<br><tt><font size=2>"Kevin O'Connor" <kevin@koconnor.net>
wrote on 01/07/2016 03:14:37 PM:<br><br>> <br>> On Thu, Jan 07, 2016 at 01:57:42PM -0500, Stefan Berger wrote:<br>> > At some point I'll bring the TPM 2 patches back to life following
the many<br>> > recent changes... Now my question is how to organize the code.
Should there<br>> > be one file where we essentially have the above type of code
branching into<br>> > TPM 1.2 & TPM 2 specific functions and TPM 1.2 and TPM 2
code in separate<br>> > files or the above type of functions at the end of the current
file and then<br>> > a section with TPM 1.2 code and another with TPM 2? It's a few
patches<br>> > building on top of each other, so want to avoid churn...<br>> <br>> I was playing with a few additional patches on top of your last series<br>> - I pushed them to my testing branch if you want to take a look.</font></tt><br><br><br><tt><font size=2>I found this:</font></tt><br><tt><font size=2> if (hashdata || hashdata_length)</font></tt><br><br><tt><font size=2>it should probably be:</font></tt><br><tt><font size=2> if (hashdata && hashdata_length)</font></tt><br><br><tt><font size=2>But now I am arguing against the spec. They want 0
bytes to be 'measured'? </font></tt><br><br><tt><font size=2>I would also shut down the TPM if an extend didn't
work; after all the TPM will</font></tt><br><tt><font size=2>'quote' the state of the PCRs in an attestation. By
temporarily deactivating it,</font></tt><br><tt><font size=2>it will not be able to quote anymore. Though that
type of failure should never occur.</font></tt><br><br><tt><font size=2>I am not sure about a failed getcapability whether
it's right or wrong to shut</font></tt><br><tt><font size=2>down the TPM. Basically this should never happen,
either. I would tend to shut it down</font></tt><br><tt><font size=2>based on the fact that something is wrong with the
device.</font></tt><br><br><tt><font size=2> Stefan</font></tt><br><tt><font size=2><br>> <br>> I don't have input on what TPM2 organization should look like, mainly<br>> because I don't know what TPM2 entails. I gather the TIS commands
are<br>> changing, but what else changes? Does the ACPI log, BIOS interface,<br>> or tpm menu change? Do you have a pointer to the TPM2 spec (when
I<br>> last looked it seemed that TPM2 was still being worked on).<br>> <br>> -Kevin<br>> <br></font></tt><BR>