similar to: [PATCH] vTPM support for XEN - Part 1

This patch adds a TPM device model to the qemu dm for fully virtualized VMs. It is enabled in the VM only if the user requests a TPM device in the vm configuration file using the ''vtpm=[...]'' line. It enables the qemu device model command line with a ''vtpm_instance <instance number>'' parameter. Signed-off-by: David Safford <safford@watson.ibm.com>

This patch should be applied the source tree once the 2.6.16-rc4 or 2.6.17 or a later kernel is used. I am sending it now in order not to break the build when switching. I am updating tpm.c and tpm.h to follow the changes in mainline. As a result of the patch, all changes to these two files (when compared to mainline) are surrounded by #ifdef CONFIG_XEN. Since now the chip structure is returned

Hi everyone, I am using Xen 3.2.1 with the vtpm-12-patch.diff patch posted in [0]. My TPM is an Infineon 1.2. In total I have got three different questions: 1. NVM loading problem at VM creation When I am creating a VM the last few lines of the vtpm_manager output are: TPMD[245]: tpm/tpm_startup.c:45: Info: TPM_Startup(1) Loading NVM. Sending LoadNVM command ERROR[VTPM]: Failed to load

I can get vtpm_manager to run if I delete /var/vtpm/VTPM. However, when I kill it with control-c, and try to run it again, I get: INFO[VTPM]: Starting VTPM. INFO[TCS]: Constructing new TCS: INFO[TCS]: Calling TCS_OpenContext: INFO[VTSP]: OIAP. INFO[VTSP]: Loading Key into TPM. INFO[VTSP]: Unbinding 256 bytes of data. ERROR in VTSP_Unbind at vtsp.c:720 code: TPM_BAD_PARAMETER. ERROR in

This patch adds a TIS device model compliant to the 1.2 TPM specification to Qemu. It implements all registers necessary to make the Linux TIS driver work (tpm_tis.c). All of the basic registers supported by this type of device are implemented. Also the locality selection has been implemented, but has not been tested. The legacy registers as described in the specification are not supported.

This patch: * adds a C-based security policy translation tool to Xen (secpol_xml2bin) and removes the current Java security policy translator (Java dependencies). The C-based tool integrates into the Xen source tree build and install (using gnome libxml2 for XML parsing). See install.txt. * introduces security labels and related tools. Users can now use semantic-rich label names to put

The attached patch - fixes a problem in the vTPM backend where the timer was killed when the timer function was run - removes a variable from being put in the ring by the frontend - reformatting due to indent tool running over some of the files Has been tested with the vtpm-relevant parts of xm-test. Signed-off-by: Stefan Berger <stefanb@us.ibm.com>

When redirecting the output of the echo command using ''>'' on bash, the output seems to be broken up into multiple write()s (depending on the version of busybox?). Unfortunately /dev/tpm0 needs to have the complete command written to in one chunk. The work-around ''echo <string> > file ; cat file > /dev/tpm0'' seems to get around this problem. The

This patch adds SMP support to the previous version. Since that has not been merged I have included it in this patch. This should apply cleanly to the tip. Below is the text of the original submittal, slightly updated. Attached is a preliminary patch that adds Intel(R) LaGrande Technology (LT) (Safer Mode Extensions - SMX) support to Xen. While there are still several enhancements needed for

Hi, In advance, sorry, I am not sure if it''s the right mailing list to ask that, but as my question is half-way between Xen and trousers, I thought asking in both mailing lists would not be too much.... I am currently having a little problem finding out how to make work my seal/unseal things... Running a Debian Lenny on top of Xen 3.5 unstable. with vtpm management enabled on my

Hi all, How the virtual TPM dispatch TPM commands ? I know that If multiple virtual machines send TPM commands to the virtual TPM, it can be determined from the instance number of a TPM command from which VM the command originated. My question is how the instance number of a TPM command can be prepended? thanks _______________________________________________ Xen-devel mailing list

Hello everyone, I am sorry for interrupting your work I am following the correspondence in silence. I am trying to build a vtpm implementation into xen 6.2 but I was not able to find all the means to do it. What can be found is just abstract knowledge. Most of the info always forwards me to this doc

The following are a set of patches to run the berlios tpm emulator 0.6.1 in a mini-os domain, called vtpm-stubdom. Documentation on how to use this domain is located at stubdom/vtpm/README. The following are a series of patches that enable this domain and also add significant stability improvements to the entire vTPM subsystem, including the original method of using vtpmd as a process.

I am removing the experimental feature that allows buffer sizes for transfers from TPMs larger than 2kb. This could become useful if a vTPM is located in its owns domain and needs to be serialized for suspension or migration and the packet size becomes bigger than the current limit. Partial reads were supposed to complement this feature for applications to know how many bytes to read from

The attached patch allows adjustment of the size of TPM transfer buffers to the size that a lower-layer driver supports. Signed-off-by: Stefan Berger <stefanb@us.ibm.com> _______________________________________________ Xen-devel mailing list Xen-devel@lists.xensource.com http://lists.xensource.com/xen-devel

See MAINTAINERS file Signed-off-by: Matthew Fioravante <matthew.fioravante@jhuapl.edu> diff --git a/MAINTAINERS b/MAINTAINERS index 094fe9e..f562efa 100644 --- a/MAINTAINERS +++ b/MAINTAINERS @@ -261,6 +261,21 @@ S: Supported F: tools/xentrace/ F: xen/common/trace.c +VTPM +M: Matthew Fioravante <matthew.fioravante@jhuapl.edu> +S: Supported +F: tools/vtpm +F:

Virtual TPM persistent states contain VTPM secrets, which are encrypted using symmetric keys and stored on disk along with those symmetric keys. The attached patch uses the TPM to encrypt the symmetric keys and other global secrets before saving them to disk. Signed-off-by: Vinnie Scarlata <vincent.r.scarlata@intel.com> _______________________________________________ Xen-devel mailing

Hi community, there are some problems to start vTPM vtpm-stubdom following docs/misc/vtpm.txt. When I start vtpm-stbdom, the vtpmmgr-stubdom will print out: === ERROR[VTPM]: LoadKey failure: Unrecognized uuid! 69743ae0-9d4a-4ad6-9819-e602085b6792 ERROR[VTPM]: Failed to load key ERROR in vtpmmgr_LoadHashKey at vtpm_cmd_handler.c:78 code: TPM_BAD_PARAMETER. === I start vtpmmgr-stubdom with

Hi community, there are some problems to start vTPM vtpm-stubdom following docs/misc/vtpm.txt. When I start vtpm-stbdom, the vtpmmgr-stubdom will print out: === ERROR[VTPM]: LoadKey failure: Unrecognized uuid! 69743ae0-9d4a-4ad6-9819-e602085b6792 ERROR[VTPM]: Failed to load key ERROR in vtpmmgr_LoadHashKey at vtpm_cmd_handler.c:78 code: TPM_BAD_PARAMETER. === I start vtpmmgr-stubdom with

This patch adds an implementation of the TCG BIOS extensions to the Bochs BIOS and enables logging of boot measurements using the previously implemented support for TCPA ACPI tables. A low-level driver for a TPM TIS device and an Atmel device is provided. The implemented specification is described here: