[svsm-devel] SVSM Development Call - June 12th, 2024
Stefano Garzarella
sgarzare at redhat.com
Wed Jun 12 12:00:31 CEST 2024
Hi Claudio,
On Tue, Jun 11, 2024 at 10:46 PM Claudio Siqueira de Carvalho
<cclaudio at ibm.com> wrote:
>
> Hi,
>
> I would like to add two topics to the SVSM meeting agenda:
I won't be able to participate in today's call because I'm on my way
to Brno for DevConf, so I post a few thoughts below.
>
> - What does TPM locality[1] mean for the SVSM vTPM?
Interesting, IIUC an example could be to use different "localities"
for SVSM itself, edk2, kernel, etc. right ?
> - Is there any SVSM boot event that we want to record in the TPM PCRs/Event log?
> E.g. a SVSM configuration, the OVMF hash, etc
Talking with Daniel, it seems that now EDK2 is self-measuring itself
in PCR0, so maybe it would be better to do this in SVSM.
So it would be nice to have SVSM measuring itself in PCR0, SVSM
measuring EDK2 in PCR0, and EDK2 stopping doing it.
Obviously SVSM and EDK2 are already measured by the SNP attestation
report, so it's not a blocking thing for now, since the guest OS can
use that mechanism to measure them.
Thanks for raising these topics!
Stefano
>
> [1]
> https://trustedcomputinggroup.org/wp-content/uploads/PC-Client-Specific-Platform-TPM-Profile-for-TPM-2p0-v1p05p_r14_pub.pdf
>
> Thanks,
> Claudio
> --
> Svsm-devel mailing list
> Svsm-devel at coconut-svsm.dev
> https://mail.8bytes.org/cgi-bin/mailman/listinfo/svsm-devel
>
More information about the Svsm-devel
mailing list