.io/Protected%20UEFI%20variables%20with%20U-Boot.html#Protected%20UEFI%20variables%20with%20U-Boot
> > > > > >
> > > > > >
> > > > > > Regards
> > > > > > /Ilias
> > > > > > > Thanks,
> > > > > > > Enric
> > > > > > >
> > > > > > > > Thanks
> > > > > > > > /Ilias
> > > > > > > >
> > > > > > > > > Enric
> > > > > > > > >
> > > > > > > >
> > > > > > >
> > > > > >
> > > > >
> > > >
> > >
> >
^ permalink raw reply [flat|nested] 18+ messages in thread
* Re: optee-based efi runtime variable service on TI j784s4 platforms
2024-11-12 11:40 ` Enric Balletbo i Serra
@ 2024-11-12 11:50 ` Ilias Apalodimas
2024-11-12 12:45 ` Enric Balletbo i Serra
0 siblings, 1 reply; 18+ messages in thread
From: Ilias Apalodimas @ 2024-11-12 11:50 UTC (permalink / raw)
To: Enric Balletbo i Serra
Cc: Ard Biesheuvel, Sumit Garg, linux-efi, linux-arm-kernel,
linux-kernel, op-tee, Manorit Chawdhry, Udit Kumar,
Menon, Nishanth, Masahisa Kojima
Hi Enric
On Tue, 12 Nov 2024 at 13:40, Enric Balletbo i Serra
<eballetb@redhat.com> wrote:
>
> Hi again,
>
> On Tue, Nov 12, 2024 at 9:17 AM Enric Balletbo i Serra
> <eballetb@redhat.com> wrote:
> >
> > Hi,
> >
> > On Mon, Nov 11, 2024 at 3:26 PM Ilias Apalodimas
> > <ilias.apalodimas@linaro.org> wrote:
> > >
> > > On Mon, 11 Nov 2024 at 16:13, Enric Balletbo i Serra
> > > <eballetb@redhat.com> wrote:
> > > >
> > > > Hi,
> > > >
> > > > Thanks a lot for your support.
> > >
> > > You're welcome. FWIW I did test this in the past with an AM62x SoC.
> > >
> >
> > Thanks for the info, maybe I can give it a try with my BeaglePlay then...
> >
> > > >
> > > > On Mon, Nov 11, 2024 at 12:01 PM Ilias Apalodimas
> > > > <ilias.apalodimas@linaro.org> wrote:
> > > > >
> > > > > On Mon, 11 Nov 2024 at 10:21, Enric Balletbo i Serra
> > > > > <eballetb@redhat.com> wrote:
> > > > > >
> > > > > > Hi Ilias,
> > > > > >
> > > > > > On Sat, Nov 9, 2024 at 1:31 AM Ilias Apalodimas
> > > > > > <ilias.apalodimas@linaro.org> wrote:
> > > > > > >
> > > > > > > On Fri, 8 Nov 2024 at 23:11, Enric Balletbo i Serra <eballetb@redhat.com> wrote:
> > > > > > > >
> > > > > > > > Hi Ilias,
> > > > > > > >
> > > > > > > > Thanks for your quick answer.
> > > > > > > >
> > > > > > > > On Fri, Nov 8, 2024 at 4:48 PM Ilias Apalodimas
> > > > > > > > <ilias.apalodimas@linaro.org> wrote:
> > > > > > > > >
> > > > > > > > > Hi Enric,
> > > > > > > > >
> > > > > > > > > On Fri, 8 Nov 2024 at 12:26, Enric Balletbo i Serra <eballetb@redhat.com> wrote:
> > > > > > > > > >
> > > > > > > > > > Hi all,
> > > > > > > > > >
> > > > > > > > > > I'm looking for any advice/clue to help me to progress on enabling
> > > > > > > > > > TEE-base EFI Runtime Variable Service on TI a j784s4 platforms.
> > > > > > > > > >
> > > > > > > > > > I basically followed the steps described in u-boot documentation [1],
> > > > > > > > > > I enabled some debugging messages but I think I'm at the point that
> > > > > > > > > > the problem might be in the StandaloneMM application, and I'm not sure
> > > > > > > > > > how to debug it.
> > > > > > > > > >
> > > > > > > > > > What I see is that when I run the tee-supplicant daemon, it looks like
> > > > > > > > > > the tee_client_open_session() call loops forever and the tee_stmm_efi
> > > > > > > > > > driver never ends to probe.
> > > > > > > > > >
> > > > > > > > > > With debug enabled I got the following messages.
> > > > > > > > >
> > > > > > > > > I assume reading and storing variables already works in U-Boot right?
> > > > > > > > >
> > > > > > > >
> > > > > > > > Reading and storing variables to the RPMB partition in U-Boot works,
> > > > > > > > that's using the mmc rpmb command from u-boot,
> > > > > > >
> > > > > > > Are you talking about env variables? Perhaps you store them in the mmc
> > > > > > > and not the RPMB partition?
> > > > > > > There's some information here [0]
> > > > > > >
> > > > > > > > But setting
> > > > > > > > CONFIG_EFI_MM_COMM_TEE=y in u-boot I end with a similar behaviour
> > > > > > > > (although I'm not able to debug at u-boot level) What I see is that
> > > > > > > > u-boot gets stuck
> > > > > > > > when bootefi bootmgr is invoqued. I can also reproduce the issue with
> > > > > > > > bootefi hello.
> > > > > > > >
> > > > > > > > => run bootcmd
> > > > > > > > Scanning for bootflows in all bootdevs
> > > > > > > > Seq Method State Uclass Part Name Filename
> > > > > > > > --- ----------- ------ -------- ---- ------------------------
> > > > > > > > ----------------
> > > > > > > > Scanning global bootmeth 'efi_mgr':
> > > > > > > > ( gets stuck here)
> > > > > > > >
> > > > > > > > or
> > > > > > > >
> > > > > > > > => bootefi hello
> > > > > > > > (gets stuck)
> > > > > > > >
> > > > > > > > To debug I disabled CONFIG_EFI_MM_COMM_TEE to not get stuck and bypass
> > > > > > > > the error and go to Linux. My understanding is that
> > > > > > > > CONFIG_EFI_MM_COMM_TEE is only required to read/write efi variables at
> > > > > > > > u-boot level but OPTEE is running the StandaloneMM service. Am I
> > > > > > > > right?
> > > > > > >
> > > > > > > U-Boot has two ways of storing EFI variables [0] . You can either
> > > > > > > store them in a file or the RPMB partition. The correct thing to do,
> > > > > > > since you want to use the RPMB, is enable CONFIG_EFI_MM_COMM_TEE. I am
> > > > > > > not sure why the hand happens, but one thing we can improve is figure
> > > > > > > out why it hangs and print a useful message.
> > > > > > > There are a number of reasons that might lead to a failure. Is the
> > > > > > > RPMB key programmed on your board? Have a look at this [1] in case it
> > > > > > > helps
> > > > > > >
> > > > > > > >
> > > > > > > > > >
> > > > > > > > > > # tee-supplicant
> > > > > > > > > > D/TC:? 0 tee_ta_init_session_with_context:557 Re-open trusted service
> > > > > > > > > > 7011a688-ddde-4053-a5a9-7b3c4ddf13b8
> > > > > > > > > > D/TC:? 0 load_stmm:297 stmm load address 0x40004000
> > > > > > > > > > D/TC:? 0 spm_handle_scall:859 Received FFA version
> > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > >
> > > > > > > If I had to guess, OP-TEE doesn't store the variables in the RPMB, can
> > > > > > > you compile it with a bit more debugging enabled?
> > > > > > >
> > > > > >
> > > > > > Here is a log with CFG_TEE_CORE_LOG_LEVEL=4, CFG_TEE_CORE_DEBUG=y and
> > > > > > CFG_TEE_TA_LOG_LEVEL=4
> > > > > >
> > > > > > https://paste.centos.org/view/eed83a5b
> > > > > >
> > > > > > At the beginning of the log I see
> > > > > >
> > > > > > D/TC:0 0 check_ta_store:449 TA store: "REE"
> > > > > >
> > > > > > Which looks wrong to me as I built optee with:
> > > > > > CFG_REE_FS=n
> > > > > > CFG_RPMB_FS_DEV_ID=0
> > > > > > CFG_RPMB_FS=y
> > > > >
> > > > > Yes it does look wrong. Our compilation flags are
> > > > > CFG_RPMB_FS=y CFG_RPMB_FS_DEV_ID=0 CFG_RPMB_WRITE_KEY=y
> > > > > CFG_RPMB_TESTKEY=y CFG_REE_FS=n CFG_CORE_ARM64_PA_BITS=48
> > > > > CFG_SCTLR_ALIGNMENT_CHECK=n
> > > > >
> > > >
> > > > Mine are very similar
> > > >
> > > > make CROSS_COMPILE="$CC32" CROSS_COMPILE64="$CC64" \
> > > > PLATFORM=k3-j784s4 CFG_ARM64_core=y CFG_CONSOLE_UART=0x8 \
> > > > CFG_RPMB_FS_DEV_ID=0 CFG_REE_FS=n CFG_RPMB_FS=y \
> > > > CFG_RPMB_WRITE_KEY=y CFG_RPMB_TESTKEY=y \
> > > > CFG_STMM_PATH=BL32_AP_MM.fd \
> > > > CFG_CORE_HEAP_SIZE=524288 CFG_CORE_DYN_SHM=y CFG_SCTLR_ALIGNMENT_CHECK=n \
> > > > CFG_TEE_CORE_LOG_LEVEL=4 CFG_TEE_CORE_DEBUG=y CFG_TEE_TA_LOG_LEVEL=4
> > > >
> > > > There is a difference with CFG_CORE_ARM64_PA_BITS=48 , my platform defines it to
> > > >
> > > > core/arch/arm/plat-k3/conf.mk:$(call force,CFG_CORE_ARM64_PA_BITS,36)
> > > >
> > > > But I don't think this is the problem.
> > > >
> > > > > The testkey etc aren't required if your board has a way of reading the
> > > > > RPMB key from a secure location -- in fact, using the testkey is not
> > > > > secure. Is the RPMB programmed on your board? Also can you make sure
> > > > > CFG_RPMB_FS_DEV_ID needs to be 0? How many sd interfaces your board
> > > > > has?
> > > >
> > > > My board has two interfaces, an eMMC and a SD-card, 0 is indeed the
> > > > eMMC and I'm using the testkey which I assume was programmed the first
> > > > time I booted with all this. Unfortunately I lost the traces. But,
> > > > optee_rpmb works. I.e:
> > > >
> > > > => optee_rpmb write test 1234
> > > > => optee_rpmb read test 4
> > > > Read 4 bytes, value = 1234
> > > >
> > > >
> > > > > IOW in U-Boot does 'mmc dev 0 && mmc info' print information for the
> > > > > RPMB partition?
> > > > >
> > > >
> > > > => mmc dev 0
> > > > switch to partitions #0, OK
> > > > mmc0(part 0) is current device
> > > > => mmc info
> > > > Device: mmc@4f80000
> > > > Manufacturer ID: 13
> > > > OEM: 4e
> > > > Name: G1M15L
> > > > Bus Speed: 200000000
> > > > Mode: HS400 (200MHz)
> > > > Rd Block Len: 512
> > > > MMC version 5.1
> > > > High Capacity: Yes
> > > > Capacity: 29.6 GiB
> > > > Bus Width: 8-bit DDR
> > > > Erase Group Size: 512 KiB
> > > > HC WP Group Size: 8 MiB
> > > > User Capacity: 29.6 GiB WRREL
> > > > Boot Capacity: 31.5 MiB ENH
> > > > RPMB Capacity: 4 MiB ENH
> > > > Boot area 0 is not write protected
> > > > Boot area 1 is not write protected
> > > > => mmc list
> > > > mmc@4f80000: 0 (eMMC)
> > > > mmc@4fb0000: 1
> > > >
> > > > Any interaction with efi gives me the same result (printenv -e,
> > > > efidebug, bootefi ...)
> > >
> > > Yes, that makes sense, because variables fail to initialize -- which
> > > is a core part of bringing up the EFI subsystem.
> > >
> > > Can you recompile op-tee with CFG_RPMB_RESET_FAT and try again?
> > >
> >
> > Unfortunately that didn't help, but I don't see this code being run.
That's weird, look below.
> > Who sets for the first place the uefi variables, is this u-boot
> > writing them to the rpmb? or is optee itself?
U-Boot sets the variables, but it does so via StandAloneMM.
> >
>
> I tried to compare the behaviour between optee_rpmb (works) and
> efidebug (doesn't worrk). I see that the first thing optee_rpmb
> command does is open a session against the TA application, something
> that efidebug doesn't do, shouldn't efidebug do the same to access to
> the rpmb device and read or write the efi variables?
>
That's a bit more complicated and explained to one of the blog posts I
pasted above.
We do open an OP-TEE session, but not for talking to a TA. We send the
messages to StandAloneMM, which then usese OPTEE RPMB APIs to write
the flash.
The weird thing is why OP-TEE does not format your RPMB when compiling
with that flag.
If done correctly, OP-TEE will wipe the RPMB contents the first time
it tries to access it.
Cheers
/Ilias
> => optee_rpmb read test 4
> D/TC:? 0 tee_ta_init_pseudo_ta_session:303 Lookup pseudo TA
> 023f8f1a-292a-432b-8fc4-de8471358067
> D/TC:? 0 ldelf_load_ldelf:110 ldelf load address 0x40007000
> D/LD: ldelf:142 Loading TS 023f8f1a-292a-432b-8fc4-de8471358067
> F/TC:? 0 trace_syscall:147 syscall #3 (syscall_get_property)
> F/TC:? 0 trace_syscall:147 syscall #5 (syscall_open_ta_session)
> D/TC:? 0 ldelf_syscall_open_bin:163 Lookup user TA ELF
> 023f8f1a-292a-432b-8fc4-de8471358067 (early TA)
> D/TC:? 0 ldelf_syscall_open_bin:167 res=0
> F/TC:? 0 trace_syscall:147 syscall #7 (syscall_invoke_ta_command)
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 trace_syscall:147 syscall #11 (syscall_mask_cancellation)
> F/TC:? 0 trace_syscall:147 syscall #7 (syscall_invoke_ta_command)
>
> => efidebug query -bs -rt -nv
> MMC: no card present
> mmc_init: -123, time 2002
> D/TC:? 0 load_stmm:297 stmm load address 0x40004000
> D/TC:? 0 spm_handle_scall:859 Received FFA version
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
>
>
>
> >
> > > Thanks
> > > /Ilias
> > > >
> > > > => efidebug query -bs -rt -nv
> > > > D/TC:? 0 load_stmm:297 stmm load address 0x40004000
> > > > D/TC:? 0 spm_handle_scall:859 Received FFA version
> > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > ... stuck here ... I need to reset the board
> > > >
> > > > Will continue to see if I can get more useful messages
> > > >
> > > > Thanks,
> > > > Enric
> > > >
> > > > > Thanks
> > > > > /Ilias
> > > > > >
> > > > > > I'll try to add some more prints to verify if REE is used as a store
> > > > > > system, I assume this should say something about RPMB. Am I right with
> > > > > > this?
> > > > >
> > > > >
> > > > > >
> > > > > > > > > >
> > > > > > > > > > And tracing the function calls gives me that:
> > > > > > > > > >
> > > > > > > > > > tee_stmm_efi_probe() {
> > > > > > > > > > tee_client_open_context() {
> > > > > > > > > > optee_get_version() {
> > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > } (ret=0xd)
> > > > > > > > > > tee_ctx_match(); (ret=0x1)
> > > > > > > > > > optee_smc_open() {
> > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > optee_open() {
> > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > } (ret=0x0)
> > > > > > > > > > } (ret=0x0)
> > > > > > > > > > } (ret=0xffff000004e71c80)
> > > > > > > > > > tee_client_open_session() {
> > > > > > > > > > optee_open_session() {
> > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > optee_get_msg_arg() {
> > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > tee_shm_get_va(); (ret=0xffff000002909000)
> > > > > > > > > > } (ret=0xffff000002909000)
> > > > > > > > > > tee_session_calc_client_uuid(); (ret=0x0)
> > > > > > > > > > optee_to_msg_param(); (ret=0x0)
> > > > > > > > > > optee_smc_do_call_with_arg() {
> > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > tee_shm_get_va(); (ret=0xffff000002909000)
> > > > > > > > > > tee_shm_get_va(); (ret=0xffff000002909060)
> > > > > > > > > > optee_cq_wait_init(); (ret=0xffff000002e55910)
> > > > > > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > > > > > ... continues sending this forever ...
> > > > > > > > > > ... Hit ^C to stop recording ...
> > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > optee_smccc_smc() {
> > > > > > > > > >
> > > > > > > > > > [1] https://docs.u-boot.org/en/latest/develop/uefi/uefi.html#using-op-tee-for-efi-variables
> > > > > > > > > >
> > > > > > > > > > Thanks in advance,
> > > > > > > > >
> > > > > > > > > The most common problem with this is miscompiling the tee_supplicant
> > > > > > > > > application.
> > > > > > > > > Since we don't know if the system has an RPMB, we emulate it in the
> > > > > > > > > tee_supplicant. How did you get the supplicant and can you check if it
> > > > > > > > > was compiled with RPMB_EMU=0 or 1?
> > > > > > > > >
> > > > > > > >
> > > > > > > > I'm using the tee-supplicant provided by the fedora package which is
> > > > > > > > built with ` -DRPMB_EMU=0`, I think that's correct, right?
> > > > > > > >
> > > > > > >
> > > > > > > Yes, this is correct. We fixed the Fedora package to compile the
> > > > > > > supplicant correctly a while back.
