Private: Re: [yocto] Which layer is best for tpm2 stack
On 29.11.2019 11:01, Diego Santa Cruz via Lists.Yoctoproject.Org wrote:
I'm currently using meta-tpm from meta-security for tpm2-tools.
My reasoning was that this one will likely be the one to go in the long run since it's hosted on the poky git (?).
-- Maciej Pijanowski Embedded Systems Engineer GPG: F1401D2E1CCB19EF https://3mdeb.com | @3mdeb_com
Diego Santa Cruz
I got the feedback below by private email (was meant to be sent to the m-l), so I think I’ll go with meta-tmp2 from meta-secure-core for now.
But I may switch to meta-tpm from meta-security in the future as it seems to have more tpm2 related recipes (I’m on thud for now and the tpm2-tools in thud branch of meta-security is too old).
Any other feedback from the community?
From: Dan O'Donovan via Lists.Yoctoproject.Org <dan=emutex.com@...>
Sent: 28 November 2019 12:00
To: Diego Santa Cruz <Diego.SantaCruz@...>
Subject: Private: Re: [yocto] Which layer is best for tpm2 stack
On Wed, Nov 27, 2019 at 02:56 PM, Diego Santa Cruz wrote:
I've personally used the meta-tpm2 layer in meta-secure-core repo with good success on both Intel and ARM platforms with Infineon TPM chips. In particular, I used the cryptfs-tpm2 and secure-core initramfs recipes from that layer for managing
root fs encryption. IIRC, this layer seemed to offer the best support for what we needed regarding TPM2 on Yocto 'Sumo' at the time.