From mboxrd@z Thu Jan 1 00:00:00 1970 From: Jarkko Sakkinen Subject: Re: [RFC PATCH 0/4] Multi-instance vTPM driver Date: Mon, 25 Jan 2016 17:48:48 -0800 Message-ID: <20160126014848.GA25892@intel.com> References: <1452787318-29610-1-git-send-email-stefanb@us.ibm.com> <20160115101146.GA11987@intel.com> <201601151302.u0FD2wGG003518@d03av03.boulder.ibm.com> <20160125231532.GA10732@intel.com> <201601260029.u0Q0T7Ek004865@d03av04.boulder.ibm.com> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Return-path: Content-Disposition: inline In-Reply-To: <201601260029.u0Q0T7Ek004865-2xHzGjyANq4+UXBhvPuGgqsjOiXwFzmk@public.gmane.org> List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: tpmdd-devel-bounces-5NWGOfrQmneRv+LV9MX5uipxlwaOVQ5f@public.gmane.org To: Stefan Berger Cc: dhowells-H+wXaHxf7aLQT0dZR+AlfA@public.gmane.org, Stefan Berger , tpmdd-devel-5NWGOfrQmneRv+LV9MX5uipxlwaOVQ5f@public.gmane.org, dwmw2-wEGCiKHe2LqWVfeAwA7xHQ@public.gmane.org List-Id: tpmdd-devel@lists.sourceforge.net On Mon, Jan 25, 2016 at 07:28:35PM -0500, Stefan Berger wrote: > Jarkko Sakkinen wrote on 01/25/2016 06:15:32 > PM: > > > > > On Fri, Jan 15, 2016 at 08:02:52AM -0500, Stefan Berger wrote: > > > Jarkko Sakkinen wrote on 01/15/ > > 2016 05:11:46 > > > AM: > > > > > > > > > > > On Thu, Jan 14, 2016 at 11:01:54AM -0500, Stefan Berger wrote: > > > > > From: Stefan Berger > > > > > > > > > > The following series of patches implements a multi-instance vTPM driver > > > > > that can dynamically create TPM 'server' and client device pairs. > > > > > > > > > > Using ioctl's on the provided /dev/vtpmx, a server and a client > > > > > side vTPM device can be created. The server side offers a /dev/vtpms%d > > > > > device and a TPM emulator must be started on it to listen for > > TPM commands > > > > > that are written to /dev/vtpmc%d, which is created by the core > > TPM driver. > > > > > > > > > > The primary goal of this series of patches is enabling vTPM > > for containers > > > > > and hooking them up to a (future) namespaced IMA. However, thedriver > can > > > > > also be used for simulating a hardware TPM on the host. > > > > > > > > > > The last patch provides a test program for controlling device pairs. > > > > > > > > I like the idea. Looking into this in more detail after the next pull > > > > request. Thanks! > > > > > > Thank you. I actually found some issues in the code yesterday, so > > I eventually > > > will need to repost. > > > I may put the latest on a public git repo in case someone wants to test. > > > > I haven't yet reviewed the first version nor read the discussion you and > > Jason have had (except for some distinct emails). The main reasons is > > that I haven't received any feedback to some questions I've asked... One > > of the most important has been is there any documentation for vTPM? > > If necessary I can add documentation for the vTPM driver to the patch. > > Otherwise there are man pages in this project here that at least explain the > command line parameters and tools for the vTPM. > > https://github.com/stefanberger/swtpm/blob/master/man/man8 > > example: > > https://github.com/stefanberger/swtpm/blob/master/man/man8/swtpm.pod Sorry this was my bad! I haven't had chance to read the patches before today. I got a good understanding how it is done by reading the source and am now in the process of compiling it. > Stefan /Jarkko ------------------------------------------------------------------------------ Site24x7 APM Insight: Get Deep Visibility into Application Performance APM + Mobile APM + RUM: Monitor 3 App instances at just $35/Month Monitor end-to-end web transactions and take corrective actions now Troubleshoot faster and improve end-user experience. Signup Now! http://pubads.g.doubleclick.net/gampad/clk?id=267308311&iu=/4140