> > > > > > >
> > > > > > > [0] https://www.linaro.org/blog/uefi-secureboot-in-u-boot/
> > > > > > > [1] https://apalos.github.io/Protected%20UEFI%20variables%20with%20U-Boot.html#Protected%20UEFI%20variables%20with%20U-Boot
> > > > > > >
> > > > > > >
> > > > > > > Regards
> > > > > > > /Ilias
> > > > > > > > Thanks,
> > > > > > > > Enric
> > > > > > > >
> > > > > > > > > Thanks
> > > > > > > > > /Ilias
> > > > > > > > >
> > > > > > > > > > Enric
> > > > > > > > > >
> > > > > > > > >
> > > > > > > >
> > > > > > >
> > > > > >
> > > > >
> > > >
> > >
>
^ permalink raw reply [flat|nested] 18+ messages in thread
* Re: optee-based efi runtime variable service on TI j784s4 platforms
2024-11-12 11:50 ` Ilias Apalodimas
@ 2024-11-12 12:45 ` Enric Balletbo i Serra
2024-11-12 13:22 ` Ilias Apalodimas
0 siblings, 1 reply; 18+ messages in thread
From: Enric Balletbo i Serra @ 2024-11-12 12:45 UTC (permalink / raw)
To: Ilias Apalodimas
Cc: Ard Biesheuvel, Sumit Garg, linux-efi, linux-arm-kernel,
linux-kernel, op-tee, Manorit Chawdhry, Udit Kumar,
Menon, Nishanth, Masahisa Kojima
Hi Ilias,
On Tue, Nov 12, 2024 at 12:50 PM Ilias Apalodimas
<ilias.apalodimas@linaro.org> wrote:
>
> Hi Enric
>
> On Tue, 12 Nov 2024 at 13:40, Enric Balletbo i Serra
> <eballetb@redhat.com> wrote:
> >
> > Hi again,
> >
> > On Tue, Nov 12, 2024 at 9:17 AM Enric Balletbo i Serra
> > <eballetb@redhat.com> wrote:
> > >
> > > Hi,
> > >
> > > On Mon, Nov 11, 2024 at 3:26 PM Ilias Apalodimas
> > > <ilias.apalodimas@linaro.org> wrote:
> > > >
> > > > On Mon, 11 Nov 2024 at 16:13, Enric Balletbo i Serra
> > > > <eballetb@redhat.com> wrote:
> > > > >
> > > > > Hi,
> > > > >
> > > > > Thanks a lot for your support.
> > > >
> > > > You're welcome. FWIW I did test this in the past with an AM62x SoC.
> > > >
> > >
> > > Thanks for the info, maybe I can give it a try with my BeaglePlay then...
> > >
> > > > >
> > > > > On Mon, Nov 11, 2024 at 12:01 PM Ilias Apalodimas
> > > > > <ilias.apalodimas@linaro.org> wrote:
> > > > > >
> > > > > > On Mon, 11 Nov 2024 at 10:21, Enric Balletbo i Serra
> > > > > > <eballetb@redhat.com> wrote:
> > > > > > >
> > > > > > > Hi Ilias,
> > > > > > >
> > > > > > > On Sat, Nov 9, 2024 at 1:31 AM Ilias Apalodimas
> > > > > > > <ilias.apalodimas@linaro.org> wrote:
> > > > > > > >
> > > > > > > > On Fri, 8 Nov 2024 at 23:11, Enric Balletbo i Serra <eballetb@redhat.com> wrote:
> > > > > > > > >
> > > > > > > > > Hi Ilias,
> > > > > > > > >
> > > > > > > > > Thanks for your quick answer.
> > > > > > > > >
> > > > > > > > > On Fri, Nov 8, 2024 at 4:48 PM Ilias Apalodimas
> > > > > > > > > <ilias.apalodimas@linaro.org> wrote:
> > > > > > > > > >
> > > > > > > > > > Hi Enric,
> > > > > > > > > >
> > > > > > > > > > On Fri, 8 Nov 2024 at 12:26, Enric Balletbo i Serra <eballetb@redhat.com> wrote:
> > > > > > > > > > >
> > > > > > > > > > > Hi all,
> > > > > > > > > > >
> > > > > > > > > > > I'm looking for any advice/clue to help me to progress on enabling
> > > > > > > > > > > TEE-base EFI Runtime Variable Service on TI a j784s4 platforms.
> > > > > > > > > > >
> > > > > > > > > > > I basically followed the steps described in u-boot documentation [1],
> > > > > > > > > > > I enabled some debugging messages but I think I'm at the point that
> > > > > > > > > > > the problem might be in the StandaloneMM application, and I'm not sure
> > > > > > > > > > > how to debug it.
> > > > > > > > > > >
> > > > > > > > > > > What I see is that when I run the tee-supplicant daemon, it looks like
> > > > > > > > > > > the tee_client_open_session() call loops forever and the tee_stmm_efi
> > > > > > > > > > > driver never ends to probe.
> > > > > > > > > > >
> > > > > > > > > > > With debug enabled I got the following messages.
> > > > > > > > > >
> > > > > > > > > > I assume reading and storing variables already works in U-Boot right?
> > > > > > > > > >
> > > > > > > > >
> > > > > > > > > Reading and storing variables to the RPMB partition in U-Boot works,
> > > > > > > > > that's using the mmc rpmb command from u-boot,
> > > > > > > >
> > > > > > > > Are you talking about env variables? Perhaps you store them in the mmc
> > > > > > > > and not the RPMB partition?
> > > > > > > > There's some information here [0]
> > > > > > > >
> > > > > > > > > But setting
> > > > > > > > > CONFIG_EFI_MM_COMM_TEE=y in u-boot I end with a similar behaviour
> > > > > > > > > (although I'm not able to debug at u-boot level) What I see is that
> > > > > > > > > u-boot gets stuck
> > > > > > > > > when bootefi bootmgr is invoqued. I can also reproduce the issue with
> > > > > > > > > bootefi hello.
> > > > > > > > >
> > > > > > > > > => run bootcmd
> > > > > > > > > Scanning for bootflows in all bootdevs
> > > > > > > > > Seq Method State Uclass Part Name Filename
> > > > > > > > > --- ----------- ------ -------- ---- ------------------------
> > > > > > > > > ----------------
> > > > > > > > > Scanning global bootmeth 'efi_mgr':
> > > > > > > > > ( gets stuck here)
> > > > > > > > >
> > > > > > > > > or
> > > > > > > > >
> > > > > > > > > => bootefi hello
> > > > > > > > > (gets stuck)
> > > > > > > > >
> > > > > > > > > To debug I disabled CONFIG_EFI_MM_COMM_TEE to not get stuck and bypass
> > > > > > > > > the error and go to Linux. My understanding is that
> > > > > > > > > CONFIG_EFI_MM_COMM_TEE is only required to read/write efi variables at
> > > > > > > > > u-boot level but OPTEE is running the StandaloneMM service. Am I
> > > > > > > > > right?
> > > > > > > >
> > > > > > > > U-Boot has two ways of storing EFI variables [0] . You can either
> > > > > > > > store them in a file or the RPMB partition. The correct thing to do,
> > > > > > > > since you want to use the RPMB, is enable CONFIG_EFI_MM_COMM_TEE. I am
> > > > > > > > not sure why the hand happens, but one thing we can improve is figure
> > > > > > > > out why it hangs and print a useful message.
> > > > > > > > There are a number of reasons that might lead to a failure. Is the
> > > > > > > > RPMB key programmed on your board? Have a look at this [1] in case it
> > > > > > > > helps
> > > > > > > >
> > > > > > > > >
> > > > > > > > > > >
> > > > > > > > > > > # tee-supplicant
> > > > > > > > > > > D/TC:? 0 tee_ta_init_session_with_context:557 Re-open trusted service
> > > > > > > > > > > 7011a688-ddde-4053-a5a9-7b3c4ddf13b8
> > > > > > > > > > > D/TC:? 0 load_stmm:297 stmm load address 0x40004000
> > > > > > > > > > > D/TC:? 0 spm_handle_scall:859 Received FFA version
> > > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > >
> > > > > > > > If I had to guess, OP-TEE doesn't store the variables in the RPMB, can
> > > > > > > > you compile it with a bit more debugging enabled?
> > > > > > > >
> > > > > > >
> > > > > > > Here is a log with CFG_TEE_CORE_LOG_LEVEL=4, CFG_TEE_CORE_DEBUG=y and
> > > > > > > CFG_TEE_TA_LOG_LEVEL=4
> > > > > > >
> > > > > > > https://paste.centos.org/view/eed83a5b
> > > > > > >
> > > > > > > At the beginning of the log I see
> > > > > > >
> > > > > > > D/TC:0 0 check_ta_store:449 TA store: "REE"
> > > > > > >
> > > > > > > Which looks wrong to me as I built optee with:
> > > > > > > CFG_REE_FS=n
> > > > > > > CFG_RPMB_FS_DEV_ID=0
> > > > > > > CFG_RPMB_FS=y
> > > > > >
> > > > > > Yes it does look wrong. Our compilation flags are
> > > > > > CFG_RPMB_FS=y CFG_RPMB_FS_DEV_ID=0 CFG_RPMB_WRITE_KEY=y
> > > > > > CFG_RPMB_TESTKEY=y CFG_REE_FS=n CFG_CORE_ARM64_PA_BITS=48
> > > > > > CFG_SCTLR_ALIGNMENT_CHECK=n
> > > > > >
> > > > >
> > > > > Mine are very similar
> > > > >
> > > > > make CROSS_COMPILE="$CC32" CROSS_COMPILE64="$CC64" \
> > > > > PLATFORM=k3-j784s4 CFG_ARM64_core=y CFG_CONSOLE_UART=0x8 \
> > > > > CFG_RPMB_FS_DEV_ID=0 CFG_REE_FS=n CFG_RPMB_FS=y \
> > > > > CFG_RPMB_WRITE_KEY=y CFG_RPMB_TESTKEY=y \
> > > > > CFG_STMM_PATH=BL32_AP_MM.fd \
> > > > > CFG_CORE_HEAP_SIZE=524288 CFG_CORE_DYN_SHM=y CFG_SCTLR_ALIGNMENT_CHECK=n \
> > > > > CFG_TEE_CORE_LOG_LEVEL=4 CFG_TEE_CORE_DEBUG=y CFG_TEE_TA_LOG_LEVEL=4
> > > > >
> > > > > There is a difference with CFG_CORE_ARM64_PA_BITS=48 , my platform defines it to
> > > > >
> > > > > core/arch/arm/plat-k3/conf.mk:$(call force,CFG_CORE_ARM64_PA_BITS,36)
> > > > >
> > > > > But I don't think this is the problem.
> > > > >
> > > > > > The testkey etc aren't required if your board has a way of reading the
> > > > > > RPMB key from a secure location -- in fact, using the testkey is not
> > > > > > secure. Is the RPMB programmed on your board? Also can you make sure
> > > > > > CFG_RPMB_FS_DEV_ID needs to be 0? How many sd interfaces your board
> > > > > > has?
> > > > >
> > > > > My board has two interfaces, an eMMC and a SD-card, 0 is indeed the
> > > > > eMMC and I'm using the testkey which I assume was programmed the first
> > > > > time I booted with all this. Unfortunately I lost the traces. But,
> > > > > optee_rpmb works. I.e:
> > > > >
> > > > > => optee_rpmb write test 1234
> > > > > => optee_rpmb read test 4
> > > > > Read 4 bytes, value = 1234
> > > > >
> > > > >
> > > > > > IOW in U-Boot does 'mmc dev 0 && mmc info' print information for the
> > > > > > RPMB partition?
> > > > > >
> > > > >
> > > > > => mmc dev 0
> > > > > switch to partitions #0, OK
> > > > > mmc0(part 0) is current device
> > > > > => mmc info
> > > > > Device: mmc@4f80000
> > > > > Manufacturer ID: 13
> > > > > OEM: 4e
> > > > > Name: G1M15L
> > > > > Bus Speed: 200000000
> > > > > Mode: HS400 (200MHz)
> > > > > Rd Block Len: 512
> > > > > MMC version 5.1
> > > > > High Capacity: Yes
> > > > > Capacity: 29.6 GiB
> > > > > Bus Width: 8-bit DDR
> > > > > Erase Group Size: 512 KiB
> > > > > HC WP Group Size: 8 MiB
> > > > > User Capacity: 29.6 GiB WRREL
> > > > > Boot Capacity: 31.5 MiB ENH
> > > > > RPMB Capacity: 4 MiB ENH
> > > > > Boot area 0 is not write protected
> > > > > Boot area 1 is not write protected
> > > > > => mmc list
> > > > > mmc@4f80000: 0 (eMMC)
> > > > > mmc@4fb0000: 1
> > > > >
> > > > > Any interaction with efi gives me the same result (printenv -e,
> > > > > efidebug, bootefi ...)
> > > >
> > > > Yes, that makes sense, because variables fail to initialize -- which
> > > > is a core part of bringing up the EFI subsystem.
> > > >
> > > > Can you recompile op-tee with CFG_RPMB_RESET_FAT and try again?
> > > >
> > >
> > > Unfortunately that didn't help, but I don't see this code being run.
>
> That's weird, look below.
>
> > > Who sets for the first place the uefi variables, is this u-boot
> > > writing them to the rpmb? or is optee itself?
>
> U-Boot sets the variables, but it does so via StandAloneMM.
>
> > >
> >
> > I tried to compare the behaviour between optee_rpmb (works) and
> > efidebug (doesn't worrk). I see that the first thing optee_rpmb
> > command does is open a session against the TA application, something
> > that efidebug doesn't do, shouldn't efidebug do the same to access to
> > the rpmb device and read or write the efi variables?
> >
>
> That's a bit more complicated and explained to one of the blog posts I
> pasted above.
> We do open an OP-TEE session, but not for talking to a TA. We send the
> messages to StandAloneMM, which then usese OPTEE RPMB APIs to write
> the flash.
>
> The weird thing is why OP-TEE does not format your RPMB when compiling
> with that flag.
> If done correctly, OP-TEE will wipe the RPMB contents the first time
> it tries to access it.
>
It does if I call optee_rpmb command
E/TC:? 0 rpmb_fs_setup:2143 **** Clearing Storage ****
But I don't see any attempt to write efi variables to the rpmb
partition if I use the normal boot workflow or calling any efi command
from the prompt.
I think I need to read a bit more about all the pieces because I might
miss something.
=> optee_rpmb read test 4
D/TC:? 0 tee_ta_init_pseudo_ta_session:303 Lookup pseudo TA
023f8f1a-292a-432b-8fc4-de8471358067
D/TC:? 0 ldelf_load_ldelf:110 ldelf load address 0x40007000
D/LD: ldelf:142 Loading TS 023f8f1a-292a-432b-8fc4-de8471358067
F/TC:? 0 trace_syscall:147 syscall #3 (syscall_get_property)
F/TC:? 0 trace_syscall:147 syscall #5 (syscall_open_ta_session)
D/TC:? 0 ldelf_syscall_open_bin:135 > ldelf_syscall_open_bin
D/TC:? 0 ldelf_syscall_open_bin:164 Lookup user TA ELF
023f8f1a-292a-432b-8fc4-de8471358067 (early TA)
D/TC:? 0 ldelf_syscall_open_bin:168 res=0
F/TC:? 0 trace_syscall:147 syscall #7 (syscall_invoke_ta_command)
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 trace_syscall:147 syscall #11 (syscall_mask_cancellation)
F/TC:? 0 trace_syscall:147 syscall #7 (syscall_invoke_ta_command)
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 read_compressed:178 492 bytes
F/TC:? 0 trace_syscall:147 syscall #3 (syscall_get_property)
F/TC:? 0 trace_syscall:147 syscall #8 (syscall_check_access_rights)
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 read_compressed:178 1024 bytes
F/TC:? 0 read_compressed:178 532 bytes
F/TC:? 0 read_compressed:178 924 bytes
F/TC:? 0 trace_syscall:147 syscall #8 (syscall_check_access_rights)
F/TC:? 0 read_compressed:178 248 bytes
F/TC:? 0 read_compressed:178 760 bytes
F/TC:? 0 trace_syscall:147 syscall #6 (syscall_close_ta_session)
F/TC:? 0 trace_syscall:147 syscall #3 (syscall_get_property)
D/LD: ldelf:176 ELF (023f8f1a-292a-432b-8fc4-de8471358067) at 0x40048000
F/TC:? 0 trace_syscall:147 syscall #33 (syscall_cryp_random_number_generate)
F/TC:? 0 trace_syscall:147 syscall #8 (syscall_check_access_rights)
F/TC:? 0 trace_syscall:147 syscall #8 (syscall_check_access_rights)
F/TC:? 0 trace_syscall:147 syscall #4 (syscall_get_property_name_to_index)
F/TC:? 0 trace_syscall:147 syscall #8 (syscall_check_access_rights)
F/TC:? 0 trace_syscall:147 syscall #41 (syscall_storage_obj_open)
D/TC:? 0 rpmb_fs_open_internal:2356 >>> rpmb_fs_open_internal
D/TC:? 0 tee_rpmb_init:1205 >>> core/tee/tee_rpmb_fs.c:1205
D/TC:? 0 tee_rpmb_init:1214 >>> core/tee/tee_rpmb_fs.c:1214
D/TC:? 0 tee_rpmb_init:1253 >>> core/tee/tee_rpmb_fs.c:1253
D/TC:? 0 legacy_rpmb_init:1142 Trying legacy RPMB init
D/TC:? 0 rpmb_set_dev_info:1111 RPMB: Syncing device information
D/TC:? 0 rpmb_set_dev_info:1113 RPMB: RPMB size is 32*128 KB
D/TC:? 0 rpmb_set_dev_info:1114 RPMB: Reliable Write Sector Count is 1
D/TC:? 0 rpmb_set_dev_info:1116 RPMB: CID
D/TC:? 0 rpmb_set_dev_info:1117 000000009e93ab30 13 01 4e 47 31 4d 31
35 4c 10 27 91 28 07 a9 00
D/TC:? 0 legacy_rpmb_init:1162 RPMB INIT: Deriving key
D/TC:? 0 tee_rpmb_key_gen:308 RPMB: Using test key
D/TC:? 0 legacy_rpmb_init:1176 RPMB INIT: Verifying Key
F/TC:? 0 plat_prng_add_jitter_entropy:68 0x61
D/TC:? 0 legacy_rpmb_init:1180 Found working RPMB device
D/TC:? 0 tee_rpmb_init:1205 >>> core/tee/tee_rpmb_fs.c:1205
D/TC:? 0 tee_rpmb_init:1214 >>> core/tee/tee_rpmb_fs.c:1214
D/TC:? 0 tee_rpmb_read:1362 Read 1 block at index 0
D/TC:? 0 tee_rpmb_write_blk:1494 Write 1 block at index 0
D/TC:? 0 tee_rpmb_init:1205 >>> core/tee/tee_rpmb_fs.c:1205
D/TC:? 0 tee_rpmb_init:1214 >>> core/tee/tee_rpmb_fs.c:1214
D/TC:? 0 tee_rpmb_init:1205 >>> core/tee/tee_rpmb_fs.c:1205
D/TC:? 0 tee_rpmb_init:1214 >>> core/tee/tee_rpmb_fs.c:1214
D/TC:? 0 tee_rpmb_read:1362 Read 1 block at index 0
E/TC:? 0 rpmb_fs_setup:2143 **** Clearing Storage ****
D/TC:? 0 tee_rpmb_write_blk:1494 Write 1 block at index 2
F/TC:? 0 plat_prng_add_jitter_entropy:68 0xD3
D/TC:? 0 tee_rpmb_read:1362 Read 1 block at index 0
D/TC:? 0 tee_rpmb_write_blk:1494 Write 1 block at index 0
D/TC:? 0 tee_rpmb_read:1362 Read 8 blocks at index 2
F/TC:? 0 dump_fat:1951 flags 0x2, size 0, address 0, filename ''
D/TC:? 0 read_fat:2221 fat_address 0
D/TC:? 0 tee_rpmb_read:1362 Read 8 blocks at index 2
F/TC:? 0 plat_prng_add_jitter_entropy:68 0x18
E/TA: read_persist_value:338 Can't open named object value, res = 0xffff0008
D/TC:? 0 tee_ta_invoke_command:798 Error: ffff0008 of 4
D/TC:? 0 tee_ta_close_session:460 csess 0x9e925a50 id 1
D/TC:? 0 tee_ta_close_session:479 Destroy session
D/TC:? 0 destroy_context:318 Destroy TA ctx (0x9e9259f0)
Failed to read persistent value
> Cheers
> /Ilias
>
> > => optee_rpmb read test 4
> > D/TC:? 0 tee_ta_init_pseudo_ta_session:303 Lookup pseudo TA
> > 023f8f1a-292a-432b-8fc4-de8471358067
> > D/TC:? 0 ldelf_load_ldelf:110 ldelf load address 0x40007000
> > D/LD: ldelf:142 Loading TS 023f8f1a-292a-432b-8fc4-de8471358067
> > F/TC:? 0 trace_syscall:147 syscall #3 (syscall_get_property)
> > F/TC:? 0 trace_syscall:147 syscall #5 (syscall_open_ta_session)
> > D/TC:? 0 ldelf_syscall_open_bin:163 Lookup user TA ELF
> > 023f8f1a-292a-432b-8fc4-de8471358067 (early TA)
> > D/TC:? 0 ldelf_syscall_open_bin:167 res=0
> > F/TC:? 0 trace_syscall:147 syscall #7 (syscall_invoke_ta_command)
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 trace_syscall:147 syscall #11 (syscall_mask_cancellation)
> > F/TC:? 0 trace_syscall:147 syscall #7 (syscall_invoke_ta_command)
> >
> > => efidebug query -bs -rt -nv
> > MMC: no card present
> > mmc_init: -123, time 2002
> > D/TC:? 0 load_stmm:297 stmm load address 0x40004000
> > D/TC:? 0 spm_handle_scall:859 Received FFA version
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> >
> >
> >
> > >
> > > > Thanks
> > > > /Ilias
> > > > >
> > > > > => efidebug query -bs -rt -nv
> > > > > D/TC:? 0 load_stmm:297 stmm load address 0x40004000
> > > > > D/TC:? 0 spm_handle_scall:859 Received FFA version
> > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > ... stuck here ... I need to reset the board
> > > > >
> > > > > Will continue to see if I can get more useful messages
> > > > >
> > > > > Thanks,
> > > > > Enric
> > > > >
> > > > > > Thanks
> > > > > > /Ilias
> > > > > > >
> > > > > > > I'll try to add some more prints to verify if REE is used as a store
> > > > > > > system, I assume this should say something about RPMB. Am I right with
> > > > > > > this?
