Jarkko Sakkinen
Posts
4637Following
317Followers
482OpenPGP: 3AB05486C7752FE1
Jarkko Sakkinen
jarkko
Installing #OpenSUSE #Tumbleweed to my desktop. Seems like a good sweet spot having latest packages and professional QA for a workstation.
2
1
3
@vbabka The reason I'm contacting is that for a new implementation the best approach would be to make the state of the TPM parametrized instead of holding it inside the implementation.
So the use case would be e.g. SGX enclave:
1. Pass a state blob from untrusted OS to with the TPM command to the enclave.
2. Enclave processes the TPM command, encrypts the state blob and returns it back to the caller.
Global state in the current implementations is IMHO the biggest problem so it would be a loss to get yet another implementation with such. Stateless software TPM would be sort of universal across various TEE's.
So the use case would be e.g. SGX enclave:
1. Pass a state blob from untrusted OS to with the TPM command to the enclave.
2. Enclave processes the TPM command, encrypts the state blob and returns it back to the caller.
Global state in the current implementations is IMHO the biggest problem so it would be a loss to get yet another implementation with such. Stateless software TPM would be sort of universal across various TEE's.
1
0
1
@vbabka Very much indeed! Might even considering contacting the presenter. Thank you.
Rust makes no magic here but usually people who get into Rust tend to be enthusiastic about code in the first place. Both Microsoft and IBM TPM are crap code at least in my standards. It does not take long to browse either's repository and realize this. And yeah, for new user space code I think Rust is the best available choice so it is better than starting from zero with C/C++.
Rust makes no magic here but usually people who get into Rust tend to be enthusiastic about code in the first place. Both Microsoft and IBM TPM are crap code at least in my standards. It does not take long to browse either's repository and realize this. And yeah, for new user space code I think Rust is the best available choice so it is better than starting from zero with C/C++.
1
0
1
I think it is strongest competitor so far for Access Virus, and the plugin side is better implemented, as it can run independent without requiring the hardware. Still for some sounds hardware adds a bit extra with a real analog filter so I would probably bounce stuff to audio through hardware.
0
0
0
Jarkko Sakkinen
jarkko
Edited 1 year ago
Got #Arturia #Minifreak and it is my main #MIDI keyboard now. I was worried that it has the same problem as with #Microfreak, i.e. low audio signal but it is all good. I guess it has better DAC's or perhaps a built-in preamp. The low signal in Microfreak has been a real turnoff for me and have not used it that much, which is a shame.
The synth engine is capable of doing all the basic sounds, except it lacks wavetable oscillator but I'm 100% sure that it will land at some point in firmware update. Why I think it is great synth to use as starting point for any track is the matching #VST plugin. I'm planning to use that instead of #Serum to do placeholder sounds for first versions of new tracks and later phase replace some of them with other synths. Only thing I'm sticking to #Serum is bass because there the wave shape of the oscillator is too crucial to make compromises (as important as the filter).
I'd also like to have 18 dB filter for bass as it is sort of in the sweet spot but as the other engine can act as digital filter, the combination of analog and digital filter can probably be used to find the sweet spot (I some times use two 12 dB filters in series, if a synth lacks 18 dB slope filter).
The synth engine is capable of doing all the basic sounds, except it lacks wavetable oscillator but I'm 100% sure that it will land at some point in firmware update. Why I think it is great synth to use as starting point for any track is the matching #VST plugin. I'm planning to use that instead of #Serum to do placeholder sounds for first versions of new tracks and later phase replace some of them with other synths. Only thing I'm sticking to #Serum is bass because there the wave shape of the oscillator is too crucial to make compromises (as important as the filter).
I'd also like to have 18 dB filter for bass as it is sort of in the sweet spot but as the other engine can act as digital filter, the combination of analog and digital filter can probably be used to find the sweet spot (I some times use two 12 dB filters in series, if a synth lacks 18 dB slope filter).
1
0
0
There's also #IBM software TPM. It might be less messy but it does not have any community so thus I've been ignoring it: https://sourceforge.net/p/ibmswtpm2/tpm2/ci/master/tree/. It is a single person project and almost no commits by anyone else. I trust more community projects.
0
0
0
Jarkko Sakkinen
jarkko
If I did not have anything else to do I would reimplement this in Rust: https://github.com/microsoft/ms-tpm-20-ref. The code quality is not great in the original and it is not particularly complicated thing to do just time consuming. Looking how bad code quality is, I wonder why e.g. #OPTEE implementation is based on it (if I got this wrong please correct, 99% sure it is).
#tpm #arm #tee
#tpm #arm #tee
2
0
0
Jarkko Sakkinen
jarkko
probably the most useful effect chain i've made either for #Ableton Live or #BitwigStudio. No longer automating on/off buttons.
1
0
1
For more esoteric architectures than x86 and ARM, I find these tools superior to IDA Pro or Binary Ninja just because of out-of-the-box support for all possible ISA's in the universe.
Ghidra is probably cool but it is also written in Java. Thanks NSA but no thanks.
Ghidra is probably cool but it is also written in Java. Thanks NSA but no thanks.
1
0
0
Jarkko Sakkinen
jarkkoconsidering #radare2 vs #rizin, i’ve settled with rizin because of the standard build system:
meson setup --buildtype=release \
--prefix=/home/jarkko/.local \
--default-library=static \
-Dblob=true \
-Dstatic_runtime=false \
build
ninja -Cbuild install
updating is a breeze. no idea what happened to that community, just using what works for me…
1
1
1
Jarkko Sakkinen
repeated
repeated
Kees Cook (old account)
kees@fosstodon.orgToday is the anniversary of the launch of the #Linux #Kernel Self-Protection Project (2015), and the invention of the Flux Capacitor (1955):
https://lore.kernel.org/kernel-hardening/CAGXu5jJ3FgxXK9WuOLRwnEq=y4dS+CTm+WQBxWe3sYZ7e9p6Gg@mail.gmail.com/
1
6
4
Jarkko Sakkinen
repeated
repeated
@deanpierce this spinned of something you said back in 2011. probably you do not recall it but sort of realized what you meant only recently 🙂
0
0
0
@alex_02 yeah i have absolutely zero disrespect for infosec researchers but sometimes it has unfortunately gone other way around. it is always best to respect any possible work that you have no experience, starting from selling burgers at mcdonalds 🙂 otherwise, in the end, you are just making fool of yourself.
0
0
1