[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Xen-devel] Infineon vtpm problem

To: xense-devel@xxxxxxxxxxxxxxxxxxx, xen-devel@xxxxxxxxxxxxxxxxxxx
From: Erdem Bayer <ebayer@xxxxxxxxxxxx>
Date: Wed, 27 Feb 2008 01:28:01 +0200
Delivery-date: Tue, 26 Feb 2008 15:26:06 -0800
List-id: Xen developer discussion <xen-devel.lists.xensource.com>

Hi

I have successfully applied the patch mentioned here(http://lists.xensource.com/archives/html/xense-devel/2007-04/msg00005.html)to the xen v. 3.1.3 on an HP nx8325 with Infineon TPM.


I cleared the tpm, deleted /var/vtpm/VTPM file and rebooted.

After reboot, vtpm_managerd runs ok. (output is attched to the mail.)

I created a pv vm with the option vtpm = ['instance=1, backend=0'] Thevm boots fine.


I installed trousers-0.3.1 and tpm-tools-1.3.1 from sources on the vm.

I run tcsd -f on the vm. (output is attched to the mail.)

I checkout and run the trousers test suite. 10 tests passed with 230failed. (Is this expected?)

When I try tpm_takeownership on the vm, the command runs fine. (Althougha strange warning appers on tcsd output which is attched).


But when I try tpm_sealdata < foo on the vm I get the following error.

Tspi_Key_LoadKey failed: 0x00003113 - layer=tsp, code=0113 (275),Authorization failed


But other tpm_version runs fine on vm.

tpm-test:~# tpm_version
 TPM 1.2 Version Info:
 Chip Version:        1.2.0.4
 Spec Level:          2
 Errata Revision:     94
 TPM Vendor ID:
 TPM Version:         01010000
 Manufacturer Info:   4554485a

Also this quote is from Xen User's Guide:

"Similarly, the TPM frontend driver must be compiled for the kerneltrying to use TPM functionality. Its driver can be selected in thekernel configuration section Device Driver / Character Devices / TPMDevices. Along with that the TPM driver for the built-in TPM must beselected."

According to my understanding driver for the built-in TPM must beselected on the kernel where TPM frontend driver is used. Am I correctabout this assumption? (The problem is tpm_infineon driver can not beselected on an unpriviledged kernel, it can only be selected on apriviledged kernel)


Am I missing something here? Why do I get auth errors?

Thanks in advance.

Erdem Bayer

Attachment: vtpm_managerd.out
Description: Text document

Attachment: tcsd.out
Description: Text document

_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-devel

Follow-Ups:
- [Xen-devel] Re: [Xense-devel] Infineon vtpm problem
  - From: Stefan Berger

Prev by Date: BestRep|icaRolex Watches, No One Will Be Able To Tell the Difference k0k5zd5osth
Next by Date: [Xen-devel] Re: [Xense-devel] Infineon vtpm problem
Previous by thread: BestRep|icaRolex Watches, No One Will Be Able To Tell the Difference k0k5zd5osth
Next by thread: [Xen-devel] Re: [Xense-devel] Infineon vtpm problem
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.