> > > > > >
> > > > > >
> > > > > > >
> > > > > > > > > > >
> > > > > > > > > > > And tracing the function calls gives me that:
> > > > > > > > > > >
> > > > > > > > > > > tee_stmm_efi_probe() {
> > > > > > > > > > > tee_client_open_context() {
> > > > > > > > > > > optee_get_version() {
> > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > } (ret=0xd)
> > > > > > > > > > > tee_ctx_match(); (ret=0x1)
> > > > > > > > > > > optee_smc_open() {
> > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > optee_open() {
> > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > } (ret=0x0)
> > > > > > > > > > > } (ret=0x0)
> > > > > > > > > > > } (ret=0xffff000004e71c80)
> > > > > > > > > > > tee_client_open_session() {
> > > > > > > > > > > optee_open_session() {
> > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > optee_get_msg_arg() {
> > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > tee_shm_get_va(); (ret=0xffff000002909000)
> > > > > > > > > > > } (ret=0xffff000002909000)
> > > > > > > > > > > tee_session_calc_client_uuid(); (ret=0x0)
> > > > > > > > > > > optee_to_msg_param(); (ret=0x0)
> > > > > > > > > > > optee_smc_do_call_with_arg() {
> > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > tee_shm_get_va(); (ret=0xffff000002909000)
> > > > > > > > > > > tee_shm_get_va(); (ret=0xffff000002909060)
> > > > > > > > > > > optee_cq_wait_init(); (ret=0xffff000002e55910)
> > > > > > > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > > > > > > ... continues sending this forever ...
> > > > > > > > > > > ... Hit ^C to stop recording ...
> > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > optee_smccc_smc() {
> > > > > > > > > > >
> > > > > > > > > > > [1] https://docs.u-boot.org/en/latest/develop/uefi/uefi.html#using-op-tee-for-efi-variables
> > > > > > > > > > >
> > > > > > > > > > > Thanks in advance,
> > > > > > > > > >
> > > > > > > > > > The most common problem with this is miscompiling the tee_supplicant
> > > > > > > > > > application.
> > > > > > > > > > Since we don't know if the system has an RPMB, we emulate it in the
> > > > > > > > > > tee_supplicant. How did you get the supplicant and can you check if it
> > > > > > > > > > was compiled with RPMB_EMU=0 or 1?
> > > > > > > > > >
> > > > > > > > >
> > > > > > > > > I'm using the tee-supplicant provided by the fedora package which is
> > > > > > > > > built with ` -DRPMB_EMU=0`, I think that's correct, right?
> > > > > > > > >
> > > > > > > >
> > > > > > > > Yes, this is correct. We fixed the Fedora package to compile the
> > > > > > > > supplicant correctly a while back.
> > > > > > > >
> > > > > > > > [0] https://www.linaro.org/blog/uefi-secureboot-in-u-boot/
> > > > > > > > [1] https://apalos.github.io/Protected%20UEFI%20variables%20with%20U-Boot.html#Protected%20UEFI%20variables%20with%20U-Boot
> > > > > > > >
> > > > > > > >
> > > > > > > > Regards
> > > > > > > > /Ilias
> > > > > > > > > Thanks,
> > > > > > > > > Enric
> > > > > > > > >
> > > > > > > > > > Thanks
> > > > > > > > > > /Ilias
> > > > > > > > > >
> > > > > > > > > > > Enric
> > > > > > > > > > >
> > > > > > > > > >
> > > > > > > > >
> > > > > > > >
> > > > > > >
> > > > > >
> > > > >
> > > >
> >
>
^ permalink raw reply [flat|nested] 18+ messages in thread
* Re: optee-based efi runtime variable service on TI j784s4 platforms
2024-11-12 12:45 ` Enric Balletbo i Serra
@ 2024-11-12 13:22 ` Ilias Apalodimas
2024-11-12 14:39 ` Enric Balletbo i Serra
0 siblings, 1 reply; 18+ messages in thread
From: Ilias Apalodimas @ 2024-11-12 13:22 UTC (permalink / raw)
To: Enric Balletbo i Serra
Cc: Ard Biesheuvel, Sumit Garg, linux-efi, linux-arm-kernel,
linux-kernel, op-tee, Manorit Chawdhry, Udit Kumar,
Menon, Nishanth, Masahisa Kojima
[...]
> > > > >
> > > >
> > > > Unfortunately that didn't help, but I don't see this code being run.
> >
> > That's weird, look below.
> >
> > > > Who sets for the first place the uefi variables, is this u-boot
> > > > writing them to the rpmb? or is optee itself?
> >
> > U-Boot sets the variables, but it does so via StandAloneMM.
> >
> > > >
> > >
> > > I tried to compare the behaviour between optee_rpmb (works) and
> > > efidebug (doesn't worrk). I see that the first thing optee_rpmb
> > > command does is open a session against the TA application, something
> > > that efidebug doesn't do, shouldn't efidebug do the same to access to
> > > the rpmb device and read or write the efi variables?
> > >
> >
> > That's a bit more complicated and explained to one of the blog posts I
> > pasted above.
> > We do open an OP-TEE session, but not for talking to a TA. We send the
> > messages to StandAloneMM, which then usese OPTEE RPMB APIs to write
> > the flash.
> >
> > The weird thing is why OP-TEE does not format your RPMB when compiling
> > with that flag.
> > If done correctly, OP-TEE will wipe the RPMB contents the first time
> > it tries to access it.
> >
>
> It does if I call optee_rpmb command
>
> E/TC:? 0 rpmb_fs_setup:2143 **** Clearing Storage ****
>
> But I don't see any attempt to write efi variables to the rpmb
> partition if I use the normal boot workflow or calling any efi command
> from the prompt.
>
> I think I need to read a bit more about all the pieces because I might
> miss something.
You don't need the command above to store variables. You need this in
case you need to use the RPMB from the command line.
Do a 'printenv -e && setenv -e -bs -rt -nv test test1 && printenv -e'.
Does that work ?
>
> => optee_rpmb read test 4
> D/TC:? 0 tee_ta_init_pseudo_ta_session:303 Lookup pseudo TA
> 023f8f1a-292a-432b-8fc4-de8471358067
> D/TC:? 0 ldelf_load_ldelf:110 ldelf load address 0x40007000
> D/LD: ldelf:142 Loading TS 023f8f1a-292a-432b-8fc4-de8471358067
> F/TC:? 0 trace_syscall:147 syscall #3 (syscall_get_property)
> F/TC:? 0 trace_syscall:147 syscall #5 (syscall_open_ta_session)
> D/TC:? 0 ldelf_syscall_open_bin:135 > ldelf_syscall_open_bin
> D/TC:? 0 ldelf_syscall_open_bin:164 Lookup user TA ELF
> 023f8f1a-292a-432b-8fc4-de8471358067 (early TA)
> D/TC:? 0 ldelf_syscall_open_bin:168 res=0
> F/TC:? 0 trace_syscall:147 syscall #7 (syscall_invoke_ta_command)
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 trace_syscall:147 syscall #11 (syscall_mask_cancellation)
> F/TC:? 0 trace_syscall:147 syscall #7 (syscall_invoke_ta_command)
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 read_compressed:178 492 bytes
> F/TC:? 0 trace_syscall:147 syscall #3 (syscall_get_property)
> F/TC:? 0 trace_syscall:147 syscall #8 (syscall_check_access_rights)
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 read_compressed:178 1024 bytes
> F/TC:? 0 read_compressed:178 532 bytes
> F/TC:? 0 read_compressed:178 924 bytes
> F/TC:? 0 trace_syscall:147 syscall #8 (syscall_check_access_rights)
> F/TC:? 0 read_compressed:178 248 bytes
> F/TC:? 0 read_compressed:178 760 bytes
> F/TC:? 0 trace_syscall:147 syscall #6 (syscall_close_ta_session)
> F/TC:? 0 trace_syscall:147 syscall #3 (syscall_get_property)
> D/LD: ldelf:176 ELF (023f8f1a-292a-432b-8fc4-de8471358067) at 0x40048000
> F/TC:? 0 trace_syscall:147 syscall #33 (syscall_cryp_random_number_generate)
> F/TC:? 0 trace_syscall:147 syscall #8 (syscall_check_access_rights)
> F/TC:? 0 trace_syscall:147 syscall #8 (syscall_check_access_rights)
> F/TC:? 0 trace_syscall:147 syscall #4 (syscall_get_property_name_to_index)
> F/TC:? 0 trace_syscall:147 syscall #8 (syscall_check_access_rights)
> F/TC:? 0 trace_syscall:147 syscall #41 (syscall_storage_obj_open)
> D/TC:? 0 rpmb_fs_open_internal:2356 >>> rpmb_fs_open_internal
> D/TC:? 0 tee_rpmb_init:1205 >>> core/tee/tee_rpmb_fs.c:1205
> D/TC:? 0 tee_rpmb_init:1214 >>> core/tee/tee_rpmb_fs.c:1214
> D/TC:? 0 tee_rpmb_init:1253 >>> core/tee/tee_rpmb_fs.c:1253
> D/TC:? 0 legacy_rpmb_init:1142 Trying legacy RPMB init
> D/TC:? 0 rpmb_set_dev_info:1111 RPMB: Syncing device information
> D/TC:? 0 rpmb_set_dev_info:1113 RPMB: RPMB size is 32*128 KB
> D/TC:? 0 rpmb_set_dev_info:1114 RPMB: Reliable Write Sector Count is 1
> D/TC:? 0 rpmb_set_dev_info:1116 RPMB: CID
> D/TC:? 0 rpmb_set_dev_info:1117 000000009e93ab30 13 01 4e 47 31 4d 31
> 35 4c 10 27 91 28 07 a9 00
> D/TC:? 0 legacy_rpmb_init:1162 RPMB INIT: Deriving key
> D/TC:? 0 tee_rpmb_key_gen:308 RPMB: Using test key
> D/TC:? 0 legacy_rpmb_init:1176 RPMB INIT: Verifying Key
> F/TC:? 0 plat_prng_add_jitter_entropy:68 0x61
> D/TC:? 0 legacy_rpmb_init:1180 Found working RPMB device
> D/TC:? 0 tee_rpmb_init:1205 >>> core/tee/tee_rpmb_fs.c:1205
> D/TC:? 0 tee_rpmb_init:1214 >>> core/tee/tee_rpmb_fs.c:1214
> D/TC:? 0 tee_rpmb_read:1362 Read 1 block at index 0
> D/TC:? 0 tee_rpmb_write_blk:1494 Write 1 block at index 0
> D/TC:? 0 tee_rpmb_init:1205 >>> core/tee/tee_rpmb_fs.c:1205
> D/TC:? 0 tee_rpmb_init:1214 >>> core/tee/tee_rpmb_fs.c:1214
> D/TC:? 0 tee_rpmb_init:1205 >>> core/tee/tee_rpmb_fs.c:1205
> D/TC:? 0 tee_rpmb_init:1214 >>> core/tee/tee_rpmb_fs.c:1214
> D/TC:? 0 tee_rpmb_read:1362 Read 1 block at index 0
> E/TC:? 0 rpmb_fs_setup:2143 **** Clearing Storage ****
> D/TC:? 0 tee_rpmb_write_blk:1494 Write 1 block at index 2
> F/TC:? 0 plat_prng_add_jitter_entropy:68 0xD3
> D/TC:? 0 tee_rpmb_read:1362 Read 1 block at index 0
> D/TC:? 0 tee_rpmb_write_blk:1494 Write 1 block at index 0
> D/TC:? 0 tee_rpmb_read:1362 Read 8 blocks at index 2
> F/TC:? 0 dump_fat:1951 flags 0x2, size 0, address 0, filename ''
> D/TC:? 0 read_fat:2221 fat_address 0
> D/TC:? 0 tee_rpmb_read:1362 Read 8 blocks at index 2
> F/TC:? 0 plat_prng_add_jitter_entropy:68 0x18
> E/TA: read_persist_value:338 Can't open named object value, res = 0xffff0008
> D/TC:? 0 tee_ta_invoke_command:798 Error: ffff0008 of 4
> D/TC:? 0 tee_ta_close_session:460 csess 0x9e925a50 id 1
> D/TC:? 0 tee_ta_close_session:479 Destroy session
> D/TC:? 0 destroy_context:318 Destroy TA ctx (0x9e9259f0)
> Failed to read persistent value
>
>
>
>
>
>
>
> > Cheers
> > /Ilias
> >
> > > => optee_rpmb read test 4
> > > D/TC:? 0 tee_ta_init_pseudo_ta_session:303 Lookup pseudo TA
> > > 023f8f1a-292a-432b-8fc4-de8471358067
> > > D/TC:? 0 ldelf_load_ldelf:110 ldelf load address 0x40007000
> > > D/LD: ldelf:142 Loading TS 023f8f1a-292a-432b-8fc4-de8471358067
> > > F/TC:? 0 trace_syscall:147 syscall #3 (syscall_get_property)
> > > F/TC:? 0 trace_syscall:147 syscall #5 (syscall_open_ta_session)
> > > D/TC:? 0 ldelf_syscall_open_bin:163 Lookup user TA ELF
> > > 023f8f1a-292a-432b-8fc4-de8471358067 (early TA)
> > > D/TC:? 0 ldelf_syscall_open_bin:167 res=0
> > > F/TC:? 0 trace_syscall:147 syscall #7 (syscall_invoke_ta_command)
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 trace_syscall:147 syscall #11 (syscall_mask_cancellation)
> > > F/TC:? 0 trace_syscall:147 syscall #7 (syscall_invoke_ta_command)
> > >
> > > => efidebug query -bs -rt -nv
> > > MMC: no card present
> > > mmc_init: -123, time 2002
> > > D/TC:? 0 load_stmm:297 stmm load address 0x40004000
> > > D/TC:? 0 spm_handle_scall:859 Received FFA version
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > >
> > >
> > >
> > > >
> > > > > Thanks
> > > > > /Ilias
> > > > > >
> > > > > > => efidebug query -bs -rt -nv
> > > > > > D/TC:? 0 load_stmm:297 stmm load address 0x40004000
> > > > > > D/TC:? 0 spm_handle_scall:859 Received FFA version
> > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > ... stuck here ... I need to reset the board
> > > > > >
> > > > > > Will continue to see if I can get more useful messages
> > > > > >
> > > > > > Thanks,
> > > > > > Enric
> > > > > >
> > > > > > > Thanks
> > > > > > > /Ilias
> > > > > > > >
> > > > > > > > I'll try to add some more prints to verify if REE is used as a store
> > > > > > > > system, I assume this should say something about RPMB. Am I right with
> > > > > > > > this?
> > > > > > >
> > > > > > >
> > > > > > > >
> > > > > > > > > > > >
> > > > > > > > > > > > And tracing the function calls gives me that:
> > > > > > > > > > > >
> > > > > > > > > > > > tee_stmm_efi_probe() {
> > > > > > > > > > > > tee_client_open_context() {
> > > > > > > > > > > > optee_get_version() {
> > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > } (ret=0xd)
> > > > > > > > > > > > tee_ctx_match(); (ret=0x1)
> > > > > > > > > > > > optee_smc_open() {
> > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > optee_open() {
> > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > } (ret=0x0)
> > > > > > > > > > > > } (ret=0x0)
> > > > > > > > > > > > } (ret=0xffff000004e71c80)
> > > > > > > > > > > > tee_client_open_session() {
> > > > > > > > > > > > optee_open_session() {
> > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > optee_get_msg_arg() {
> > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > tee_shm_get_va(); (ret=0xffff000002909000)
> > > > > > > > > > > > } (ret=0xffff000002909000)
> > > > > > > > > > > > tee_session_calc_client_uuid(); (ret=0x0)
> > > > > > > > > > > > optee_to_msg_param(); (ret=0x0)
> > > > > > > > > > > > optee_smc_do_call_with_arg() {
> > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > tee_shm_get_va(); (ret=0xffff000002909000)
> > > > > > > > > > > > tee_shm_get_va(); (ret=0xffff000002909060)
> > > > > > > > > > > > optee_cq_wait_init(); (ret=0xffff000002e55910)
> > > > > > > > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > > > > > > > ... continues sending this forever ...
