Re: [PATCH v4 6/6] ibmvtpm: Add support for trusted boot using a vTPM 2.

grub-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [PATCH v4 6/6] ibmvtpm: Add support for trusted boot using a vTPM 2.

From:	Robbie Harwood
Subject:	Re: [PATCH v4 6/6] ibmvtpm: Add support for trusted boot using a vTPM 2.0
Date:	Mon, 06 Feb 2023 15:12:47 -0500

Stefan Berger <stefanb@linux.ibm.com> writes:

> Add support for trusted boot using a vTPM 2.0 on the IBM IEEE1275
> PowerPC platform. With this patch grub now measures text and binary data
> into the TPM's PCRs 8 and 9 in the same way as the x86_64 platform
> does.
>
> This patch requires Daniel Axtens's patches for claiming more memory.
>
> Note: The tpm_init() function cannot be called from GRUB_MOD_INIT() since
> it does not find the device nodes upon module initialization and
> therefore the call to tpm_init() must be deferred to grub_tpm_measure().
>
> For vTPM support to work on PowerVM, system driver levels 1010.30
> or 1020.00 are required.
>
> Note: Previous versions of firmware levels with the 2hash-ext-log
> API call have a bug that, once this API call is invoked, has the
> effect of disabling the vTPM driver under Linux causing an error
> message to be displayed in the Linux kernel log. Those users will
> have to update their machines to the firmware levels mentioned
> above.
>
> Cc: Eric Snowberg <eric.snowberg@oracle.com>
> Signed-off-by: Stefan Berger <stefanb@linux.ibm.com>
> Signed-off-by: Daniel Axtens <dja@axtens.net>
> Reviewed-by: Daniel Kiper <daniel.kiper@oracle.com>

Reviewed-by: Robbie Harwood <rharwood@redhat.com>

Be well,
--Robbie

signature.asc
Description: PGP signature

[Prev in Thread]

Current Thread

[Next in Thread]

[PATCH v4 0/6] Dynamic allocation of memory regions and IBM vTPM 2.0, Stefan Berger, 2023/02/06
- [PATCH v4 1/6] ieee1275: request memory with ibm, client-architecture-support, Stefan Berger, 2023/02/06
- [PATCH v4 5/6] Add memtool module with memory allocation stress-test, Stefan Berger, 2023/02/06
- [PATCH v4 3/6] ieee1275: support runtime memory claiming, Stefan Berger, 2023/02/06
  - Re: [PATCH v4 3/6] ieee1275: support runtime memory claiming, Robbie Harwood, 2023/02/06
    - Re: [PATCH v4 3/6] ieee1275: support runtime memory claiming, Stefan Berger, 2023/02/06
  - Re: [PATCH v4 3/6] ieee1275: support runtime memory claiming, Robbie Harwood, 2023/02/16
- [PATCH v4 4/6] ieee1275: implement vec5 for cas negotiation, Stefan Berger, 2023/02/06
- [PATCH v4 6/6] ibmvtpm: Add support for trusted boot using a vTPM 2.0, Stefan Berger, 2023/02/06
  - Re: [PATCH v4 6/6] ibmvtpm: Add support for trusted boot using a vTPM 2.0, Robbie Harwood <=
- [PATCH v4 2/6] ieee1275: drop len -= 1 quirk in heap_init, Stefan Berger, 2023/02/06
  - Re: [PATCH v4 2/6] ieee1275: drop len -= 1 quirk in heap_init, Robbie Harwood, 2023/02/16
- Re: [PATCH v4 0/6] Dynamic allocation of memory regions and IBM vTPM 2.0, Nageswara R Sastry, 2023/02/13
- Re: [PATCH v4 0/6] Dynamic allocation of memory regions and IBM vTPM 2.0, Robbie Harwood, 2023/02/28

Prev by Date: Re: [PATCH v4 3/6] ieee1275: support runtime memory claiming
Next by Date: Re: [PATCH v4 3/6] ieee1275: support runtime memory claiming
Previous by thread: [PATCH v4 6/6] ibmvtpm: Add support for trusted boot using a vTPM 2.0
Next by thread: [PATCH v4 2/6] ieee1275: drop len -= 1 quirk in heap_init
Index(es):
- Date
- Thread