On Sun, Aug 24, 2025 at 10:15:37AM +0300, Jarkko Sakkinen wrote: > > >> There's one particular challenge where this could help: early boot code > > >> for D-RTM (i.e., Trenchboot) as given my crate is just a thing in stack > > >> with no deps, it could be linked also to that payload.
Right so if anyone working on Trenchboot (which I'm helping with by giving feedback on implementation strategy) is raising eyebrows, fear not ... It's more about that if redoing any TPM stuff in Rust, it's best to design as much of it as possible to run bare metal rather than requiring a kernel, and only leave small slice of IO code to be integrated to Linux APIs. I.e. make a design that addresses all the bottlenecks we've seen over the years... Thus, tpm2-protocol was first designed with bare metal in mind, and secondly kernel. BR, Jarkko