> > > > > > > > > > > > ... Hit ^C to stop recording ...
> > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > optee_smccc_smc() {
> > > > > > > > > > > >
> > > > > > > > > > > > [1] https://docs.u-boot.org/en/latest/develop/uefi/uefi.html#using-op-tee-for-efi-variables
> > > > > > > > > > > >
> > > > > > > > > > > > Thanks in advance,
> > > > > > > > > > >
> > > > > > > > > > > The most common problem with this is miscompiling the tee_supplicant
> > > > > > > > > > > application.
> > > > > > > > > > > Since we don't know if the system has an RPMB, we emulate it in the
> > > > > > > > > > > tee_supplicant. How did you get the supplicant and can you check if it
> > > > > > > > > > > was compiled with RPMB_EMU=0 or 1?
> > > > > > > > > > >
> > > > > > > > > >
> > > > > > > > > > I'm using the tee-supplicant provided by the fedora package which is
> > > > > > > > > > built with ` -DRPMB_EMU=0`, I think that's correct, right?
> > > > > > > > > >
> > > > > > > > >
> > > > > > > > > Yes, this is correct. We fixed the Fedora package to compile the
> > > > > > > > > supplicant correctly a while back.
> > > > > > > > >
> > > > > > > > > [0] https://www.linaro.org/blog/uefi-secureboot-in-u-boot/
> > > > > > > > > [1] https://apalos.github.io/Protected%20UEFI%20variables%20with%20U-Boot.html#Protected%20UEFI%20variables%20with%20U-Boot
> > > > > > > > >
> > > > > > > > >
> > > > > > > > > Regards
> > > > > > > > > /Ilias
> > > > > > > > > > Thanks,
> > > > > > > > > > Enric
> > > > > > > > > >
> > > > > > > > > > > Thanks
> > > > > > > > > > > /Ilias
> > > > > > > > > > >
> > > > > > > > > > > > Enric
> > > > > > > > > > > >
> > > > > > > > > > >
> > > > > > > > > >
> > > > > > > > >
> > > > > > > >
> > > > > > >
> > > > > >
> > > > >
> > >
> >
>
^ permalink raw reply [flat|nested] 18+ messages in thread
* Re: optee-based efi runtime variable service on TI j784s4 platforms
2024-11-12 13:22 ` Ilias Apalodimas
@ 2024-11-12 14:39 ` Enric Balletbo i Serra
2024-11-12 15:06 ` Ilias Apalodimas
0 siblings, 1 reply; 18+ messages in thread
From: Enric Balletbo i Serra @ 2024-11-12 14:39 UTC (permalink / raw)
To: Ilias Apalodimas
Cc: Ard Biesheuvel, Sumit Garg, linux-efi, linux-arm-kernel,
linux-kernel, op-tee, Manorit Chawdhry, Udit Kumar,
Menon, Nishanth, Masahisa Kojima
On Tue, Nov 12, 2024 at 2:23 PM Ilias Apalodimas
<ilias.apalodimas@linaro.org> wrote:
>
> [...]
>
> > > > > >
> > > > >
> > > > > Unfortunately that didn't help, but I don't see this code being run.
> > >
> > > That's weird, look below.
> > >
> > > > > Who sets for the first place the uefi variables, is this u-boot
> > > > > writing them to the rpmb? or is optee itself?
> > >
> > > U-Boot sets the variables, but it does so via StandAloneMM.
> > >
> > > > >
> > > >
> > > > I tried to compare the behaviour between optee_rpmb (works) and
> > > > efidebug (doesn't worrk). I see that the first thing optee_rpmb
> > > > command does is open a session against the TA application, something
> > > > that efidebug doesn't do, shouldn't efidebug do the same to access to
> > > > the rpmb device and read or write the efi variables?
> > > >
> > >
> > > That's a bit more complicated and explained to one of the blog posts I
> > > pasted above.
> > > We do open an OP-TEE session, but not for talking to a TA. We send the
> > > messages to StandAloneMM, which then usese OPTEE RPMB APIs to write
> > > the flash.
> > >
> > > The weird thing is why OP-TEE does not format your RPMB when compiling
> > > with that flag.
> > > If done correctly, OP-TEE will wipe the RPMB contents the first time
> > > it tries to access it.
> > >
> >
> > It does if I call optee_rpmb command
> >
> > E/TC:? 0 rpmb_fs_setup:2143 **** Clearing Storage ****
> >
> > But I don't see any attempt to write efi variables to the rpmb
> > partition if I use the normal boot workflow or calling any efi command
> > from the prompt.
> >
> > I think I need to read a bit more about all the pieces because I might
> > miss something.
>
> You don't need the command above to store variables. You need this in
> case you need to use the RPMB from the command line.
> Do a 'printenv -e && setenv -e -bs -rt -nv test test1 && printenv -e'.
> Does that work ?
>
No, `printenv -e` gets stuck. This is the log with some debug messages I added.
=> printenv -e
> lib/efi_loader/efi_setup.c:227 Initialize once only
> lib/efi_loader/efi_setup.c:234 Set up console modes
> lib/efi_loader/efi_setup.c:242 Proble block devices to find the ESP
MMC: no card present
mmc_init: -123, time 2002
> lib/efi_loader/efi_setup.c:249 Initialize variable services
> lib/efi_loader/efi_var_mem.c:223 efi_allocate_pages
> lib/efi_loader/efi_var_mem.c:236 efi_create_event
< lib/efi_loader/efi_var_mem.c:244 - ret=0
D/TC:? 0 load_stmm:297 stmm load address 0x40004000
D/TC:? 0 spm_handle_scall:859 Received FFA version
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
D/TC:? 0 spm_handle_scall:867 Received FFA direct request
... stuck here ... traces indicates never outs from the efi_setup, so
looks like hungs
Let me try with BeaglePlay and read a bit more, as I feel I'm a bit
lost right now.
> >
> > => optee_rpmb read test 4
> > D/TC:? 0 tee_ta_init_pseudo_ta_session:303 Lookup pseudo TA
> > 023f8f1a-292a-432b-8fc4-de8471358067
> > D/TC:? 0 ldelf_load_ldelf:110 ldelf load address 0x40007000
> > D/LD: ldelf:142 Loading TS 023f8f1a-292a-432b-8fc4-de8471358067
> > F/TC:? 0 trace_syscall:147 syscall #3 (syscall_get_property)
> > F/TC:? 0 trace_syscall:147 syscall #5 (syscall_open_ta_session)
> > D/TC:? 0 ldelf_syscall_open_bin:135 > ldelf_syscall_open_bin
> > D/TC:? 0 ldelf_syscall_open_bin:164 Lookup user TA ELF
> > 023f8f1a-292a-432b-8fc4-de8471358067 (early TA)
> > D/TC:? 0 ldelf_syscall_open_bin:168 res=0
> > F/TC:? 0 trace_syscall:147 syscall #7 (syscall_invoke_ta_command)
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 trace_syscall:147 syscall #11 (syscall_mask_cancellation)
> > F/TC:? 0 trace_syscall:147 syscall #7 (syscall_invoke_ta_command)
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 read_compressed:178 492 bytes
> > F/TC:? 0 trace_syscall:147 syscall #3 (syscall_get_property)
> > F/TC:? 0 trace_syscall:147 syscall #8 (syscall_check_access_rights)
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 read_compressed:178 1024 bytes
> > F/TC:? 0 read_compressed:178 532 bytes
> > F/TC:? 0 read_compressed:178 924 bytes
> > F/TC:? 0 trace_syscall:147 syscall #8 (syscall_check_access_rights)
> > F/TC:? 0 read_compressed:178 248 bytes
> > F/TC:? 0 read_compressed:178 760 bytes
> > F/TC:? 0 trace_syscall:147 syscall #6 (syscall_close_ta_session)
> > F/TC:? 0 trace_syscall:147 syscall #3 (syscall_get_property)
> > D/LD: ldelf:176 ELF (023f8f1a-292a-432b-8fc4-de8471358067) at 0x40048000
> > F/TC:? 0 trace_syscall:147 syscall #33 (syscall_cryp_random_number_generate)
> > F/TC:? 0 trace_syscall:147 syscall #8 (syscall_check_access_rights)
> > F/TC:? 0 trace_syscall:147 syscall #8 (syscall_check_access_rights)
> > F/TC:? 0 trace_syscall:147 syscall #4 (syscall_get_property_name_to_index)
> > F/TC:? 0 trace_syscall:147 syscall #8 (syscall_check_access_rights)
> > F/TC:? 0 trace_syscall:147 syscall #41 (syscall_storage_obj_open)
> > D/TC:? 0 rpmb_fs_open_internal:2356 >>> rpmb_fs_open_internal
> > D/TC:? 0 tee_rpmb_init:1205 >>> core/tee/tee_rpmb_fs.c:1205
> > D/TC:? 0 tee_rpmb_init:1214 >>> core/tee/tee_rpmb_fs.c:1214
> > D/TC:? 0 tee_rpmb_init:1253 >>> core/tee/tee_rpmb_fs.c:1253
> > D/TC:? 0 legacy_rpmb_init:1142 Trying legacy RPMB init
> > D/TC:? 0 rpmb_set_dev_info:1111 RPMB: Syncing device information
> > D/TC:? 0 rpmb_set_dev_info:1113 RPMB: RPMB size is 32*128 KB
> > D/TC:? 0 rpmb_set_dev_info:1114 RPMB: Reliable Write Sector Count is 1
> > D/TC:? 0 rpmb_set_dev_info:1116 RPMB: CID
> > D/TC:? 0 rpmb_set_dev_info:1117 000000009e93ab30 13 01 4e 47 31 4d 31
> > 35 4c 10 27 91 28 07 a9 00
> > D/TC:? 0 legacy_rpmb_init:1162 RPMB INIT: Deriving key
> > D/TC:? 0 tee_rpmb_key_gen:308 RPMB: Using test key
> > D/TC:? 0 legacy_rpmb_init:1176 RPMB INIT: Verifying Key
> > F/TC:? 0 plat_prng_add_jitter_entropy:68 0x61
> > D/TC:? 0 legacy_rpmb_init:1180 Found working RPMB device
> > D/TC:? 0 tee_rpmb_init:1205 >>> core/tee/tee_rpmb_fs.c:1205
> > D/TC:? 0 tee_rpmb_init:1214 >>> core/tee/tee_rpmb_fs.c:1214
> > D/TC:? 0 tee_rpmb_read:1362 Read 1 block at index 0
> > D/TC:? 0 tee_rpmb_write_blk:1494 Write 1 block at index 0
> > D/TC:? 0 tee_rpmb_init:1205 >>> core/tee/tee_rpmb_fs.c:1205
> > D/TC:? 0 tee_rpmb_init:1214 >>> core/tee/tee_rpmb_fs.c:1214
> > D/TC:? 0 tee_rpmb_init:1205 >>> core/tee/tee_rpmb_fs.c:1205
> > D/TC:? 0 tee_rpmb_init:1214 >>> core/tee/tee_rpmb_fs.c:1214
> > D/TC:? 0 tee_rpmb_read:1362 Read 1 block at index 0
> > E/TC:? 0 rpmb_fs_setup:2143 **** Clearing Storage ****
> > D/TC:? 0 tee_rpmb_write_blk:1494 Write 1 block at index 2
> > F/TC:? 0 plat_prng_add_jitter_entropy:68 0xD3
> > D/TC:? 0 tee_rpmb_read:1362 Read 1 block at index 0
> > D/TC:? 0 tee_rpmb_write_blk:1494 Write 1 block at index 0
> > D/TC:? 0 tee_rpmb_read:1362 Read 8 blocks at index 2
> > F/TC:? 0 dump_fat:1951 flags 0x2, size 0, address 0, filename ''
> > D/TC:? 0 read_fat:2221 fat_address 0
> > D/TC:? 0 tee_rpmb_read:1362 Read 8 blocks at index 2
> > F/TC:? 0 plat_prng_add_jitter_entropy:68 0x18
> > E/TA: read_persist_value:338 Can't open named object value, res = 0xffff0008
> > D/TC:? 0 tee_ta_invoke_command:798 Error: ffff0008 of 4
> > D/TC:? 0 tee_ta_close_session:460 csess 0x9e925a50 id 1
> > D/TC:? 0 tee_ta_close_session:479 Destroy session
> > D/TC:? 0 destroy_context:318 Destroy TA ctx (0x9e9259f0)
> > Failed to read persistent value
> >
> >
> >
> >
> >
> >
> >
> > > Cheers
> > > /Ilias
> > >
> > > > => optee_rpmb read test 4
> > > > D/TC:? 0 tee_ta_init_pseudo_ta_session:303 Lookup pseudo TA
> > > > 023f8f1a-292a-432b-8fc4-de8471358067
> > > > D/TC:? 0 ldelf_load_ldelf:110 ldelf load address 0x40007000
> > > > D/LD: ldelf:142 Loading TS 023f8f1a-292a-432b-8fc4-de8471358067
> > > > F/TC:? 0 trace_syscall:147 syscall #3 (syscall_get_property)
> > > > F/TC:? 0 trace_syscall:147 syscall #5 (syscall_open_ta_session)
> > > > D/TC:? 0 ldelf_syscall_open_bin:163 Lookup user TA ELF
> > > > 023f8f1a-292a-432b-8fc4-de8471358067 (early TA)
> > > > D/TC:? 0 ldelf_syscall_open_bin:167 res=0
> > > > F/TC:? 0 trace_syscall:147 syscall #7 (syscall_invoke_ta_command)
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 trace_syscall:147 syscall #11 (syscall_mask_cancellation)
> > > > F/TC:? 0 trace_syscall:147 syscall #7 (syscall_invoke_ta_command)
> > > >
> > > > => efidebug query -bs -rt -nv
> > > > MMC: no card present
> > > > mmc_init: -123, time 2002
> > > > D/TC:? 0 load_stmm:297 stmm load address 0x40004000
> > > > D/TC:? 0 spm_handle_scall:859 Received FFA version
> > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > >
> > > >
> > > >
> > > > >
> > > > > > Thanks
> > > > > > /Ilias
> > > > > > >
> > > > > > > => efidebug query -bs -rt -nv
> > > > > > > D/TC:? 0 load_stmm:297 stmm load address 0x40004000
> > > > > > > D/TC:? 0 spm_handle_scall:859 Received FFA version
> > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > ... stuck here ... I need to reset the board
> > > > > > >
> > > > > > > Will continue to see if I can get more useful messages
> > > > > > >
> > > > > > > Thanks,
> > > > > > > Enric
> > > > > > >
> > > > > > > > Thanks
> > > > > > > > /Ilias
> > > > > > > > >
> > > > > > > > > I'll try to add some more prints to verify if REE is used as a store
> > > > > > > > > system, I assume this should say something about RPMB. Am I right with
> > > > > > > > > this?
> > > > > > > >
> > > > > > > >
> > > > > > > > >
> > > > > > > > > > > > >
> > > > > > > > > > > > > And tracing the function calls gives me that:
> > > > > > > > > > > > >
> > > > > > > > > > > > > tee_stmm_efi_probe() {
> > > > > > > > > > > > > tee_client_open_context() {
> > > > > > > > > > > > > optee_get_version() {
> > > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > > } (ret=0xd)
> > > > > > > > > > > > > tee_ctx_match(); (ret=0x1)
> > > > > > > > > > > > > optee_smc_open() {
> > > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > > optee_open() {
> > > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > > } (ret=0x0)
> > > > > > > > > > > > > } (ret=0x0)
> > > > > > > > > > > > > } (ret=0xffff000004e71c80)
> > > > > > > > > > > > > tee_client_open_session() {
> > > > > > > > > > > > > optee_open_session() {
> > > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > > optee_get_msg_arg() {
> > > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > > tee_shm_get_va(); (ret=0xffff000002909000)
> > > > > > > > > > > > > } (ret=0xffff000002909000)
> > > > > > > > > > > > > tee_session_calc_client_uuid(); (ret=0x0)
> > > > > > > > > > > > > optee_to_msg_param(); (ret=0x0)
> > > > > > > > > > > > > optee_smc_do_call_with_arg() {
> > > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > > tee_shm_get_va(); (ret=0xffff000002909000)
> > > > > > > > > > > > > tee_shm_get_va(); (ret=0xffff000002909060)
> > > > > > > > > > > > > optee_cq_wait_init(); (ret=0xffff000002e55910)
> > > > > > > > > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > > > > > > > > ... continues sending this forever ...
> > > > > > > > > > > > > ... Hit ^C to stop recording ...
> > > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > > optee_smccc_smc() {
> > > > > > > > > > > > >
> > > > > > > > > > > > > [1] https://docs.u-boot.org/en/latest/develop/uefi/uefi.html#using-op-tee-for-efi-variables
> > > > > > > > > > > > >
> > > > > > > > > > > > > Thanks in advance,
> > > > > > > > > > > >
> > > > > > > > > > > > The most common problem with this is miscompiling the tee_supplicant
> > > > > > > > > > > > application.
> > > > > > > > > > > > Since we don't know if the system has an RPMB, we emulate it in the
> > > > > > > > > > > > tee_supplicant. How did you get the supplicant and can you check if it
> > > > > > > > > > > > was compiled with RPMB_EMU=0 or 1?
> > > > > > > > > > > >
> > > > > > > > > > >
> > > > > > > > > > > I'm using the tee-supplicant provided by the fedora package which is
> > > > > > > > > > > built with ` -DRPMB_EMU=0`, I think that's correct, right?
> > > > > > > > > > >
> > > > > > > > > >
> > > > > > > > > > Yes, this is correct. We fixed the Fedora package to compile the
> > > > > > > > > > supplicant correctly a while back.
