[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [PATCH v4 6/6] ibmvtpm: Add support for trusted boot using a vTPM 2.
From: |
Robbie Harwood |
Subject: |
Re: [PATCH v4 6/6] ibmvtpm: Add support for trusted boot using a vTPM 2.0 |
Date: |
Mon, 06 Feb 2023 15:12:47 -0500 |
Stefan Berger <stefanb@linux.ibm.com> writes:
> Add support for trusted boot using a vTPM 2.0 on the IBM IEEE1275
> PowerPC platform. With this patch grub now measures text and binary data
> into the TPM's PCRs 8 and 9 in the same way as the x86_64 platform
> does.
>
> This patch requires Daniel Axtens's patches for claiming more memory.
>
> Note: The tpm_init() function cannot be called from GRUB_MOD_INIT() since
> it does not find the device nodes upon module initialization and
> therefore the call to tpm_init() must be deferred to grub_tpm_measure().
>
> For vTPM support to work on PowerVM, system driver levels 1010.30
> or 1020.00 are required.
>
> Note: Previous versions of firmware levels with the 2hash-ext-log
> API call have a bug that, once this API call is invoked, has the
> effect of disabling the vTPM driver under Linux causing an error
> message to be displayed in the Linux kernel log. Those users will
> have to update their machines to the firmware levels mentioned
> above.
>
> Cc: Eric Snowberg <eric.snowberg@oracle.com>
> Signed-off-by: Stefan Berger <stefanb@linux.ibm.com>
> Signed-off-by: Daniel Axtens <dja@axtens.net>
> Reviewed-by: Daniel Kiper <daniel.kiper@oracle.com>
Reviewed-by: Robbie Harwood <rharwood@redhat.com>
Be well,
--Robbie
signature.asc
Description: PGP signature
- [PATCH v4 0/6] Dynamic allocation of memory regions and IBM vTPM 2.0, Stefan Berger, 2023/02/06
- [PATCH v4 1/6] ieee1275: request memory with ibm, client-architecture-support, Stefan Berger, 2023/02/06
- [PATCH v4 5/6] Add memtool module with memory allocation stress-test, Stefan Berger, 2023/02/06
- [PATCH v4 3/6] ieee1275: support runtime memory claiming, Stefan Berger, 2023/02/06
- [PATCH v4 4/6] ieee1275: implement vec5 for cas negotiation, Stefan Berger, 2023/02/06
- [PATCH v4 6/6] ibmvtpm: Add support for trusted boot using a vTPM 2.0, Stefan Berger, 2023/02/06
- Re: [PATCH v4 6/6] ibmvtpm: Add support for trusted boot using a vTPM 2.0,
Robbie Harwood <=
- [PATCH v4 2/6] ieee1275: drop len -= 1 quirk in heap_init, Stefan Berger, 2023/02/06
- Re: [PATCH v4 0/6] Dynamic allocation of memory regions and IBM vTPM 2.0, Nageswara R Sastry, 2023/02/13
- Re: [PATCH v4 0/6] Dynamic allocation of memory regions and IBM vTPM 2.0, Robbie Harwood, 2023/02/28