Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

fTPM TA not opening the context #7080

Open
Palatrauss00 opened this issue Oct 15, 2024 · 5 comments
Open

fTPM TA not opening the context #7080

Palatrauss00 opened this issue Oct 15, 2024 · 5 comments

Comments

@Palatrauss00
Copy link

Hi, for my master thesis I am working at implementing a fTPM on OPTEE and adding new libraries to it. I have seen the this implementation but it does not work and it is a bit outdated. So, I'm working to adapt the fTPM TA to the latest version of optee .

I am having issues to run the ftpm TA. Running the command ./getRandom, I have received this error

TSS_Dev_Open: Error opening /dev/tpm0 getrandom: failed, rc 000b0008 TSS_RC_NO_CONNECTION - Failure connecting to lower layer
I think the error is inside the loading of the kernel module, because the function ftpm_tee_probe that opens the context seems it is not called. So, I think that the fTPM TA is never run but the kernel module is loaded inside the kernel because I have launched lsmod and the tpm_ftpm_tee is printed. What could be the issue?

@jenswi-linaro
Copy link
Contributor

We're currently working on importing the fTPM TA into OP-TEE, have you seen #7054?

@Palatrauss00
Copy link
Author

Palatrauss00 commented Oct 17, 2024

In these days I've seen what you do. But what is the difference between inserting into optee_os and building as external TA?

Also how can I test that is properly working?

@Palatrauss00
Copy link
Author

Another thing, with this implementation I've added also Measured Boot. Where the measures are saved?

@jenswi-linaro
Copy link
Contributor

fTPM does some self-tests when probed by the kernel. More testing or a better understanding of the coverage of the self-tests is desirable, but this is what we have today.

Regarding the measured boot, I don't know. We should add a section about fTPM in the documentation, but we're not there yet.

@Palatrauss00
Copy link
Author

Palatrauss00 commented Nov 12, 2024

Another question, I've followed all your progress in #7054 , and now I have to add another library into the ftpm ta inside optee_os, how can I do it?

Now, my Makefile is

BINARY=bc50d971-d4c9-42c4-82cb-343fb7f37896

-include $(TA_DEV_KIT_DIR)/mk/ta_dev_kit.mk
ldargs-$(binary).elf += -loqs

ifeq ($(wildcard $(TA_DEV_KIT_DIR)/mk/ta_dev_kit.mk), )

while the sub.mk I've added the rows

libnames += oqs

libdirs += /home/palatrauss/optee_ftpm/liboqs/build/lib

libdeps += /home/palatrauss/optee_ftpm/liboqs/build/lib/liboqs.a

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

No branches or pull requests

2 participants