> > > > > > > > > >
> > > > > > > > > > [0] https://www.linaro.org/blog/uefi-secureboot-in-u-boot/
> > > > > > > > > > [1] https://apalos.github.io/Protected%20UEFI%20variables%20with%20U-Boot.html#Protected%20UEFI%20variables%20with%20U-Boot
> > > > > > > > > >
> > > > > > > > > >
> > > > > > > > > > Regards
> > > > > > > > > > /Ilias
> > > > > > > > > > > Thanks,
> > > > > > > > > > > Enric
> > > > > > > > > > >
> > > > > > > > > > > > Thanks
> > > > > > > > > > > > /Ilias
> > > > > > > > > > > >
> > > > > > > > > > > > > Enric
> > > > > > > > > > > > >
> > > > > > > > > > > >
> > > > > > > > > > >
> > > > > > > > > >
> > > > > > > > >
> > > > > > > >
> > > > > > >
> > > > > >
> > > >
> > >
> >
>
^ permalink raw reply [flat|nested] 18+ messages in thread
* Re: optee-based efi runtime variable service on TI j784s4 platforms
2024-11-12 14:39 ` Enric Balletbo i Serra
@ 2024-11-12 15:06 ` Ilias Apalodimas
2024-11-12 16:03 ` Enric Balletbo i Serra
0 siblings, 1 reply; 18+ messages in thread
From: Ilias Apalodimas @ 2024-11-12 15:06 UTC (permalink / raw)
To: Enric Balletbo i Serra
Cc: Ard Biesheuvel, Sumit Garg, linux-efi, linux-arm-kernel,
linux-kernel, op-tee, Manorit Chawdhry, Udit Kumar,
Menon, Nishanth, Masahisa Kojima
On Tue, 12 Nov 2024 at 16:39, Enric Balletbo i Serra
<eballetb@redhat.com> wrote:
>
> On Tue, Nov 12, 2024 at 2:23 PM Ilias Apalodimas
> <ilias.apalodimas@linaro.org> wrote:
> >
> > [...]
> >
> > > > > > >
> > > > > >
> > > > > > Unfortunately that didn't help, but I don't see this code being run.
> > > >
> > > > That's weird, look below.
> > > >
> > > > > > Who sets for the first place the uefi variables, is this u-boot
> > > > > > writing them to the rpmb? or is optee itself?
> > > >
> > > > U-Boot sets the variables, but it does so via StandAloneMM.
> > > >
> > > > > >
> > > > >
> > > > > I tried to compare the behaviour between optee_rpmb (works) and
> > > > > efidebug (doesn't worrk). I see that the first thing optee_rpmb
> > > > > command does is open a session against the TA application, something
> > > > > that efidebug doesn't do, shouldn't efidebug do the same to access to
> > > > > the rpmb device and read or write the efi variables?
> > > > >
> > > >
> > > > That's a bit more complicated and explained to one of the blog posts I
> > > > pasted above.
> > > > We do open an OP-TEE session, but not for talking to a TA. We send the
> > > > messages to StandAloneMM, which then usese OPTEE RPMB APIs to write
> > > > the flash.
> > > >
> > > > The weird thing is why OP-TEE does not format your RPMB when compiling
> > > > with that flag.
> > > > If done correctly, OP-TEE will wipe the RPMB contents the first time
> > > > it tries to access it.
> > > >
> > >
> > > It does if I call optee_rpmb command
> > >
> > > E/TC:? 0 rpmb_fs_setup:2143 **** Clearing Storage ****
> > >
> > > But I don't see any attempt to write efi variables to the rpmb
> > > partition if I use the normal boot workflow or calling any efi command
> > > from the prompt.
> > >
> > > I think I need to read a bit more about all the pieces because I might
> > > miss something.
> >
> > You don't need the command above to store variables. You need this in
> > case you need to use the RPMB from the command line.
> > Do a 'printenv -e && setenv -e -bs -rt -nv test test1 && printenv -e'.
> > Does that work ?
> >
>
> No, `printenv -e` gets stuck. This is the log with some debug messages I added.
>
> => printenv -e
> > lib/efi_loader/efi_setup.c:227 Initialize once only
> > lib/efi_loader/efi_setup.c:234 Set up console modes
> > lib/efi_loader/efi_setup.c:242 Proble block devices to find the ESP
> MMC: no card present
> mmc_init: -123, time 2002
> > lib/efi_loader/efi_setup.c:249 Initialize variable services
> > lib/efi_loader/efi_var_mem.c:223 efi_allocate_pages
> > lib/efi_loader/efi_var_mem.c:236 efi_create_event
> < lib/efi_loader/efi_var_mem.c:244 - ret=0
> D/TC:? 0 load_stmm:297 stmm load address 0x40004000
Please try again with the FAT reset config flag in OP-TEE and without
doing any reads and writes from the U-Boot console
> D/TC:? 0 spm_handle_scall:859 Received FFA version
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> ... stuck here ... traces indicates never outs from the efi_setup, so
> looks like hungs
>
> Let me try with BeaglePlay and read a bit more, as I feel I'm a bit
> lost right now.
Sure, let me know if you need anything else.
/Ilias
>
> > >
> > > => optee_rpmb read test 4
> > > D/TC:? 0 tee_ta_init_pseudo_ta_session:303 Lookup pseudo TA
> > > 023f8f1a-292a-432b-8fc4-de8471358067
> > > D/TC:? 0 ldelf_load_ldelf:110 ldelf load address 0x40007000
> > > D/LD: ldelf:142 Loading TS 023f8f1a-292a-432b-8fc4-de8471358067
> > > F/TC:? 0 trace_syscall:147 syscall #3 (syscall_get_property)
> > > F/TC:? 0 trace_syscall:147 syscall #5 (syscall_open_ta_session)
> > > D/TC:? 0 ldelf_syscall_open_bin:135 > ldelf_syscall_open_bin
> > > D/TC:? 0 ldelf_syscall_open_bin:164 Lookup user TA ELF
> > > 023f8f1a-292a-432b-8fc4-de8471358067 (early TA)
> > > D/TC:? 0 ldelf_syscall_open_bin:168 res=0
> > > F/TC:? 0 trace_syscall:147 syscall #7 (syscall_invoke_ta_command)
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 trace_syscall:147 syscall #11 (syscall_mask_cancellation)
> > > F/TC:? 0 trace_syscall:147 syscall #7 (syscall_invoke_ta_command)
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 read_compressed:178 492 bytes
> > > F/TC:? 0 trace_syscall:147 syscall #3 (syscall_get_property)
> > > F/TC:? 0 trace_syscall:147 syscall #8 (syscall_check_access_rights)
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 read_compressed:178 1024 bytes
> > > F/TC:? 0 read_compressed:178 532 bytes
> > > F/TC:? 0 read_compressed:178 924 bytes
> > > F/TC:? 0 trace_syscall:147 syscall #8 (syscall_check_access_rights)
> > > F/TC:? 0 read_compressed:178 248 bytes
> > > F/TC:? 0 read_compressed:178 760 bytes
> > > F/TC:? 0 trace_syscall:147 syscall #6 (syscall_close_ta_session)
> > > F/TC:? 0 trace_syscall:147 syscall #3 (syscall_get_property)
> > > D/LD: ldelf:176 ELF (023f8f1a-292a-432b-8fc4-de8471358067) at 0x40048000
> > > F/TC:? 0 trace_syscall:147 syscall #33 (syscall_cryp_random_number_generate)
> > > F/TC:? 0 trace_syscall:147 syscall #8 (syscall_check_access_rights)
> > > F/TC:? 0 trace_syscall:147 syscall #8 (syscall_check_access_rights)
> > > F/TC:? 0 trace_syscall:147 syscall #4 (syscall_get_property_name_to_index)
> > > F/TC:? 0 trace_syscall:147 syscall #8 (syscall_check_access_rights)
> > > F/TC:? 0 trace_syscall:147 syscall #41 (syscall_storage_obj_open)
> > > D/TC:? 0 rpmb_fs_open_internal:2356 >>> rpmb_fs_open_internal
> > > D/TC:? 0 tee_rpmb_init:1205 >>> core/tee/tee_rpmb_fs.c:1205
> > > D/TC:? 0 tee_rpmb_init:1214 >>> core/tee/tee_rpmb_fs.c:1214
> > > D/TC:? 0 tee_rpmb_init:1253 >>> core/tee/tee_rpmb_fs.c:1253
> > > D/TC:? 0 legacy_rpmb_init:1142 Trying legacy RPMB init
> > > D/TC:? 0 rpmb_set_dev_info:1111 RPMB: Syncing device information
> > > D/TC:? 0 rpmb_set_dev_info:1113 RPMB: RPMB size is 32*128 KB
> > > D/TC:? 0 rpmb_set_dev_info:1114 RPMB: Reliable Write Sector Count is 1
> > > D/TC:? 0 rpmb_set_dev_info:1116 RPMB: CID
> > > D/TC:? 0 rpmb_set_dev_info:1117 000000009e93ab30 13 01 4e 47 31 4d 31
> > > 35 4c 10 27 91 28 07 a9 00
> > > D/TC:? 0 legacy_rpmb_init:1162 RPMB INIT: Deriving key
> > > D/TC:? 0 tee_rpmb_key_gen:308 RPMB: Using test key
> > > D/TC:? 0 legacy_rpmb_init:1176 RPMB INIT: Verifying Key
> > > F/TC:? 0 plat_prng_add_jitter_entropy:68 0x61
> > > D/TC:? 0 legacy_rpmb_init:1180 Found working RPMB device
> > > D/TC:? 0 tee_rpmb_init:1205 >>> core/tee/tee_rpmb_fs.c:1205
> > > D/TC:? 0 tee_rpmb_init:1214 >>> core/tee/tee_rpmb_fs.c:1214
> > > D/TC:? 0 tee_rpmb_read:1362 Read 1 block at index 0
> > > D/TC:? 0 tee_rpmb_write_blk:1494 Write 1 block at index 0
> > > D/TC:? 0 tee_rpmb_init:1205 >>> core/tee/tee_rpmb_fs.c:1205
> > > D/TC:? 0 tee_rpmb_init:1214 >>> core/tee/tee_rpmb_fs.c:1214
> > > D/TC:? 0 tee_rpmb_init:1205 >>> core/tee/tee_rpmb_fs.c:1205
> > > D/TC:? 0 tee_rpmb_init:1214 >>> core/tee/tee_rpmb_fs.c:1214
> > > D/TC:? 0 tee_rpmb_read:1362 Read 1 block at index 0
> > > E/TC:? 0 rpmb_fs_setup:2143 **** Clearing Storage ****
> > > D/TC:? 0 tee_rpmb_write_blk:1494 Write 1 block at index 2
> > > F/TC:? 0 plat_prng_add_jitter_entropy:68 0xD3
> > > D/TC:? 0 tee_rpmb_read:1362 Read 1 block at index 0
> > > D/TC:? 0 tee_rpmb_write_blk:1494 Write 1 block at index 0
> > > D/TC:? 0 tee_rpmb_read:1362 Read 8 blocks at index 2
> > > F/TC:? 0 dump_fat:1951 flags 0x2, size 0, address 0, filename ''
> > > D/TC:? 0 read_fat:2221 fat_address 0
> > > D/TC:? 0 tee_rpmb_read:1362 Read 8 blocks at index 2
> > > F/TC:? 0 plat_prng_add_jitter_entropy:68 0x18
> > > E/TA: read_persist_value:338 Can't open named object value, res = 0xffff0008
> > > D/TC:? 0 tee_ta_invoke_command:798 Error: ffff0008 of 4
> > > D/TC:? 0 tee_ta_close_session:460 csess 0x9e925a50 id 1
> > > D/TC:? 0 tee_ta_close_session:479 Destroy session
> > > D/TC:? 0 destroy_context:318 Destroy TA ctx (0x9e9259f0)
> > > Failed to read persistent value
> > >
> > >
> > >
> > >
> > >
> > >
> > >
> > > > Cheers
> > > > /Ilias
> > > >
> > > > > => optee_rpmb read test 4
> > > > > D/TC:? 0 tee_ta_init_pseudo_ta_session:303 Lookup pseudo TA
> > > > > 023f8f1a-292a-432b-8fc4-de8471358067
> > > > > D/TC:? 0 ldelf_load_ldelf:110 ldelf load address 0x40007000
> > > > > D/LD: ldelf:142 Loading TS 023f8f1a-292a-432b-8fc4-de8471358067
> > > > > F/TC:? 0 trace_syscall:147 syscall #3 (syscall_get_property)
> > > > > F/TC:? 0 trace_syscall:147 syscall #5 (syscall_open_ta_session)
> > > > > D/TC:? 0 ldelf_syscall_open_bin:163 Lookup user TA ELF
> > > > > 023f8f1a-292a-432b-8fc4-de8471358067 (early TA)
> > > > > D/TC:? 0 ldelf_syscall_open_bin:167 res=0
> > > > > F/TC:? 0 trace_syscall:147 syscall #7 (syscall_invoke_ta_command)
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 trace_syscall:147 syscall #11 (syscall_mask_cancellation)
> > > > > F/TC:? 0 trace_syscall:147 syscall #7 (syscall_invoke_ta_command)
> > > > >
> > > > > => efidebug query -bs -rt -nv
> > > > > MMC: no card present
> > > > > mmc_init: -123, time 2002
> > > > > D/TC:? 0 load_stmm:297 stmm load address 0x40004000
> > > > > D/TC:? 0 spm_handle_scall:859 Received FFA version
> > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > >
> > > > >
> > > > >
> > > > > >
> > > > > > > Thanks
> > > > > > > /Ilias
> > > > > > > >
> > > > > > > > => efidebug query -bs -rt -nv
> > > > > > > > D/TC:? 0 load_stmm:297 stmm load address 0x40004000
> > > > > > > > D/TC:? 0 spm_handle_scall:859 Received FFA version
> > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > ... stuck here ... I need to reset the board
> > > > > > > >
> > > > > > > > Will continue to see if I can get more useful messages
> > > > > > > >
> > > > > > > > Thanks,
> > > > > > > > Enric
> > > > > > > >
> > > > > > > > > Thanks
> > > > > > > > > /Ilias
> > > > > > > > > >
> > > > > > > > > > I'll try to add some more prints to verify if REE is used as a store
> > > > > > > > > > system, I assume this should say something about RPMB. Am I right with
> > > > > > > > > > this?
> > > > > > > > >
> > > > > > > > >
> > > > > > > > > >
> > > > > > > > > > > > > >
> > > > > > > > > > > > > > And tracing the function calls gives me that:
> > > > > > > > > > > > > >
> > > > > > > > > > > > > > tee_stmm_efi_probe() {
> > > > > > > > > > > > > > tee_client_open_context() {
> > > > > > > > > > > > > > optee_get_version() {
> > > > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > > > } (ret=0xd)
> > > > > > > > > > > > > > tee_ctx_match(); (ret=0x1)
> > > > > > > > > > > > > > optee_smc_open() {
> > > > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > > > optee_open() {
> > > > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > > > } (ret=0x0)
> > > > > > > > > > > > > > } (ret=0x0)
> > > > > > > > > > > > > > } (ret=0xffff000004e71c80)
> > > > > > > > > > > > > > tee_client_open_session() {
> > > > > > > > > > > > > > optee_open_session() {
> > > > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > > > optee_get_msg_arg() {
> > > > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > > > tee_shm_get_va(); (ret=0xffff000002909000)
> > > > > > > > > > > > > > } (ret=0xffff000002909000)
> > > > > > > > > > > > > > tee_session_calc_client_uuid(); (ret=0x0)
> > > > > > > > > > > > > > optee_to_msg_param(); (ret=0x0)
> > > > > > > > > > > > > > optee_smc_do_call_with_arg() {
> > > > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > > > tee_shm_get_va(); (ret=0xffff000002909000)
> > > > > > > > > > > > > > tee_shm_get_va(); (ret=0xffff000002909060)
> > > > > > > > > > > > > > optee_cq_wait_init(); (ret=0xffff000002e55910)
> > > > > > > > > > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > > > > > > > > > ... continues sending this forever ...
> > > > > > > > > > > > > > ... Hit ^C to stop recording ...
> > > > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > > > optee_smccc_smc() {
> > > > > > > > > > > > > >
> > > > > > > > > > > > > > [1] https://docs.u-boot.org/en/latest/develop/uefi/uefi.html#using-op-tee-for-efi-variables
> > > > > > > > > > > > > >
> > > > > > > > > > > > > > Thanks in advance,
> > > > > > > > > > > > >
> > > > > > > > > > > > > The most common problem with this is miscompiling the tee_supplicant
> > > > > > > > > > > > > application.
> > > > > > > > > > > > > Since we don't know if the system has an RPMB, we emulate it in the
> > > > > > > > > > > > > tee_supplicant. How did you get the supplicant and can you check if it
> > > > > > > > > > > > > was compiled with RPMB_EMU=0 or 1?
> > > > > > > > > > > > >
> > > > > > > > > > > >
> > > > > > > > > > > > I'm using the tee-supplicant provided by the fedora package which is
> > > > > > > > > > > > built with ` -DRPMB_EMU=0`, I think that's correct, right?
> > > > > > > > > > > >
> > > > > > > > > > >
> > > > > > > > > > > Yes, this is correct. We fixed the Fedora package to compile the
> > > > > > > > > > > supplicant correctly a while back.
> > > > > > > > > > >
> > > > > > > > > > > [0] https://www.linaro.org/blog/uefi-secureboot-in-u-boot/
> > > > > > > > > > > [1] https://apalos.github.io/Protected%20UEFI%20variables%20with%20U-Boot.html#Protected%20UEFI%20variables%20with%20U-Boot
> > > > > > > > > > >
> > > > > > > > > > >
> > > > > > > > > > > Regards
> > > > > > > > > > > /Ilias
> > > > > > > > > > > > Thanks,
> > > > > > > > > > > > Enric
> > > > > > > > > > > >
> > > > > > > > > > > > > Thanks
> > > > > > > > > > > > > /Ilias
> > > > > > > > > > > > >
> > > > > > > > > > > > > > Enric
> > > > > > > > > > > > > >
> > > > > > > > > > > > >
> > > > > > > > > > > >
> > > > > > > > > > >
> > > > > > > > > >
> > > > > > > > >
> > > > > > > >
> > > > > > >
> > > > >
> > > >
> > >
> >
>
^ permalink raw reply [flat|nested] 18+ messages in thread
* Re: optee-based efi runtime variable service on TI j784s4 platforms
2024-11-12 15:06 ` Ilias Apalodimas
@ 2024-11-12 16:03 ` Enric Balletbo i Serra
2024-11-12 17:47 ` Enric Balletbo i Serra
0 siblings, 1 reply; 18+ messages in thread
From: Enric Balletbo i Serra @ 2024-11-12 16:03 UTC (permalink / raw)
To: Ilias Apalodimas
Cc: Ard Biesheuvel, Sumit Garg, linux-efi, linux-arm-kernel,
linux-kernel, op-tee, Manorit Chawdhry, Udit Kumar,
Menon, Nishanth, Masahisa Kojima
On Tue, Nov 12, 2024 at 4:07 PM Ilias Apalodimas
<ilias.apalodimas@linaro.org> wrote:
>
> On Tue, 12 Nov 2024 at 16:39, Enric Balletbo i Serra
> <eballetb@redhat.com> wrote:
> >
> > On Tue, Nov 12, 2024 at 2:23 PM Ilias Apalodimas
> > <ilias.apalodimas@linaro.org> wrote:
> > >
> > > [...]
> > >
> > > > > > > >
> > > > > > >
> > > > > > > Unfortunately that didn't help, but I don't see this code being run.
> > > > >
> > > > > That's weird, look below.
> > > > >
> > > > > > > Who sets for the first place the uefi variables, is this u-boot
> > > > > > > writing them to the rpmb? or is optee itself?
> > > > >
> > > > > U-Boot sets the variables, but it does so via StandAloneMM.
> > > > >
> > > > > > >
> > > > > >
> > > > > > I tried to compare the behaviour between optee_rpmb (works) and
> > > > > > efidebug (doesn't worrk). I see that the first thing optee_rpmb
> > > > > > command does is open a session against the TA application, something
> > > > > > that efidebug doesn't do, shouldn't efidebug do the same to access to
> > > > > > the rpmb device and read or write the efi variables?
> > > > > >
> > > > >
> > > > > That's a bit more complicated and explained to one of the blog posts I
> > > > > pasted above.
> > > > > We do open an OP-TEE session, but not for talking to a TA. We send the
> > > > > messages to StandAloneMM, which then usese OPTEE RPMB APIs to write
> > > > > the flash.
> > > > >
> > > > > The weird thing is why OP-TEE does not format your RPMB when compiling
> > > > > with that flag.
> > > > > If done correctly, OP-TEE will wipe the RPMB contents the first time
> > > > > it tries to access it.
> > > > >
> > > >
> > > > It does if I call optee_rpmb command
> > > >
> > > > E/TC:? 0 rpmb_fs_setup:2143 **** Clearing Storage ****
> > > >
> > > > But I don't see any attempt to write efi variables to the rpmb
> > > > partition if I use the normal boot workflow or calling any efi command
> > > > from the prompt.
> > > >
> > > > I think I need to read a bit more about all the pieces because I might
> > > > miss something.
> > >
> > > You don't need the command above to store variables. You need this in
> > > case you need to use the RPMB from the command line.
> > > Do a 'printenv -e && setenv -e -bs -rt -nv test test1 && printenv -e'.
> > > Does that work ?
> > >
> >
> > No, `printenv -e` gets stuck. This is the log with some debug messages I added.
> >
> > => printenv -e
> > > lib/efi_loader/efi_setup.c:227 Initialize once only
> > > lib/efi_loader/efi_setup.c:234 Set up console modes
> > > lib/efi_loader/efi_setup.c:242 Proble block devices to find the ESP
> > MMC: no card present
> > mmc_init: -123, time 2002
> > > lib/efi_loader/efi_setup.c:249 Initialize variable services
> > > lib/efi_loader/efi_var_mem.c:223 efi_allocate_pages
> > > lib/efi_loader/efi_var_mem.c:236 efi_create_event
> > < lib/efi_loader/efi_var_mem.c:244 - ret=0
> > D/TC:? 0 load_stmm:297 stmm load address 0x40004000
>
> Please try again with the FAT reset config flag in OP-TEE and without
> doing any reads and writes from the U-Boot console
>
> > D/TC:? 0 spm_handle_scall:859 Received FFA version
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > ... stuck here ... traces indicates never outs from the efi_setup, so
> > looks like hungs
> >
> > Let me try with BeaglePlay and read a bit more, as I feel I'm a bit
> > lost right now.
>
> Sure, let me know if you need anything else.
>
Same behaviour on BeaglePlay, so either it's currently broken or I'm
making the same mistake in my process on both boards.
Ilias, by chance, do you have in which versions did you test?
Thanks,
Enric
> /Ilias
> >
> > > >
> > > > => optee_rpmb read test 4
> > > > D/TC:? 0 tee_ta_init_pseudo_ta_session:303 Lookup pseudo TA
> > > > 023f8f1a-292a-432b-8fc4-de8471358067
> > > > D/TC:? 0 ldelf_load_ldelf:110 ldelf load address 0x40007000
> > > > D/LD: ldelf:142 Loading TS 023f8f1a-292a-432b-8fc4-de8471358067
> > > > F/TC:? 0 trace_syscall:147 syscall #3 (syscall_get_property)
> > > > F/TC:? 0 trace_syscall:147 syscall #5 (syscall_open_ta_session)
> > > > D/TC:? 0 ldelf_syscall_open_bin:135 > ldelf_syscall_open_bin
> > > > D/TC:? 0 ldelf_syscall_open_bin:164 Lookup user TA ELF
> > > > 023f8f1a-292a-432b-8fc4-de8471358067 (early TA)
> > > > D/TC:? 0 ldelf_syscall_open_bin:168 res=0
> > > > F/TC:? 0 trace_syscall:147 syscall #7 (syscall_invoke_ta_command)
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 trace_syscall:147 syscall #11 (syscall_mask_cancellation)
> > > > F/TC:? 0 trace_syscall:147 syscall #7 (syscall_invoke_ta_command)
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 read_compressed:178 492 bytes
> > > > F/TC:? 0 trace_syscall:147 syscall #3 (syscall_get_property)
> > > > F/TC:? 0 trace_syscall:147 syscall #8 (syscall_check_access_rights)
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > F/TC:? 0 read_compressed:178 532 bytes
> > > > F/TC:? 0 read_compressed:178 924 bytes
> > > > F/TC:? 0 trace_syscall:147 syscall #8 (syscall_check_access_rights)
> > > > F/TC:? 0 read_compressed:178 248 bytes
> > > > F/TC:? 0 read_compressed:178 760 bytes
> > > > F/TC:? 0 trace_syscall:147 syscall #6 (syscall_close_ta_session)
> > > > F/TC:? 0 trace_syscall:147 syscall #3 (syscall_get_property)
> > > > D/LD: ldelf:176 ELF (023f8f1a-292a-432b-8fc4-de8471358067) at 0x40048000
> > > > F/TC:? 0 trace_syscall:147 syscall #33 (syscall_cryp_random_number_generate)
> > > > F/TC:? 0 trace_syscall:147 syscall #8 (syscall_check_access_rights)
> > > > F/TC:? 0 trace_syscall:147 syscall #8 (syscall_check_access_rights)
> > > > F/TC:? 0 trace_syscall:147 syscall #4 (syscall_get_property_name_to_index)
> > > > F/TC:? 0 trace_syscall:147 syscall #8 (syscall_check_access_rights)
> > > > F/TC:? 0 trace_syscall:147 syscall #41 (syscall_storage_obj_open)
> > > > D/TC:? 0 rpmb_fs_open_internal:2356 >>> rpmb_fs_open_internal
> > > > D/TC:? 0 tee_rpmb_init:1205 >>> core/tee/tee_rpmb_fs.c:1205
> > > > D/TC:? 0 tee_rpmb_init:1214 >>> core/tee/tee_rpmb_fs.c:1214
> > > > D/TC:? 0 tee_rpmb_init:1253 >>> core/tee/tee_rpmb_fs.c:1253
> > > > D/TC:? 0 legacy_rpmb_init:1142 Trying legacy RPMB init
> > > > D/TC:? 0 rpmb_set_dev_info:1111 RPMB: Syncing device information
> > > > D/TC:? 0 rpmb_set_dev_info:1113 RPMB: RPMB size is 32*128 KB
> > > > D/TC:? 0 rpmb_set_dev_info:1114 RPMB: Reliable Write Sector Count is 1
> > > > D/TC:? 0 rpmb_set_dev_info:1116 RPMB: CID
> > > > D/TC:? 0 rpmb_set_dev_info:1117 000000009e93ab30 13 01 4e 47 31 4d 31
> > > > 35 4c 10 27 91 28 07 a9 00
> > > > D/TC:? 0 legacy_rpmb_init:1162 RPMB INIT: Deriving key
> > > > D/TC:? 0 tee_rpmb_key_gen:308 RPMB: Using test key
> > > > D/TC:? 0 legacy_rpmb_init:1176 RPMB INIT: Verifying Key
> > > > F/TC:? 0 plat_prng_add_jitter_entropy:68 0x61
> > > > D/TC:? 0 legacy_rpmb_init:1180 Found working RPMB device
> > > > D/TC:? 0 tee_rpmb_init:1205 >>> core/tee/tee_rpmb_fs.c:1205
> > > > D/TC:? 0 tee_rpmb_init:1214 >>> core/tee/tee_rpmb_fs.c:1214
> > > > D/TC:? 0 tee_rpmb_read:1362 Read 1 block at index 0
> > > > D/TC:? 0 tee_rpmb_write_blk:1494 Write 1 block at index 0
> > > > D/TC:? 0 tee_rpmb_init:1205 >>> core/tee/tee_rpmb_fs.c:1205
> > > > D/TC:? 0 tee_rpmb_init:1214 >>> core/tee/tee_rpmb_fs.c:1214
> > > > D/TC:? 0 tee_rpmb_init:1205 >>> core/tee/tee_rpmb_fs.c:1205
> > > > D/TC:? 0 tee_rpmb_init:1214 >>> core/tee/tee_rpmb_fs.c:1214
> > > > D/TC:? 0 tee_rpmb_read:1362 Read 1 block at index 0
> > > > E/TC:? 0 rpmb_fs_setup:2143 **** Clearing Storage ****
> > > > D/TC:? 0 tee_rpmb_write_blk:1494 Write 1 block at index 2
> > > > F/TC:? 0 plat_prng_add_jitter_entropy:68 0xD3
> > > > D/TC:? 0 tee_rpmb_read:1362 Read 1 block at index 0
> > > > D/TC:? 0 tee_rpmb_write_blk:1494 Write 1 block at index 0
> > > > D/TC:? 0 tee_rpmb_read:1362 Read 8 blocks at index 2
> > > > F/TC:? 0 dump_fat:1951 flags 0x2, size 0, address 0, filename ''
> > > > D/TC:? 0 read_fat:2221 fat_address 0
> > > > D/TC:? 0 tee_rpmb_read:1362 Read 8 blocks at index 2
> > > > F/TC:? 0 plat_prng_add_jitter_entropy:68 0x18
> > > > E/TA: read_persist_value:338 Can't open named object value, res = 0xffff0008
> > > > D/TC:? 0 tee_ta_invoke_command:798 Error: ffff0008 of 4
> > > > D/TC:? 0 tee_ta_close_session:460 csess 0x9e925a50 id 1
> > > > D/TC:? 0 tee_ta_close_session:479 Destroy session
> > > > D/TC:? 0 destroy_context:318 Destroy TA ctx (0x9e9259f0)
> > > > Failed to read persistent value
> > > >
> > > >
> > > >
> > > >
> > > >
> > > >
> > > >
> > > > > Cheers
> > > > > /Ilias
> > > > >
> > > > > > => optee_rpmb read test 4
> > > > > > D/TC:? 0 tee_ta_init_pseudo_ta_session:303 Lookup pseudo TA
> > > > > > 023f8f1a-292a-432b-8fc4-de8471358067
> > > > > > D/TC:? 0 ldelf_load_ldelf:110 ldelf load address 0x40007000
> > > > > > D/LD: ldelf:142 Loading TS 023f8f1a-292a-432b-8fc4-de8471358067
> > > > > > F/TC:? 0 trace_syscall:147 syscall #3 (syscall_get_property)
> > > > > > F/TC:? 0 trace_syscall:147 syscall #5 (syscall_open_ta_session)
> > > > > > D/TC:? 0 ldelf_syscall_open_bin:163 Lookup user TA ELF
> > > > > > 023f8f1a-292a-432b-8fc4-de8471358067 (early TA)
> > > > > > D/TC:? 0 ldelf_syscall_open_bin:167 res=0
> > > > > > F/TC:? 0 trace_syscall:147 syscall #7 (syscall_invoke_ta_command)
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 trace_syscall:147 syscall #11 (syscall_mask_cancellation)
> > > > > > F/TC:? 0 trace_syscall:147 syscall #7 (syscall_invoke_ta_command)
> > > > > >
> > > > > > => efidebug query -bs -rt -nv
> > > > > > MMC: no card present
> > > > > > mmc_init: -123, time 2002
> > > > > > D/TC:? 0 load_stmm:297 stmm load address 0x40004000
> > > > > > D/TC:? 0 spm_handle_scall:859 Received FFA version
> > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > >
> > > > > >
> > > > > >
> > > > > > >
> > > > > > > > Thanks
> > > > > > > > /Ilias
> > > > > > > > >
> > > > > > > > > => efidebug query -bs -rt -nv
> > > > > > > > > D/TC:? 0 load_stmm:297 stmm load address 0x40004000
> > > > > > > > > D/TC:? 0 spm_handle_scall:859 Received FFA version
> > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > ... stuck here ... I need to reset the board
> > > > > > > > >
> > > > > > > > > Will continue to see if I can get more useful messages
> > > > > > > > >
> > > > > > > > > Thanks,
> > > > > > > > > Enric
> > > > > > > > >
> > > > > > > > > > Thanks
> > > > > > > > > > /Ilias
> > > > > > > > > > >
> > > > > > > > > > > I'll try to add some more prints to verify if REE is used as a store
> > > > > > > > > > > system, I assume this should say something about RPMB. Am I right with
> > > > > > > > > > > this?
> > > > > > > > > >
> > > > > > > > > >
> > > > > > > > > > >
> > > > > > > > > > > > > > >
> > > > > > > > > > > > > > > And tracing the function calls gives me that:
> > > > > > > > > > > > > > >
> > > > > > > > > > > > > > > tee_stmm_efi_probe() {
> > > > > > > > > > > > > > > tee_client_open_context() {
> > > > > > > > > > > > > > > optee_get_version() {
> > > > > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > > > > } (ret=0xd)
> > > > > > > > > > > > > > > tee_ctx_match(); (ret=0x1)
> > > > > > > > > > > > > > > optee_smc_open() {
> > > > > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > > > > optee_open() {
> > > > > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > > > > } (ret=0x0)
> > > > > > > > > > > > > > > } (ret=0x0)
> > > > > > > > > > > > > > > } (ret=0xffff000004e71c80)
> > > > > > > > > > > > > > > tee_client_open_session() {
> > > > > > > > > > > > > > > optee_open_session() {
> > > > > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > > > > optee_get_msg_arg() {
> > > > > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > > > > tee_shm_get_va(); (ret=0xffff000002909000)
> > > > > > > > > > > > > > > } (ret=0xffff000002909000)
> > > > > > > > > > > > > > > tee_session_calc_client_uuid(); (ret=0x0)
> > > > > > > > > > > > > > > optee_to_msg_param(); (ret=0x0)
> > > > > > > > > > > > > > > optee_smc_do_call_with_arg() {
> > > > > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > > > > tee_shm_get_va(); (ret=0xffff000002909000)
> > > > > > > > > > > > > > > tee_shm_get_va(); (ret=0xffff000002909060)
> > > > > > > > > > > > > > > optee_cq_wait_init(); (ret=0xffff000002e55910)
> > > > > > > > > > > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > > > > > > > > > > ... continues sending this forever ...
> > > > > > > > > > > > > > > ... Hit ^C to stop recording ...
> > > > > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > > > > optee_smccc_smc() {
> > > > > > > > > > > > > > >
> > > > > > > > > > > > > > > [1] https://docs.u-boot.org/en/latest/develop/uefi/uefi.html#using-op-tee-for-efi-variables
> > > > > > > > > > > > > > >
> > > > > > > > > > > > > > > Thanks in advance,
> > > > > > > > > > > > > >
> > > > > > > > > > > > > > The most common problem with this is miscompiling the tee_supplicant
> > > > > > > > > > > > > > application.
> > > > > > > > > > > > > > Since we don't know if the system has an RPMB, we emulate it in the
> > > > > > > > > > > > > > tee_supplicant. How did you get the supplicant and can you check if it
> > > > > > > > > > > > > > was compiled with RPMB_EMU=0 or 1?
> > > > > > > > > > > > > >
> > > > > > > > > > > > >
> > > > > > > > > > > > > I'm using the tee-supplicant provided by the fedora package which is
> > > > > > > > > > > > > built with ` -DRPMB_EMU=0`, I think that's correct, right?
> > > > > > > > > > > > >
> > > > > > > > > > > >
> > > > > > > > > > > > Yes, this is correct. We fixed the Fedora package to compile the
> > > > > > > > > > > > supplicant correctly a while back.
> > > > > > > > > > > >
> > > > > > > > > > > > [0] https://www.linaro.org/blog/uefi-secureboot-in-u-boot/
> > > > > > > > > > > > [1] https://apalos.github.io/Protected%20UEFI%20variables%20with%20U-Boot.html#Protected%20UEFI%20variables%20with%20U-Boot
> > > > > > > > > > > >
> > > > > > > > > > > >
> > > > > > > > > > > > Regards
> > > > > > > > > > > > /Ilias
> > > > > > > > > > > > > Thanks,
> > > > > > > > > > > > > Enric
> > > > > > > > > > > > >
> > > > > > > > > > > > > > Thanks
> > > > > > > > > > > > > > /Ilias
> > > > > > > > > > > > > >
> > > > > > > > > > > > > > > Enric
> > > > > > > > > > > > > > >
> > > > > > > > > > > > > >
> > > > > > > > > > > > >
> > > > > > > > > > > >
> > > > > > > > > > >
> > > > > > > > > >
> > > > > > > > >
> > > > > > > >
> > > > > >
> > > > >
> > > >
> > >
> >
>
^ permalink raw reply [flat|nested] 18+ messages in thread
* Re: optee-based efi runtime variable service on TI j784s4 platforms
2024-11-12 16:03 ` Enric Balletbo i Serra
@ 2024-11-12 17:47 ` Enric Balletbo i Serra
2024-11-12 19:21 ` Ilias Apalodimas
0 siblings, 1 reply; 18+ messages in thread
From: Enric Balletbo i Serra @ 2024-11-12 17:47 UTC (permalink / raw)
To: Ilias Apalodimas
Cc: Ard Biesheuvel, Sumit Garg, linux-efi, linux-arm-kernel,
linux-kernel, op-tee, Manorit Chawdhry, Udit Kumar,
Menon, Nishanth, Masahisa Kojima
Hi Ilias,
On Tue, Nov 12, 2024 at 5:03 PM Enric Balletbo i Serra
<eballetb@redhat.com> wrote:
>
> On Tue, Nov 12, 2024 at 4:07 PM Ilias Apalodimas
> <ilias.apalodimas@linaro.org> wrote:
> >
> > On Tue, 12 Nov 2024 at 16:39, Enric Balletbo i Serra
> > <eballetb@redhat.com> wrote:
> > >
> > > On Tue, Nov 12, 2024 at 2:23 PM Ilias Apalodimas
> > > <ilias.apalodimas@linaro.org> wrote:
> > > >
> > > > [...]
> > > >
> > > > > > > > >
> > > > > > > >
> > > > > > > > Unfortunately that didn't help, but I don't see this code being run.
> > > > > >
> > > > > > That's weird, look below.
> > > > > >
> > > > > > > > Who sets for the first place the uefi variables, is this u-boot
> > > > > > > > writing them to the rpmb? or is optee itself?
> > > > > >
> > > > > > U-Boot sets the variables, but it does so via StandAloneMM.
> > > > > >
> > > > > > > >
> > > > > > >
> > > > > > > I tried to compare the behaviour between optee_rpmb (works) and
> > > > > > > efidebug (doesn't worrk). I see that the first thing optee_rpmb
> > > > > > > command does is open a session against the TA application, something
> > > > > > > that efidebug doesn't do, shouldn't efidebug do the same to access to
> > > > > > > the rpmb device and read or write the efi variables?
> > > > > > >
> > > > > >
> > > > > > That's a bit more complicated and explained to one of the blog posts I
> > > > > > pasted above.
> > > > > > We do open an OP-TEE session, but not for talking to a TA. We send the
> > > > > > messages to StandAloneMM, which then usese OPTEE RPMB APIs to write
> > > > > > the flash.
> > > > > >
> > > > > > The weird thing is why OP-TEE does not format your RPMB when compiling
> > > > > > with that flag.
> > > > > > If done correctly, OP-TEE will wipe the RPMB contents the first time
> > > > > > it tries to access it.
> > > > > >
> > > > >
> > > > > It does if I call optee_rpmb command
> > > > >
> > > > > E/TC:? 0 rpmb_fs_setup:2143 **** Clearing Storage ****
> > > > >
> > > > > But I don't see any attempt to write efi variables to the rpmb
> > > > > partition if I use the normal boot workflow or calling any efi command
> > > > > from the prompt.
> > > > >
> > > > > I think I need to read a bit more about all the pieces because I might
> > > > > miss something.
> > > >
> > > > You don't need the command above to store variables. You need this in
> > > > case you need to use the RPMB from the command line.
> > > > Do a 'printenv -e && setenv -e -bs -rt -nv test test1 && printenv -e'.
> > > > Does that work ?
> > > >
> > >
> > > No, `printenv -e` gets stuck. This is the log with some debug messages I added.
> > >
> > > => printenv -e
> > > > lib/efi_loader/efi_setup.c:227 Initialize once only
> > > > lib/efi_loader/efi_setup.c:234 Set up console modes
> > > > lib/efi_loader/efi_setup.c:242 Proble block devices to find the ESP
> > > MMC: no card present
> > > mmc_init: -123, time 2002
> > > > lib/efi_loader/efi_setup.c:249 Initialize variable services
> > > > lib/efi_loader/efi_var_mem.c:223 efi_allocate_pages
> > > > lib/efi_loader/efi_var_mem.c:236 efi_create_event
> > > < lib/efi_loader/efi_var_mem.c:244 - ret=0
> > > D/TC:? 0 load_stmm:297 stmm load address 0x40004000
> >
> > Please try again with the FAT reset config flag in OP-TEE and without
> > doing any reads and writes from the U-Boot console
> >
> > > D/TC:? 0 spm_handle_scall:859 Received FFA version
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > ... stuck here ... traces indicates never outs from the efi_setup, so
> > > looks like hungs
> > >
> > > Let me try with BeaglePlay and read a bit more, as I feel I'm a bit
> > > lost right now.
> >
> > Sure, let me know if you need anything else.
> >
>
> Same behaviour on BeaglePlay, so either it's currently broken or I'm
> making the same mistake in my process on both boards.
>
> Ilias, by chance, do you have in which versions did you test?
>
So it looks like it is a problem with edk2 and/or edk2-platform, since
reverting those repositories back to September, things started to look
a lot better and I'm able to see en UEFI variables programmed.
FWIW I just found this project [1] from you, thank you for it. Turns
out that it is easy to reproduce the issue I'm facing even with qemu.
I'll try to bisect what's the problem and report properly.
Thank you very much for your guidance and support.
Cheers,
Enric
[1] https://git.linaro.org/people/ilias.apalodimas/efi_optee_variables.git/
> Thanks,
> Enric
> > /Ilias
> > >
> > > > >
> > > > > => optee_rpmb read test 4
> > > > > D/TC:? 0 tee_ta_init_pseudo_ta_session:303 Lookup pseudo TA
> > > > > 023f8f1a-292a-432b-8fc4-de8471358067
> > > > > D/TC:? 0 ldelf_load_ldelf:110 ldelf load address 0x40007000
> > > > > D/LD: ldelf:142 Loading TS 023f8f1a-292a-432b-8fc4-de8471358067
> > > > > F/TC:? 0 trace_syscall:147 syscall #3 (syscall_get_property)
> > > > > F/TC:? 0 trace_syscall:147 syscall #5 (syscall_open_ta_session)
> > > > > D/TC:? 0 ldelf_syscall_open_bin:135 > ldelf_syscall_open_bin
> > > > > D/TC:? 0 ldelf_syscall_open_bin:164 Lookup user TA ELF
> > > > > 023f8f1a-292a-432b-8fc4-de8471358067 (early TA)
> > > > > D/TC:? 0 ldelf_syscall_open_bin:168 res=0
> > > > > F/TC:? 0 trace_syscall:147 syscall #7 (syscall_invoke_ta_command)
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 trace_syscall:147 syscall #11 (syscall_mask_cancellation)
> > > > > F/TC:? 0 trace_syscall:147 syscall #7 (syscall_invoke_ta_command)
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 read_compressed:178 492 bytes
> > > > > F/TC:? 0 trace_syscall:147 syscall #3 (syscall_get_property)
> > > > > F/TC:? 0 trace_syscall:147 syscall #8 (syscall_check_access_rights)
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > F/TC:? 0 read_compressed:178 532 bytes
> > > > > F/TC:? 0 read_compressed:178 924 bytes
> > > > > F/TC:? 0 trace_syscall:147 syscall #8 (syscall_check_access_rights)
> > > > > F/TC:? 0 read_compressed:178 248 bytes
> > > > > F/TC:? 0 read_compressed:178 760 bytes
> > > > > F/TC:? 0 trace_syscall:147 syscall #6 (syscall_close_ta_session)
> > > > > F/TC:? 0 trace_syscall:147 syscall #3 (syscall_get_property)
> > > > > D/LD: ldelf:176 ELF (023f8f1a-292a-432b-8fc4-de8471358067) at 0x40048000
> > > > > F/TC:? 0 trace_syscall:147 syscall #33 (syscall_cryp_random_number_generate)
> > > > > F/TC:? 0 trace_syscall:147 syscall #8 (syscall_check_access_rights)
> > > > > F/TC:? 0 trace_syscall:147 syscall #8 (syscall_check_access_rights)
> > > > > F/TC:? 0 trace_syscall:147 syscall #4 (syscall_get_property_name_to_index)
> > > > > F/TC:? 0 trace_syscall:147 syscall #8 (syscall_check_access_rights)
> > > > > F/TC:? 0 trace_syscall:147 syscall #41 (syscall_storage_obj_open)
> > > > > D/TC:? 0 rpmb_fs_open_internal:2356 >>> rpmb_fs_open_internal
> > > > > D/TC:? 0 tee_rpmb_init:1205 >>> core/tee/tee_rpmb_fs.c:1205
> > > > > D/TC:? 0 tee_rpmb_init:1214 >>> core/tee/tee_rpmb_fs.c:1214
> > > > > D/TC:? 0 tee_rpmb_init:1253 >>> core/tee/tee_rpmb_fs.c:1253
> > > > > D/TC:? 0 legacy_rpmb_init:1142 Trying legacy RPMB init
> > > > > D/TC:? 0 rpmb_set_dev_info:1111 RPMB: Syncing device information
> > > > > D/TC:? 0 rpmb_set_dev_info:1113 RPMB: RPMB size is 32*128 KB
> > > > > D/TC:? 0 rpmb_set_dev_info:1114 RPMB: Reliable Write Sector Count is 1
> > > > > D/TC:? 0 rpmb_set_dev_info:1116 RPMB: CID
> > > > > D/TC:? 0 rpmb_set_dev_info:1117 000000009e93ab30 13 01 4e 47 31 4d 31
> > > > > 35 4c 10 27 91 28 07 a9 00
> > > > > D/TC:? 0 legacy_rpmb_init:1162 RPMB INIT: Deriving key
> > > > > D/TC:? 0 tee_rpmb_key_gen:308 RPMB: Using test key
> > > > > D/TC:? 0 legacy_rpmb_init:1176 RPMB INIT: Verifying Key
> > > > > F/TC:? 0 plat_prng_add_jitter_entropy:68 0x61
> > > > > D/TC:? 0 legacy_rpmb_init:1180 Found working RPMB device
> > > > > D/TC:? 0 tee_rpmb_init:1205 >>> core/tee/tee_rpmb_fs.c:1205
> > > > > D/TC:? 0 tee_rpmb_init:1214 >>> core/tee/tee_rpmb_fs.c:1214
> > > > > D/TC:? 0 tee_rpmb_read:1362 Read 1 block at index 0
> > > > > D/TC:? 0 tee_rpmb_write_blk:1494 Write 1 block at index 0
> > > > > D/TC:? 0 tee_rpmb_init:1205 >>> core/tee/tee_rpmb_fs.c:1205
> > > > > D/TC:? 0 tee_rpmb_init:1214 >>> core/tee/tee_rpmb_fs.c:1214
> > > > > D/TC:? 0 tee_rpmb_init:1205 >>> core/tee/tee_rpmb_fs.c:1205
> > > > > D/TC:? 0 tee_rpmb_init:1214 >>> core/tee/tee_rpmb_fs.c:1214
> > > > > D/TC:? 0 tee_rpmb_read:1362 Read 1 block at index 0
> > > > > E/TC:? 0 rpmb_fs_setup:2143 **** Clearing Storage ****
> > > > > D/TC:? 0 tee_rpmb_write_blk:1494 Write 1 block at index 2
> > > > > F/TC:? 0 plat_prng_add_jitter_entropy:68 0xD3
> > > > > D/TC:? 0 tee_rpmb_read:1362 Read 1 block at index 0
> > > > > D/TC:? 0 tee_rpmb_write_blk:1494 Write 1 block at index 0
> > > > > D/TC:? 0 tee_rpmb_read:1362 Read 8 blocks at index 2
> > > > > F/TC:? 0 dump_fat:1951 flags 0x2, size 0, address 0, filename ''
> > > > > D/TC:? 0 read_fat:2221 fat_address 0
> > > > > D/TC:? 0 tee_rpmb_read:1362 Read 8 blocks at index 2
> > > > > F/TC:? 0 plat_prng_add_jitter_entropy:68 0x18
> > > > > E/TA: read_persist_value:338 Can't open named object value, res = 0xffff0008
> > > > > D/TC:? 0 tee_ta_invoke_command:798 Error: ffff0008 of 4
> > > > > D/TC:? 0 tee_ta_close_session:460 csess 0x9e925a50 id 1
> > > > > D/TC:? 0 tee_ta_close_session:479 Destroy session
> > > > > D/TC:? 0 destroy_context:318 Destroy TA ctx (0x9e9259f0)
> > > > > Failed to read persistent value
> > > > >
> > > > >
> > > > >
> > > > >
> > > > >
> > > > >
> > > > >
> > > > > > Cheers
> > > > > > /Ilias
> > > > > >
> > > > > > > => optee_rpmb read test 4
> > > > > > > D/TC:? 0 tee_ta_init_pseudo_ta_session:303 Lookup pseudo TA
> > > > > > > 023f8f1a-292a-432b-8fc4-de8471358067
> > > > > > > D/TC:? 0 ldelf_load_ldelf:110 ldelf load address 0x40007000
> > > > > > > D/LD: ldelf:142 Loading TS 023f8f1a-292a-432b-8fc4-de8471358067
> > > > > > > F/TC:? 0 trace_syscall:147 syscall #3 (syscall_get_property)
> > > > > > > F/TC:? 0 trace_syscall:147 syscall #5 (syscall_open_ta_session)
> > > > > > > D/TC:? 0 ldelf_syscall_open_bin:163 Lookup user TA ELF
> > > > > > > 023f8f1a-292a-432b-8fc4-de8471358067 (early TA)
> > > > > > > D/TC:? 0 ldelf_syscall_open_bin:167 res=0
> > > > > > > F/TC:? 0 trace_syscall:147 syscall #7 (syscall_invoke_ta_command)
> > > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > > F/TC:? 0 trace_syscall:147 syscall #11 (syscall_mask_cancellation)
> > > > > > > F/TC:? 0 trace_syscall:147 syscall #7 (syscall_invoke_ta_command)
> > > > > > >
> > > > > > > => efidebug query -bs -rt -nv
> > > > > > > MMC: no card present
> > > > > > > mmc_init: -123, time 2002
> > > > > > > D/TC:? 0 load_stmm:297 stmm load address 0x40004000
> > > > > > > D/TC:? 0 spm_handle_scall:859 Received FFA version
> > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > >
> > > > > > >
> > > > > > >
> > > > > > > >
> > > > > > > > > Thanks
> > > > > > > > > /Ilias
> > > > > > > > > >
> > > > > > > > > > => efidebug query -bs -rt -nv
> > > > > > > > > > D/TC:? 0 load_stmm:297 stmm load address 0x40004000
> > > > > > > > > > D/TC:? 0 spm_handle_scall:859 Received FFA version
> > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > ... stuck here ... I need to reset the board
> > > > > > > > > >
> > > > > > > > > > Will continue to see if I can get more useful messages
> > > > > > > > > >
> > > > > > > > > > Thanks,
> > > > > > > > > > Enric
> > > > > > > > > >
> > > > > > > > > > > Thanks
> > > > > > > > > > > /Ilias
> > > > > > > > > > > >
> > > > > > > > > > > > I'll try to add some more prints to verify if REE is used as a store
> > > > > > > > > > > > system, I assume this should say something about RPMB. Am I right with
> > > > > > > > > > > > this?
> > > > > > > > > > >
> > > > > > > > > > >
> > > > > > > > > > > >
> > > > > > > > > > > > > > > >
> > > > > > > > > > > > > > > > And tracing the function calls gives me that:
> > > > > > > > > > > > > > > >
> > > > > > > > > > > > > > > > tee_stmm_efi_probe() {
> > > > > > > > > > > > > > > > tee_client_open_context() {
> > > > > > > > > > > > > > > > optee_get_version() {
> > > > > > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > > > > > } (ret=0xd)
> > > > > > > > > > > > > > > > tee_ctx_match(); (ret=0x1)
> > > > > > > > > > > > > > > > optee_smc_open() {
> > > > > > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > > > > > optee_open() {
> > > > > > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > > > > > } (ret=0x0)
> > > > > > > > > > > > > > > > } (ret=0x0)
> > > > > > > > > > > > > > > > } (ret=0xffff000004e71c80)
> > > > > > > > > > > > > > > > tee_client_open_session() {
> > > > > > > > > > > > > > > > optee_open_session() {
> > > > > > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > > > > > optee_get_msg_arg() {
> > > > > > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > > > > > tee_shm_get_va(); (ret=0xffff000002909000)
> > > > > > > > > > > > > > > > } (ret=0xffff000002909000)
> > > > > > > > > > > > > > > > tee_session_calc_client_uuid(); (ret=0x0)
> > > > > > > > > > > > > > > > optee_to_msg_param(); (ret=0x0)
> > > > > > > > > > > > > > > > optee_smc_do_call_with_arg() {
> > > > > > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > > > > > tee_shm_get_va(); (ret=0xffff000002909000)
> > > > > > > > > > > > > > > > tee_shm_get_va(); (ret=0xffff000002909060)
> > > > > > > > > > > > > > > > optee_cq_wait_init(); (ret=0xffff000002e55910)
> > > > > > > > > > > > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > > > > > > > > > > > ... continues sending this forever ...
> > > > > > > > > > > > > > > > ... Hit ^C to stop recording ...
> > > > > > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > > > > > optee_smccc_smc() {
> > > > > > > > > > > > > > > >
> > > > > > > > > > > > > > > > [1] https://docs.u-boot.org/en/latest/develop/uefi/uefi.html#using-op-tee-for-efi-variables
> > > > > > > > > > > > > > > >
> > > > > > > > > > > > > > > > Thanks in advance,
> > > > > > > > > > > > > > >
> > > > > > > > > > > > > > > The most common problem with this is miscompiling the tee_supplicant
> > > > > > > > > > > > > > > application.
> > > > > > > > > > > > > > > Since we don't know if the system has an RPMB, we emulate it in the
> > > > > > > > > > > > > > > tee_supplicant. How did you get the supplicant and can you check if it
> > > > > > > > > > > > > > > was compiled with RPMB_EMU=0 or 1?
> > > > > > > > > > > > > > >
> > > > > > > > > > > > > >
> > > > > > > > > > > > > > I'm using the tee-supplicant provided by the fedora package which is
> > > > > > > > > > > > > > built with ` -DRPMB_EMU=0`, I think that's correct, right?
> > > > > > > > > > > > > >
> > > > > > > > > > > > >
> > > > > > > > > > > > > Yes, this is correct. We fixed the Fedora package to compile the
> > > > > > > > > > > > > supplicant correctly a while back.
> > > > > > > > > > > > >
> > > > > > > > > > > > > [0] https://www.linaro.org/blog/uefi-secureboot-in-u-boot/
> > > > > > > > > > > > > [1] https://apalos.github.io/Protected%20UEFI%20variables%20with%20U-Boot.html#Protected%20UEFI%20variables%20with%20U-Boot
> > > > > > > > > > > > >
> > > > > > > > > > > > >
> > > > > > > > > > > > > Regards
> > > > > > > > > > > > > /Ilias
> > > > > > > > > > > > > > Thanks,
> > > > > > > > > > > > > > Enric
> > > > > > > > > > > > > >
> > > > > > > > > > > > > > > Thanks
> > > > > > > > > > > > > > > /Ilias
> > > > > > > > > > > > > > >
> > > > > > > > > > > > > > > > Enric
> > > > > > > > > > > > > > > >
> > > > > > > > > > > > > > >
> > > > > > > > > > > > > >
> > > > > > > > > > > > >
> > > > > > > > > > > >
> > > > > > > > > > >
> > > > > > > > > >
> > > > > > > > >
> > > > > > >
> > > > > >
> > > > >
> > > >
> > >
> >
^ permalink raw reply [flat|nested] 18+ messages in thread
* Re: optee-based efi runtime variable service on TI j784s4 platforms
2024-11-12 17:47 ` Enric Balletbo i Serra
@ 2024-11-12 19:21 ` Ilias Apalodimas
0 siblings, 0 replies; 18+ messages in thread
From: Ilias Apalodimas @ 2024-11-12 19:21 UTC (permalink / raw)
To: Enric Balletbo i Serra
Cc: Ard Biesheuvel, Sumit Garg, linux-efi, linux-arm-kernel,
linux-kernel, op-tee, Manorit Chawdhry, Udit Kumar,
Menon, Nishanth, Masahisa Kojima
Hi Enric
[...]
> > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > ... stuck here ... traces indicates never outs from the efi_setup, so
> > > > looks like hungs
> > > >
> > > > Let me try with BeaglePlay and read a bit more, as I feel I'm a bit
> > > > lost right now.
> > >
> > > Sure, let me know if you need anything else.
> > >
> >
> > Same behaviour on BeaglePlay, so either it's currently broken or I'm
> > making the same mistake in my process on both boards.
> >
> > Ilias, by chance, do you have in which versions did you test?
> >
>
> So it looks like it is a problem with edk2 and/or edk2-platform, since
> reverting those repositories back to September, things started to look
> a lot better and I'm able to see en UEFI variables programmed.
>
> FWIW I just found this project [1] from you, thank you for it. Turns
> out that it is easy to reproduce the issue I'm facing even with qemu.
> I'll try to bisect what's the problem and report properly.
There were recently some patches in EDK2 changing some aspects and you
also have to update edk2-platforms & OP-TEE [0] to test this, but this
is not merged yet. I did try those changes and they worked fine. When
you bisect why EDK2 is broken please let me know otherwise I'll have a
look.
>
> Thank you very much for your guidance and support.
You're welcome.
Keep in mind that [1] is _very_ hacky and it's just testing variable
accesses in the firmware since U-Boot emulates the RPMB, not QEMU. IOW
it's fine to use it and test U-Boot but the changes won't survive
ExitBootServris and won't work in Linux.
>
> Cheers,
> Enric
>
> [1] https://git.linaro.org/people/ilias.apalodimas/efi_optee_variables.git/
[0] https://github.com/tianocore/edk2/pull/6116
[1] https://git.linaro.org/people/ilias.apalodimas/efi_optee_variables.git/
Cheers
/Ilias
>
>
> > Thanks,
> > Enric
> > > /Ilias
> > > >
> > > > > >
> > > > > > => optee_rpmb read test 4
> > > > > > D/TC:? 0 tee_ta_init_pseudo_ta_session:303 Lookup pseudo TA
> > > > > > 023f8f1a-292a-432b-8fc4-de8471358067
> > > > > > D/TC:? 0 ldelf_load_ldelf:110 ldelf load address 0x40007000
> > > > > > D/LD: ldelf:142 Loading TS 023f8f1a-292a-432b-8fc4-de8471358067
> > > > > > F/TC:? 0 trace_syscall:147 syscall #3 (syscall_get_property)
> > > > > > F/TC:? 0 trace_syscall:147 syscall #5 (syscall_open_ta_session)
> > > > > > D/TC:? 0 ldelf_syscall_open_bin:135 > ldelf_syscall_open_bin
> > > > > > D/TC:? 0 ldelf_syscall_open_bin:164 Lookup user TA ELF
> > > > > > 023f8f1a-292a-432b-8fc4-de8471358067 (early TA)
> > > > > > D/TC:? 0 ldelf_syscall_open_bin:168 res=0
> > > > > > F/TC:? 0 trace_syscall:147 syscall #7 (syscall_invoke_ta_command)
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 trace_syscall:147 syscall #11 (syscall_mask_cancellation)
> > > > > > F/TC:? 0 trace_syscall:147 syscall #7 (syscall_invoke_ta_command)
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 read_compressed:178 492 bytes
> > > > > > F/TC:? 0 trace_syscall:147 syscall #3 (syscall_get_property)
> > > > > > F/TC:? 0 trace_syscall:147 syscall #8 (syscall_check_access_rights)
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > F/TC:? 0 read_compressed:178 532 bytes
> > > > > > F/TC:? 0 read_compressed:178 924 bytes
> > > > > > F/TC:? 0 trace_syscall:147 syscall #8 (syscall_check_access_rights)
> > > > > > F/TC:? 0 read_compressed:178 248 bytes
> > > > > > F/TC:? 0 read_compressed:178 760 bytes
> > > > > > F/TC:? 0 trace_syscall:147 syscall #6 (syscall_close_ta_session)
> > > > > > F/TC:? 0 trace_syscall:147 syscall #3 (syscall_get_property)
> > > > > > D/LD: ldelf:176 ELF (023f8f1a-292a-432b-8fc4-de8471358067) at 0x40048000
> > > > > > F/TC:? 0 trace_syscall:147 syscall #33 (syscall_cryp_random_number_generate)
> > > > > > F/TC:? 0 trace_syscall:147 syscall #8 (syscall_check_access_rights)
> > > > > > F/TC:? 0 trace_syscall:147 syscall #8 (syscall_check_access_rights)
> > > > > > F/TC:? 0 trace_syscall:147 syscall #4 (syscall_get_property_name_to_index)
> > > > > > F/TC:? 0 trace_syscall:147 syscall #8 (syscall_check_access_rights)
> > > > > > F/TC:? 0 trace_syscall:147 syscall #41 (syscall_storage_obj_open)
> > > > > > D/TC:? 0 rpmb_fs_open_internal:2356 >>> rpmb_fs_open_internal
> > > > > > D/TC:? 0 tee_rpmb_init:1205 >>> core/tee/tee_rpmb_fs.c:1205
> > > > > > D/TC:? 0 tee_rpmb_init:1214 >>> core/tee/tee_rpmb_fs.c:1214
> > > > > > D/TC:? 0 tee_rpmb_init:1253 >>> core/tee/tee_rpmb_fs.c:1253
> > > > > > D/TC:? 0 legacy_rpmb_init:1142 Trying legacy RPMB init
> > > > > > D/TC:? 0 rpmb_set_dev_info:1111 RPMB: Syncing device information
> > > > > > D/TC:? 0 rpmb_set_dev_info:1113 RPMB: RPMB size is 32*128 KB
> > > > > > D/TC:? 0 rpmb_set_dev_info:1114 RPMB: Reliable Write Sector Count is 1
> > > > > > D/TC:? 0 rpmb_set_dev_info:1116 RPMB: CID
> > > > > > D/TC:? 0 rpmb_set_dev_info:1117 000000009e93ab30 13 01 4e 47 31 4d 31
> > > > > > 35 4c 10 27 91 28 07 a9 00
> > > > > > D/TC:? 0 legacy_rpmb_init:1162 RPMB INIT: Deriving key
> > > > > > D/TC:? 0 tee_rpmb_key_gen:308 RPMB: Using test key
> > > > > > D/TC:? 0 legacy_rpmb_init:1176 RPMB INIT: Verifying Key
> > > > > > F/TC:? 0 plat_prng_add_jitter_entropy:68 0x61
> > > > > > D/TC:? 0 legacy_rpmb_init:1180 Found working RPMB device
> > > > > > D/TC:? 0 tee_rpmb_init:1205 >>> core/tee/tee_rpmb_fs.c:1205
> > > > > > D/TC:? 0 tee_rpmb_init:1214 >>> core/tee/tee_rpmb_fs.c:1214
> > > > > > D/TC:? 0 tee_rpmb_read:1362 Read 1 block at index 0
> > > > > > D/TC:? 0 tee_rpmb_write_blk:1494 Write 1 block at index 0
> > > > > > D/TC:? 0 tee_rpmb_init:1205 >>> core/tee/tee_rpmb_fs.c:1205
> > > > > > D/TC:? 0 tee_rpmb_init:1214 >>> core/tee/tee_rpmb_fs.c:1214
> > > > > > D/TC:? 0 tee_rpmb_init:1205 >>> core/tee/tee_rpmb_fs.c:1205
> > > > > > D/TC:? 0 tee_rpmb_init:1214 >>> core/tee/tee_rpmb_fs.c:1214
> > > > > > D/TC:? 0 tee_rpmb_read:1362 Read 1 block at index 0
> > > > > > E/TC:? 0 rpmb_fs_setup:2143 **** Clearing Storage ****
> > > > > > D/TC:? 0 tee_rpmb_write_blk:1494 Write 1 block at index 2
> > > > > > F/TC:? 0 plat_prng_add_jitter_entropy:68 0xD3
> > > > > > D/TC:? 0 tee_rpmb_read:1362 Read 1 block at index 0
> > > > > > D/TC:? 0 tee_rpmb_write_blk:1494 Write 1 block at index 0
> > > > > > D/TC:? 0 tee_rpmb_read:1362 Read 8 blocks at index 2
> > > > > > F/TC:? 0 dump_fat:1951 flags 0x2, size 0, address 0, filename ''
> > > > > > D/TC:? 0 read_fat:2221 fat_address 0
> > > > > > D/TC:? 0 tee_rpmb_read:1362 Read 8 blocks at index 2
> > > > > > F/TC:? 0 plat_prng_add_jitter_entropy:68 0x18
> > > > > > E/TA: read_persist_value:338 Can't open named object value, res = 0xffff0008
> > > > > > D/TC:? 0 tee_ta_invoke_command:798 Error: ffff0008 of 4
> > > > > > D/TC:? 0 tee_ta_close_session:460 csess 0x9e925a50 id 1
> > > > > > D/TC:? 0 tee_ta_close_session:479 Destroy session
> > > > > > D/TC:? 0 destroy_context:318 Destroy TA ctx (0x9e9259f0)
> > > > > > Failed to read persistent value
> > > > > >
> > > > > >
> > > > > >
> > > > > >
> > > > > >
> > > > > >
> > > > > >
> > > > > > > Cheers
> > > > > > > /Ilias
> > > > > > >
> > > > > > > > => optee_rpmb read test 4
> > > > > > > > D/TC:? 0 tee_ta_init_pseudo_ta_session:303 Lookup pseudo TA
> > > > > > > > 023f8f1a-292a-432b-8fc4-de8471358067
> > > > > > > > D/TC:? 0 ldelf_load_ldelf:110 ldelf load address 0x40007000
> > > > > > > > D/LD: ldelf:142 Loading TS 023f8f1a-292a-432b-8fc4-de8471358067
> > > > > > > > F/TC:? 0 trace_syscall:147 syscall #3 (syscall_get_property)
> > > > > > > > F/TC:? 0 trace_syscall:147 syscall #5 (syscall_open_ta_session)
> > > > > > > > D/TC:? 0 ldelf_syscall_open_bin:163 Lookup user TA ELF
> > > > > > > > 023f8f1a-292a-432b-8fc4-de8471358067 (early TA)
> > > > > > > > D/TC:? 0 ldelf_syscall_open_bin:167 res=0
> > > > > > > > F/TC:? 0 trace_syscall:147 syscall #7 (syscall_invoke_ta_command)
> > > > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > > > F/TC:? 0 read_compressed:178 1024 bytes
> > > > > > > > F/TC:? 0 trace_syscall:147 syscall #11 (syscall_mask_cancellation)
> > > > > > > > F/TC:? 0 trace_syscall:147 syscall #7 (syscall_invoke_ta_command)
> > > > > > > >
> > > > > > > > => efidebug query -bs -rt -nv
> > > > > > > > MMC: no card present
> > > > > > > > mmc_init: -123, time 2002
> > > > > > > > D/TC:? 0 load_stmm:297 stmm load address 0x40004000
> > > > > > > > D/TC:? 0 spm_handle_scall:859 Received FFA version
> > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > >
> > > > > > > >
> > > > > > > >
> > > > > > > > >
> > > > > > > > > > Thanks
> > > > > > > > > > /Ilias
> > > > > > > > > > >
> > > > > > > > > > > => efidebug query -bs -rt -nv
> > > > > > > > > > > D/TC:? 0 load_stmm:297 stmm load address 0x40004000
> > > > > > > > > > > D/TC:? 0 spm_handle_scall:859 Received FFA version
> > > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > > D/TC:? 0 spm_handle_scall:867 Received FFA direct request
> > > > > > > > > > > ... stuck here ... I need to reset the board
> > > > > > > > > > >
> > > > > > > > > > > Will continue to see if I can get more useful messages
> > > > > > > > > > >
> > > > > > > > > > > Thanks,
> > > > > > > > > > > Enric
> > > > > > > > > > >
> > > > > > > > > > > > Thanks
> > > > > > > > > > > > /Ilias
> > > > > > > > > > > > >
> > > > > > > > > > > > > I'll try to add some more prints to verify if REE is used as a store
> > > > > > > > > > > > > system, I assume this should say something about RPMB. Am I right with
> > > > > > > > > > > > > this?
> > > > > > > > > > > >
> > > > > > > > > > > >
> > > > > > > > > > > > >
> > > > > > > > > > > > > > > > >
> > > > > > > > > > > > > > > > > And tracing the function calls gives me that:
> > > > > > > > > > > > > > > > >
> > > > > > > > > > > > > > > > > tee_stmm_efi_probe() {
> > > > > > > > > > > > > > > > > tee_client_open_context() {
> > > > > > > > > > > > > > > > > optee_get_version() {
> > > > > > > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > > > > > > } (ret=0xd)
> > > > > > > > > > > > > > > > > tee_ctx_match(); (ret=0x1)
> > > > > > > > > > > > > > > > > optee_smc_open() {
> > > > > > > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > > > > > > optee_open() {
> > > > > > > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > > > > > > } (ret=0x0)
> > > > > > > > > > > > > > > > > } (ret=0x0)
> > > > > > > > > > > > > > > > > } (ret=0xffff000004e71c80)
> > > > > > > > > > > > > > > > > tee_client_open_session() {
> > > > > > > > > > > > > > > > > optee_open_session() {
> > > > > > > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > > > > > > optee_get_msg_arg() {
> > > > > > > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > > > > > > tee_shm_get_va(); (ret=0xffff000002909000)
> > > > > > > > > > > > > > > > > } (ret=0xffff000002909000)
> > > > > > > > > > > > > > > > > tee_session_calc_client_uuid(); (ret=0x0)
> > > > > > > > > > > > > > > > > optee_to_msg_param(); (ret=0x0)
> > > > > > > > > > > > > > > > > optee_smc_do_call_with_arg() {
> > > > > > > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > > > > > > tee_shm_get_va(); (ret=0xffff000002909000)
> > > > > > > > > > > > > > > > > tee_shm_get_va(); (ret=0xffff000002909060)
> > > > > > > > > > > > > > > > > optee_cq_wait_init(); (ret=0xffff000002e55910)
> > > > > > > > > > > > > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > > > > > > optee_smccc_smc(); (ret=0xffff0004)
> > > > > > > > > > > > > > > > > ... continues sending this forever ...
> > > > > > > > > > > > > > > > > ... Hit ^C to stop recording ...
> > > > > > > > > > > > > > > > > tee_get_drvdata(); (ret=0xffff000002e55800)
> > > > > > > > > > > > > > > > > optee_smccc_smc() {
> > > > > > > > > > > > > > > > >
> > > > > > > > > > > > > > > > > [1] https://docs.u-boot.org/en/latest/develop/uefi/uefi.html#using-op-tee-for-efi-variables
> > > > > > > > > > > > > > > > >
> > > > > > > > > > > > > > > > > Thanks in advance,
> > > > > > > > > > > > > > > >
> > > > > > > > > > > > > > > > The most common problem with this is miscompiling the tee_supplicant
> > > > > > > > > > > > > > > > application.
> > > > > > > > > > > > > > > > Since we don't know if the system has an RPMB, we emulate it in the
> > > > > > > > > > > > > > > > tee_supplicant. How did you get the supplicant and can you check if it
> > > > > > > > > > > > > > > > was compiled with RPMB_EMU=0 or 1?
> > > > > > > > > > > > > > > >
> > > > > > > > > > > > > > >
> > > > > > > > > > > > > > > I'm using the tee-supplicant provided by the fedora package which is
> > > > > > > > > > > > > > > built with ` -DRPMB_EMU=0`, I think that's correct, right?
> > > > > > > > > > > > > > >
> > > > > > > > > > > > > >
> > > > > > > > > > > > > > Yes, this is correct. We fixed the Fedora package to compile the
> > > > > > > > > > > > > > supplicant correctly a while back.
> > > > > > > > > > > > > >
> > > > > > > > > > > > > > [0] https://www.linaro.org/blog/uefi-secureboot-in-u-boot/
> > > > > > > > > > > > > > [1] https://apalos.github.io/Protected%20UEFI%20variables%20with%20U-Boot.html#Protected%20UEFI%20variables%20with%20U-Boot
> > > > > > > > > > > > > >
> > > > > > > > > > > > > >
> > > > > > > > > > > > > > Regards
> > > > > > > > > > > > > > /Ilias
> > > > > > > > > > > > > > > Thanks,
> > > > > > > > > > > > > > > Enric
> > > > > > > > > > > > > > >
> > > > > > > > > > > > > > > > Thanks
> > > > > > > > > > > > > > > > /Ilias
> > > > > > > > > > > > > > > >
> > > > > > > > > > > > > > > > > Enric
> > > > > > > > > > > > > > > > >
> > > > > > > > > > > > > > > >
> > > > > > > > > > > > > > >
> > > > > > > > > > > > > >
> > > > > > > > > > > > >
> > > > > > > > > > > >
> > > > > > > > > > >
> > > > > > > > > >
> > > > > > > >
> > > > > > >
> > > > > >
> > > > >
> > > >
> > >
>
^ permalink raw reply [flat|nested] 18+ messages in thread
end of thread, other threads:[~2024-11-12 19:21 UTC | newest]
Thread overview: 18+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2024-11-08 12:26 optee-based efi runtime variable service on TI j784s4 platforms Enric Balletbo i Serra
2024-11-08 15:48 ` Ilias Apalodimas
2024-11-08 21:10 ` Enric Balletbo i Serra
2024-11-09 0:31 ` Ilias Apalodimas
2024-11-11 8:20 ` Enric Balletbo i Serra
2024-11-11 11:01 ` Ilias Apalodimas
2024-11-11 14:13 ` Enric Balletbo i Serra
2024-11-11 14:25 ` Ilias Apalodimas
2024-11-12 8:17 ` Enric Balletbo i Serra
2024-11-12 11:40 ` Enric Balletbo i Serra
2024-11-12 11:50 ` Ilias Apalodimas
2024-11-12 12:45 ` Enric Balletbo i Serra
2024-11-12 13:22 ` Ilias Apalodimas
2024-11-12 14:39 ` Enric Balletbo i Serra
2024-11-12 15:06 ` Ilias Apalodimas
2024-11-12 16:03 ` Enric Balletbo i Serra
2024-11-12 17:47 ` Enric Balletbo i Serra
2024-11-12 19:21 ` Ilias Apalodimas
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox