I am using tboot 1.10.3 and all was working fine with Linux kernel
5.10.88. However, I upgraded to kernel 5.15.16 and, while booting seems
to happen properly, suspend is broken. I am using a Lenovo T460p.
Usually when suspending the power button LED will blink 8 times and then
it goes into a sleep state. With the newer kernel I get power LED and
caps lock LED blinking, cpu fan runs fast, and can't get out of that
state. Need to hard powerdown.
Attaching a txt-stat output. Any ideas what may be happening? Seems like
I maybe need to report to the kernel devs, but let me know if you have
some other suggestions. I could do a git bisect of the kernel source and
probably find the kernel code changes that broke suspend for me. Please
advise
Thank you,
Derek
Intel(r) TXT Configuration Registers:
STS: 0x00018091
senter_done: TRUE
sexit_done: FALSE
mem_config_lock: FALSE
private_open: TRUE
locality_1_open: TRUE
locality_2_open: TRUE
ESTS: 0x00
txt_reset: FALSE
E2STS: 0x0000000000000006
secrets: TRUE
ERRORCODE: 0x00000000
DIDVID: 0x00000001b0068086
vendor_id: 0x8086
device_id: 0xb006
revision_id: 0x1
FSBIF: 0xffffffffffffffff
QPIIF: 0x000000009d003000
SINIT.BASE: 0xb8ed0000
SINIT.SIZE: 327680B (0x50000)
HEAP.BASE: 0xb8f20000
HEAP.SIZE: 917504B (0xe0000)
DPR: 0x00000000b9000041
lock: TRUE
top: 0xb9000000
size: 4MB (4194304B)
PUBLIC.KEY:
2d 67 dd d7 5e f9 33 92 66 a5 6f 27 18 95 55 ae
77 a2 b0 de 77 42 22 e5 de 24 8d be b8 e3 3d d7
***********************************************************
TXT measured launch: TRUE
secrets flag set: TRUE
***********************************************************
TBOOT log:
max_size=32706
zip_count=0
curr_pos=28591
buf:
TBOOT: *********************** TBOOT ***********************
TBOOT: 2021-12-08 16:00 +0100 1.10.3
TBOOT: *****************************************************
TBOOT: command line: logging=serial,memory
TBOOT: IA32_FEATURE_CONTROL_MSR: 0000ff07
TBOOT: CPU is SMX-capable
TBOOT: CPU is VMX-capable
TBOOT: SMX is enabled
TBOOT: TXT chipset and all needed capabilities present
TBOOT: IA32_FEATURE_CONTROL_MSR: 0000ff07
TBOOT: CPU is SMX-capable
TBOOT: CPU is VMX-capable
TBOOT: SMX is enabled
TBOOT: TXT chipset and all needed capabilities present
TBOOT: BSP is cpu 0
TBOOT: original e820 map:
TBOOT: 0000000000000000 - 0000000000058000 (1)
TBOOT: 0000000000058000 - 0000000000059000 (2)
TBOOT: 0000000000059000 - 000000000008c000 (1)
TBOOT: 000000000008c000 - 0000000000100000 (2)
TBOOT: 0000000000100000 - 0000000097e51000 (1)
TBOOT: 0000000097e51000 - 0000000097e53000 (2)
TBOOT: 0000000097e53000 - 0000000097ea9000 (1)
TBOOT: 0000000097ea9000 - 0000000097eaa000 (2)
TBOOT: 0000000097eaa000 - 00000000ac2c5000 (1)
TBOOT: 00000000ac2c5000 - 00000000ac2c6000 (4)
TBOOT: 00000000ac2c6000 - 00000000ac310000 (2)
TBOOT: 00000000ac310000 - 00000000b5645000 (1)
TBOOT: 00000000b5645000 - 00000000b5695000 (20)
TBOOT: 00000000b5695000 - 00000000b7eaf000 (2)
TBOOT: 00000000b7eaf000 - 00000000b7faf000 (4)
TBOOT: 00000000b7faf000 - 00000000b7fff000 (3)
TBOOT: 00000000b7fff000 - 00000000b8000000 (1)
TBOOT: 00000000b8000000 - 00000000b8100000 (2)
TBOOT: 00000000b8200000 - 00000000bc800000 (2)
TBOOT: 00000000f80fa000 - 00000000f80fb000 (2)
TBOOT: 00000000f80fd000 - 00000000f80fe000 (2)
TBOOT: 00000000fe000000 - 00000000fe011000 (2)
TBOOT: 00000000fed20000 - 00000000fed80000 (2)
TBOOT: 0000000100000000 - 0000000441800000 (1)
TBOOT: checking if module is an SINIT for this platform...
TBOOT: chipset production fused: 1
TBOOT: chipset ids: vendor: 0x8086, device: 0xb006, revision: 0x1
TBOOT: processor family/model/stepping: 0x506e3
TBOOT: platform id: 0x14000000000000
TBOOT: 1 ACM chipset id entries:
TBOOT: vendor: 0x8086, device: 0xb006, flags: 0x1, revision: 0x1,
extended: 0x0
TBOOT: 4 ACM processor id entries:
TBOOT: fms: 0x406e0, fms_mask: 0xfff3ff0, platform_id: 0x0,
platform_mask: 0x0
TBOOT: fms: 0x506e0, fms_mask: 0xfff3ff0, platform_id: 0x0,
platform_mask: 0x0
TBOOT: SINIT matches platform
TBOOT: TXT.SINIT.BASE: 0xb8ed0000
TBOOT: TXT.SINIT.SIZE: 0x50000 (327680)
TBOOT: copied SINIT (size=20000) to 0xb8ed0000
TBOOT: AC mod base alignment OK
TBOOT: AC mod size OK
TBOOT: AC module header dump for SINIT:
TBOOT: type: 0x2 (ACM_TYPE_CHIPSET)
TBOOT: subtype: 0x0
TBOOT: length: 0xa1 (161)
TBOOT: version: 0
TBOOT: chipset_id: 0xb006
TBOOT: flags: 0x0
TBOOT: pre_production: 0
TBOOT: debug_signed: 0
TBOOT: vendor: 0x8086
TBOOT: date: 0x20180904
TBOOT: size*4: 0x20000 (131072)
TBOOT: txt_svn: 0x00000000
TBOOT: se_svn: 0x00000004
TBOOT: code_control: 0x0
TBOOT: entry point: 0x00000008:0000e418
TBOOT: scratch_size: 0x8f (143)
TBOOT: info_table:
TBOOT: uuid: {0x7fc03aaa, 0x46a7, 0x18db, 0xac2e,
{0x69, 0x8f, 0x8d, 0x41, 0x7f, 0x5a}}
TBOOT: ACM_UUID_V3
TBOOT: chipset_acm_type: 0x1 (SINIT)
TBOOT: version: 6
TBOOT: length: 0x30 (48)
TBOOT: chipset_id_list: 0x4f0
TBOOT: os_sinit_data_ver: 0x7
TBOOT: min_mle_hdr_ver: 0x00020000
TBOOT: capabilities: 0x0000036e
TBOOT: rlp_wake_getsec: 0
TBOOT: rlp_wake_monitor: 1
TBOOT: ecx_pgtbl: 1
TBOOT: stm: 1
TBOOT: pcr_map_no_legacy: 0
TBOOT: pcr_map_da: 1
TBOOT: platform_type: 1
TBOOT: max_phy_addr: 1
TBOOT: tcg_event_log_format: 1
TBOOT: cbnt_supported: 0
TBOOT: acm_ver: 171
TBOOT: chipset list:
TBOOT: count: 1
TBOOT: entry 0:
TBOOT: flags: 0x1
TBOOT: vendor_id: 0x8086
TBOOT: device_id: 0xb006
TBOOT: revision_id: 0x1
TBOOT: extended_id: 0x0
TBOOT: processor list:
TBOOT: count: 4
TBOOT: entry 0:
TBOOT: fms: 0x406e0
TBOOT: fms_mask: 0xfff3ff0
TBOOT: platform_id: 0x0
TBOOT: platform_mask: 0x0
TBOOT: entry 1:
TBOOT: fms: 0x506e0
TBOOT: fms_mask: 0xfff3ff0
TBOOT: platform_id: 0x0
TBOOT: platform_mask: 0x0
TBOOT: entry 2:
TBOOT: fms: 0x806e0
TBOOT: fms_mask: 0xfff3ff0
TBOOT: platform_id: 0x0
TBOOT: platform_mask: 0x0
TBOOT: entry 3:
TBOOT: fms: 0x906e0
TBOOT: fms_mask: 0xfff3ff0
TBOOT: platform_id: 0x0
TBOOT: platform_mask: 0x0
TBOOT: TPM info list:
TBOOT: TPM capability:
TBOOT: ext_policy: 0x3
TBOOT: tpm_family : 0x3
TBOOT: tpm_nv_index_set : 0x0
TBOOT: alg count: 6
TBOOT: alg_id: 0x4
TBOOT: alg_id: 0xb
TBOOT: alg_id: 0xc
TBOOT: alg_id: 0xd
TBOOT: alg_id: 0x14
TBOOT: alg_id: 0x18
TBOOT: TPM: FIFO_INF Locality 0 is open
TBOOT: TPM: discrete TPM1.2 Family 0x0
TBOOT: Warning: TPM1.2 detected, SHA1 is selected as hashing algorithm.
TBOOT: TPM is ready
TBOOT: TPM nv_locked: TRUE
TBOOT: TPM timeout values: A: 750, B: 750, C: 2000, D: 750
TBOOT: Wrong timeout B, fallback to 2000
TBOOT: Wrong timeout C, fallback to 75000
TBOOT: SGX:verify_IA32_se_svn_status is called
TBOOT: SGX is enabled, cpuid.ebx:0x29c6fbf
TBOOT: Comparing se_svn with ACM Header se_svn
TBOOT: se_svn is not equal to ACM se_svn
TBOOT: TPM: write nv 50000004, offset 00000000, 00000001 bytes, return =
00000002
TBOOT: Write sgx_svn_index 0x50000004 failed.
TBOOT: reading Verified Launch Policy from TPM NV...
TBOOT: TPM: get capability, return value = 00000002
TBOOT: TPM: fail to get public data of 0x20000001 in TPM NV
TBOOT: :reading failed
TBOOT: reading Launch Control Policy from TPM NV...
TBOOT: TPM: get capability, return value = 00000002
TBOOT: TPM: fail to get public data of 0x40000001 in TPM NV
TBOOT: :reading failed
TBOOT: failed to read policy from TPM NV, using default
TBOOT: policy:
TBOOT: version: 2
TBOOT: policy_type: TB_POLTYPE_CONT_NON_FATAL
TBOOT: hash_alg: TB_HALG_SHA1
TBOOT: policy_control: 00000001 (EXTEND_PCR17)
TBOOT: num_entries: 3
TBOOT: policy entry[0]:
TBOOT: mod_num: 0
TBOOT: pcr: none
TBOOT: hash_type: TB_HTYPE_ANY
TBOOT: num_hashes: 0
TBOOT: policy entry[1]:
TBOOT: mod_num: any
TBOOT: pcr: 19
TBOOT: hash_type: TB_HTYPE_ANY
TBOOT: num_hashes: 0
TBOOT: policy entry[2]:
TBOOT: mod_num: nv_raw
nv_index: 40000010
TBOOT: pcr: 22
TBOOT: hash_type: TB_HTYPE_ANY
TBOOT: num_hashes: 0
TBOOT: no policy in TPM NV.
TBOOT: IA32_FEATURE_CONTROL_MSR: 0000ff07
TBOOT: CPU is SMX-capable
TBOOT: CPU is VMX-capable
TBOOT: SMX is enabled
TBOOT: TXT chipset and all needed capabilities present
TBOOT: TXT.ERRORCODE: 0x0
TBOOT: TXT.ESTS: 0x0
TBOOT: TXT.E2STS: 0x0
TBOOT: IA32_FEATURE_CONTROL_MSR: 0000ff07
TBOOT: CPU is SMX-capable
TBOOT: CPU is VMX-capable
TBOOT: SMX is enabled
TBOOT: TXT chipset and all needed capabilities present
TBOOT: TXT.HEAP.BASE: 0xb8f20000
TBOOT: TXT.HEAP.SIZE: 0xe0000 (917504)
TBOOT: bios_data (@0xb8f20008, 0x56):
TBOOT: version: 6
TBOOT: bios_sinit_size: 0x0 (0)
TBOOT: lcp_pd_base: 0x0
TBOOT: lcp_pd_size: 0x0 (0)
TBOOT: num_logical_procs: 8
TBOOT: flags: 0x200000000
TBOOT: ext_data_elts[]:
TBOOT: BIOS_SPEC_VER:
TBOOT: major: 0x2
TBOOT: minor: 0x1
TBOOT: rev: 0x0
TBOOT: ACM:
TBOOT: num_acms: 1
TBOOT: acm_addrs[0]: 0xfff4f000
TBOOT: IA32_FEATURE_CONTROL_MSR: 0000ff07
TBOOT: CPU is SMX-capable
TBOOT: CPU is VMX-capable
TBOOT: SMX is enabled
TBOOT: TXT chipset and all needed capabilities present
TBOOT: CR0 and EFLAGS OK
TBOOT: supports preserving machine check errors
TBOOT: CPU is ready for SENTER
TBOOT: checking previous errors on the last boot.
last boot has no error.
TBOOT: file addresses:
TBOOT: &_start=0x804000
TBOOT: &_end=0x2a8bd54
TBOOT: &_mle_start=0x804000
TBOOT: &_mle_end=0x84e000
TBOOT: &_post_launch_entry=0x804010
TBOOT: &_txt_wakeup=0x804210
TBOOT: &g_mle_hdr=0x81f320
TBOOT: MLE header:
TBOOT: uuid={0x9082ac5a, 0x476f, 0x74a7, 0x5c0f,
{0x55, 0xa2, 0xcb, 0x51, 0xb6, 0x42}}
TBOOT: length=34
TBOOT: version=00020001
TBOOT: entry_point=00000010
TBOOT: first_valid_page=00000000
TBOOT: mle_start_off=4000
TBOOT: mle_end_off=4e000
TBOOT: capabilities: 0x00000627
TBOOT: rlp_wake_getsec: 1
TBOOT: rlp_wake_monitor: 1
TBOOT: ecx_pgtbl: 1
TBOOT: stm: 0
TBOOT: pcr_map_no_legacy: 0
TBOOT: pcr_map_da: 1
TBOOT: platform_type: 0
TBOOT: max_phy_addr: 0
TBOOT: tcg_event_log_format: 1
TBOOT: cbnt_supported: 1
TBOOT: MLE start=0x804000, end=0x84e000, size=0x4a000
TBOOT: ptab_size=3000, ptab_base=0x801000
TBOOT: configuring DMAR remapping
TBOOT: record passes table end
TBOOT: TXT.HEAP.BASE: 0xb8f20000
TBOOT: TXT.HEAP.SIZE: 0xe0000 (917504)
TBOOT: bios_data (@0xb8f20008, 0x56):
TBOOT: version: 6
TBOOT: bios_sinit_size: 0x0 (0)
TBOOT: lcp_pd_base: 0x0
TBOOT: lcp_pd_size: 0x0 (0)
TBOOT: num_logical_procs: 8
TBOOT: flags: 0x200000000
TBOOT: ext_data_elts[]:
TBOOT: BIOS_SPEC_VER:
TBOOT: major: 0x2
TBOOT: minor: 0x1
TBOOT: rev: 0x0
TBOOT: ACM:
TBOOT: num_acms: 1
TBOOT: acm_addrs[0]: 0xfff4f000
TBOOT: discarding RAM above reserved regions: 0x97e53000 - 0x97ea9000
TBOOT: discarding RAM above reserved regions: 0x97eaa000 - 0xac2c5000
TBOOT: discarding RAM above reserved regions: 0xac310000 - 0xb5645000
TBOOT: discarding RAM above reserved regions: 0xb7fff000 - 0xb8000000
TBOOT: min_lo_ram: 0x0, max_lo_ram: 0x97e51000
TBOOT: min_hi_ram: 0x100000000, max_hi_ram: 0x441800000
TBOOT: no LCP module found
TBOOT: os_sinit_data (@0xb8f3517e, 0x7c):
TBOOT: version: 7
TBOOT: flags: 0
TBOOT: mle_ptab: 0x801000
TBOOT: mle_size: 0x4a000 (303104)
TBOOT: mle_hdr_base: 0x1b320
TBOOT: vtd_pmr_lo_base: 0x0
TBOOT: vtd_pmr_lo_size: 0x97e00000
TBOOT: vtd_pmr_hi_base: 0x100000000
TBOOT: vtd_pmr_hi_size: 0x341800000
TBOOT: lcp_po_base: 0x0
TBOOT: lcp_po_size: 0x0 (0)
TBOOT: capabilities: 0x00000402
TBOOT: rlp_wake_getsec: 0
TBOOT: rlp_wake_monitor: 1
TBOOT: ecx_pgtbl: 0
TBOOT: stm: 0
TBOOT: pcr_map_no_legacy: 0
TBOOT: pcr_map_da: 0
TBOOT: platform_type: 0
TBOOT: max_phy_addr: 0
TBOOT: tcg_event_log_format: 0
TBOOT: cbnt_supported: 1
TBOOT: efi_rsdt_ptr: 0x2472e20
TBOOT: ext_data_elts[]:
TBOOT: EVENT_LOG_POINTER:
TBOOT: size: 16
TBOOT: elog_addr: 0xb8f30176
TBOOT: Event Log Container:
TBOOT: Signature: TXT Event Container
TBOOT: ContainerVer: 1.0
TBOOT: PCREventVer: 1.0
TBOOT: Size: 20480
TBOOT: EventsOffset: [48,48]
TBOOT: Disabling VGA logging before GETSEC[SENTER]
TBOOT: setting MTRRs for acmod: base=0xb8ed0000, size=0x20000, num_pages=32
TBOOT: The maximum allowed MTRR range size=16 Pages
TBOOT: executing GETSEC[SENTER]...
TBOOT: IA32_FEATURE_CONTROL_MSR: 0000ff07
TBOOT: CPU is SMX-capable
TBOOT: SMX is enabled
TBOOT: TXT chipset and all needed capabilities present
TBOOT: IA32_FEATURE_CONTROL_MSR: 0000ff07
TBOOT: CPU is SMX-capable
TBOOT: CPU is VMX-capable
TBOOT: SMX is enabled
TBOOT: TXT chipset and all needed capabilities present
TBOOT: *********************** TBOOT ***********************
TBOOT: 2021-12-08 16:00 +0100 1.10.3
TBOOT: *****************************************************
TBOOT: command line: logging=serial,memory
TBOOT: IA32_FEATURE_CONTROL_MSR: 0000ff07
TBOOT: CPU is SMX-capable
TBOOT: CPU is VMX-capable
TBOOT: SMX is enabled
TBOOT: TXT chipset and all needed capabilities present
TBOOT: SINIT ACM successfully returned...
TBOOT: IA32_FEATURE_CONTROL_MSR: 0000ff07
TBOOT: CPU is SMX-capable
TBOOT: CPU is VMX-capable
TBOOT: SMX is enabled
TBOOT: TXT chipset and all needed capabilities present
TBOOT: BSP is cpu 0
TBOOT: original e820 map:
TBOOT: 0000000000000000 - 0000000000058000 (1)
TBOOT: 0000000000058000 - 0000000000059000 (2)
TBOOT: 0000000000059000 - 000000000008c000 (1)
TBOOT: 000000000008c000 - 0000000000100000 (2)
TBOOT: 0000000000100000 - 0000000097e51000 (1)
TBOOT: 0000000097e51000 - 0000000097e53000 (2)
TBOOT: 0000000097e53000 - 0000000097ea9000 (1)
TBOOT: 0000000097ea9000 - 0000000097eaa000 (2)
TBOOT: 0000000097eaa000 - 00000000ac2c5000 (1)
TBOOT: 00000000ac2c5000 - 00000000ac2c6000 (4)
TBOOT: 00000000ac2c6000 - 00000000ac310000 (2)
TBOOT: 00000000ac310000 - 00000000b5645000 (1)
TBOOT: 00000000b5645000 - 00000000b5695000 (20)
TBOOT: 00000000b5695000 - 00000000b7eaf000 (2)
TBOOT: 00000000b7eaf000 - 00000000b7faf000 (4)
TBOOT: 00000000b7faf000 - 00000000b7fff000 (3)
TBOOT: 00000000b7fff000 - 00000000b8000000 (1)
TBOOT: 00000000b8000000 - 00000000b8100000 (2)
TBOOT: 00000000b8200000 - 00000000bc800000 (2)
TBOOT: 00000000f80fa000 - 00000000f80fb000 (2)
TBOOT: 00000000f80fd000 - 00000000f80fe000 (2)
TBOOT: 00000000fe000000 - 00000000fe011000 (2)
TBOOT: 00000000fed20000 - 00000000fed80000 (2)
TBOOT: 0000000100000000 - 0000000441800000 (1)
TBOOT: TPM: FIFO_INF Locality 0 is open
TBOOT: TPM: discrete TPM1.2 Family 0x0
TBOOT: Warning: TPM1.2 detected, SHA1 is selected as hashing algorithm.
TBOOT: TPM is ready
TBOOT: TPM nv_locked: TRUE
TBOOT: TPM timeout values: A: 750, B: 750, C: 2000, D: 750
TBOOT: Wrong timeout B, fallback to 2000
TBOOT: Wrong timeout C, fallback to 75000
TBOOT: SGX:verify_IA32_se_svn_status is called
TBOOT: SGX is enabled, cpuid.ebx:0x29c6fbf
TBOOT: Comparing se_svn with ACM Header se_svn
TBOOT: se_svn is not equal to ACM se_svn
TBOOT: TPM: write nv 50000004, offset 00000000, 00000001 bytes, return =
00000002
TBOOT: Write sgx_svn_index 0x50000004 failed.
TBOOT: reading Verified Launch Policy from TPM NV...
TBOOT: TPM: get capability, return value = 00000002
TBOOT: TPM: fail to get public data of 0x20000001 in TPM NV
TBOOT: :reading failed
TBOOT: reading Launch Control Policy from TPM NV...
TBOOT: TPM: get capability, return value = 00000002
TBOOT: TPM: fail to get public data of 0x40000001 in TPM NV
TBOOT: :reading failed
TBOOT: failed to read policy from TPM NV, using default
TBOOT: policy:
TBOOT: version: 2
TBOOT: policy_type: TB_POLTYPE_CONT_NON_FATAL
TBOOT: hash_alg: TB_HALG_SHA1
TBOOT: policy_control: 00000001 (EXTEND_PCR17)
TBOOT: num_entries: 3
TBOOT: policy entry[0]:
TBOOT: mod_num: 0
TBOOT: pcr: none
TBOOT: hash_type: TB_HTYPE_ANY
TBOOT: num_hashes: 0
TBOOT: policy entry[1]:
TBOOT: mod_num: any
TBOOT: pcr: 19
TBOOT: hash_type: TB_HTYPE_ANY
TBOOT: num_hashes: 0
TBOOT: policy entry[2]:
TBOOT: mod_num: nv_raw
nv_index: 40000010
TBOOT: pcr: 22
TBOOT: hash_type: TB_HTYPE_ANY
TBOOT: num_hashes: 0
TBOOT: no policy in TPM NV.
TBOOT: IA32_FEATURE_CONTROL_MSR: 0000ff07
TBOOT: CPU is SMX-capable
TBOOT: CPU is VMX-capable
TBOOT: SMX is enabled
TBOOT: TXT chipset and all needed capabilities present
TBOOT: TXT.ERRORCODE: 0xc0000001
TBOOT: AC module error : acm_type=0x1, progress=0x00, error=0x0
TBOOT: TXT.ESTS: 0x0
TBOOT: TXT.E2STS: 0x0
TBOOT: IA32_FEATURE_CONTROL_MSR: 0000ff07
TBOOT: CPU is SMX-capable
TBOOT: CPU is VMX-capable
TBOOT: SMX is enabled
TBOOT: TXT chipset and all needed capabilities present
TBOOT: TXT.HEAP.BASE: 0xb8f20000
TBOOT: TXT.HEAP.SIZE: 0xe0000 (917504)
TBOOT: bios_data (@0xb8f20008, 0x56):
TBOOT: version: 6
TBOOT: bios_sinit_size: 0x0 (0)
TBOOT: lcp_pd_base: 0x0
TBOOT: lcp_pd_size: 0x0 (0)
TBOOT: num_logical_procs: 8
TBOOT: flags: 0x200000000
TBOOT: ext_data_elts[]:
TBOOT: BIOS_SPEC_VER:
TBOOT: major: 0x2
TBOOT: minor: 0x1
TBOOT: rev: 0x0
TBOOT: ACM:
TBOOT: num_acms: 1
TBOOT: acm_addrs[0]: 0xfff4f000
TBOOT: IA32_FEATURE_CONTROL_MSR: 0000ff07
TBOOT: CPU is SMX-capable
TBOOT: CPU is VMX-capable
TBOOT: SMX is enabled
TBOOT: TXT chipset and all needed capabilities present
TBOOT: Post_launch started ...
TBOOT: measured launch succeeded
TBOOT: TXT.HEAP.BASE: 0xb8f20000
TBOOT: TXT.HEAP.SIZE: 0xe0000 (917504)
TBOOT: bios_data (@0xb8f20008, 0x56):
TBOOT: version: 6
TBOOT: bios_sinit_size: 0x0 (0)
TBOOT: lcp_pd_base: 0x0
TBOOT: lcp_pd_size: 0x0 (0)
TBOOT: num_logical_procs: 8
TBOOT: flags: 0x200000000
TBOOT: ext_data_elts[]:
TBOOT: BIOS_SPEC_VER:
TBOOT: major: 0x2
TBOOT: minor: 0x1
TBOOT: rev: 0x0
TBOOT: ACM:
TBOOT: num_acms: 1
TBOOT: acm_addrs[0]: 0xfff4f000
TBOOT: os_mle_data (@0xb8f2005e, 0x15120):
TBOOT: version: 3
TBOOT: loader context addr: 0x2d000
TBOOT: os_sinit_data (@0xb8f3517e, 0x7c):
TBOOT: version: 7
TBOOT: flags: 0
TBOOT: mle_ptab: 0x801000
TBOOT: mle_size: 0x4a000 (303104)
TBOOT: mle_hdr_base: 0x1b320
TBOOT: vtd_pmr_lo_base: 0x0
TBOOT: vtd_pmr_lo_size: 0x97e00000
TBOOT: vtd_pmr_hi_base: 0x100000000
TBOOT: vtd_pmr_hi_size: 0x341800000
TBOOT: lcp_po_base: 0x0
TBOOT: lcp_po_size: 0x0 (0)
TBOOT: capabilities: 0x00000402
TBOOT: rlp_wake_getsec: 0
TBOOT: rlp_wake_monitor: 1
TBOOT: ecx_pgtbl: 0
TBOOT: stm: 0
TBOOT: pcr_map_no_legacy: 0
TBOOT: pcr_map_da: 0
TBOOT: platform_type: 0
TBOOT: max_phy_addr: 0
TBOOT: tcg_event_log_format: 0
TBOOT: cbnt_supported: 1
TBOOT: efi_rsdt_ptr: 0x2472e20
TBOOT: ext_data_elts[]:
TBOOT: EVENT_LOG_POINTER:
TBOOT: size: 16
TBOOT: elog_addr: 0xb8f30176
TBOOT: Event Log Container:
TBOOT: Signature: TXT Event Container
TBOOT: ContainerVer: 1.0
TBOOT: PCREventVer: 1.0
TBOOT: Size: 20480
TBOOT: EventsOffset: [48,296]
TBOOT: Event:
TBOOT: PCRIndex: 17
TBOOT: Type: 0x402
TBOOT: Digest: a1 df 90 99 e3 8f 37 04 e3 8b 1e f2 22
18 ed 01 8f d5 bf 8a
TBOOT: Data: 36 bytes
75 54 14 df f4 e1 1f ba 3d 4a db 0b b6 bc 8f
04
c0 bd 3b 62 0c e5 67 c3 29 c8 b2 0f 7f 5b 1d
9d
00 00 00 00
TBOOT: Event:
TBOOT: PCRIndex: 255
TBOOT: Type: 0x401
TBOOT: Digest: 00 00 00 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00
TBOOT: Data: 4 bytes
00 00 00 00
TBOOT: Event:
TBOOT: PCRIndex: 17
TBOOT: Type: 0x403
TBOOT: Digest: 1d 16 25 98 92 39 3a 98 34 ba bd a4 21
4e f4 eb 86 65 40 36
TBOOT: Data: 80 bytes
ff ff ff ff 30 06 16 20 06 b0 00 00 00 01 ff
ff
ff ff ff ff 00 00 00 00 00 00 00 00 00 00 00
00
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
00
TBOOT: Event:
TBOOT: PCRIndex: 18
TBOOT: Type: 0x404
TBOOT: Digest: 48 b7 65 af 30 0a b0 db f4 1c 29 a3 0d
b7 3a 3a fc 37 0f 1d
TBOOT: Data: 0 bytes
TBOOT: sinit_mle_data (@0xb8f351fa, 0x2fc):
TBOOT: version: 8
TBOOT: bios_acm_id:
ff ff ff ff 30 06 16 20 06 b0 00 00 00 01 ff ff ff ff ff ff
TBOOT: edx_senter_flags: 0x00000000
TBOOT: mseg_valid: 0x0
TBOOT: sinit_hash:
a1 df 90 99 e3 8f 37 04 e3 8b 1e f2 22 18 ed 01 8f d5 bf 8a
TBOOT: mle_hash:
48 b7 65 af 30 0a b0 db f4 1c 29 a3 0d b7 3a 3a fc 37 0f 1d
TBOOT: stm_hash:
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
TBOOT: lcp_policy_hash:
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
TBOOT: lcp_policy_control: 0x00000000
TBOOT: rlp_wakeup_addr: 0xb8ed1ce0
TBOOT: num_mdrs: 7
TBOOT: mdrs_off: 0x254
TBOOT: num_vtd_dmars: 168
TBOOT: vtd_dmars_off: 0x1ac
TBOOT: sinit_mdrs:
TBOOT: 0000000000000000 - 00000000000a0000 (GOOD)
TBOOT: 0000000000100000 - 0000000001000000 (GOOD)
TBOOT: 0000000001000000 - 00000000b8c00000 (GOOD)
TBOOT: 0000000100000000 - 0000000441800000 (GOOD)
TBOOT: 00000000b9000000 - 00000000ba000000 (SMRAM NON-OVERLAY)
TBOOT: 00000000f8000000 - 00000000fc000000 (PCIE EXTENDED CONFIG)
TBOOT: 0000000000000000 - 0000000000000000 (GOOD)
TBOOT: proc_scrtm_status: 0x00000000
TBOOT: CPU supports 39 phys address bits
TBOOT: acpi_table_ioapic @ 0xb7ff106c, .address = 0xfec00000
TBOOT: acpi_table_mcfg @ 0xb7ff0000, .base_address = 0xf8000000
TBOOT: mtrr_def_type: e = 1, fe = 1, type = 6
TBOOT: mtrrs:
TBOOT: base mask type v
TBOOT: 00000000c0000 0000007fc0000 00 01
TBOOT: 00000000bc000 0000007ffc000 00 01
TBOOT: 00000000ba000 0000007ffe000 00 01
TBOOT: 0000000000000 0000000000000 00 00
TBOOT: 0000000000000 0000000000000 00 00
TBOOT: 0000000000000 0000000000000 00 00
TBOOT: 0000000000000 0000000000000 00 00
TBOOT: 0000000000000 0000000000000 00 00
TBOOT: 0000000000000 0000000000000 00 00
TBOOT: 0000000000000 0000000000000 00 00
TBOOT: discarding RAM above reserved regions: 0x97e53000 - 0x97ea9000
TBOOT: discarding RAM above reserved regions: 0x97eaa000 - 0xac2c5000
TBOOT: discarding RAM above reserved regions: 0xac310000 - 0xb5645000
TBOOT: discarding RAM above reserved regions: 0xb7fff000 - 0xb8000000
TBOOT: reserving 0x97e00000 - 0x97e51000, which was truncated for VT-d
TBOOT: min_lo_ram: 0x0, max_lo_ram: 0x97e51000
TBOOT: min_hi_ram: 0x100000000, max_hi_ram: 0x441800000
TBOOT: MSR for SMM monitor control on BSP is 0x0.
TBOOT: verifying ILP is opt-out or has the same MSEG header with TXT.MSEG.BASE
opt-out
TBOOT: : succeeded.
TBOOT: enabling SMIs and NMI on BSP
TBOOT: mle_join.entry_point = 804210
TBOOT: mle_join.seg_sel = 8
TBOOT: mle_join.gdt_base = 805000
TBOOT: mle_join.gdt_limit = 3f
TBOOT: joining RLPs to MLE with MONITOR wakeup
TBOOT: rlp_wakeup_addr = 0xb8ed1ce0
TBOOT: cpu 2 waking up from TXT sleep
TBOOT: waiting for all APs (7) to enter wait-for-sipi...
TBOOT: MSR for SMM monitor control on cpu 2 is 0x0
TBOOT: verifying ILP's MSR_IA32_SMM_MONITOR_CTL with cpu 2
: succeeded.
TBOOT: enabling SMIs and NMI on cpu 2
TBOOT: .VMXON done for cpu 2
TBOOT:
TBOOT: cpu 4 waking up from TXT sleep
TBOOT: launching mini-guest for cpu 2
TBOOT: MSR for SMM monitor control on cpu 4 is 0x0
TBOOT: verifying ILP's MSR_IA32_SMM_MONITOR_CTL with cpu 4
: succeeded.
TBOOT: enabling SMIs and NMI on cpu 4
TBOOT: VMXON done for cpu 4
TBOOT: launching mini-guest for cpu 4
TBOOT: cpu 3 waking up from TXT sleep
TBOOT: MSR for SMM monitor control on cpu 3 is 0x0
TBOOT: verifying ILP's MSR_IA32_SMM_MONITOR_CTL with cpu 3
: succeeded.
TBOOT: enabling SMIs and NMI on cpu 3
TBOOT: VMXON done for cpu 3
TBOOT: launching mini-guest for cpu 3
TBOOT: cpu 5 waking up from TXT sleep
TBOOT: MSR for SMM monitor control on cpu 5 is 0x0
TBOOT: verifying ILP's MSR_IA32_SMM_MONITOR_CTL with cpu 5
: succeeded.
TBOOT: enabling SMIs and NMI on cpu 5
TBOOT: VMXON done for cpu 5
TBOOT: launching mini-guest for cpu 5
TBOOT: cpu 6 waking up from TXT sleep
TBOOT: MSR for SMM monitor control on cpu 6 is 0x0
TBOOT: verifying ILP's MSR_IA32_SMM_MONITOR_CTL with cpu 6
: succeeded.
TBOOT: enabling SMIs and NMI on cpu 6
TBOOT: VMXON done for cpu 6
TBOOT: launching mini-guest for cpu 6
TBOOT: cpu 7 waking up from TXT sleep
TBOOT: MSR for SMM monitor control on cpu 7 is 0x0
TBOOT: verifying ILP's MSR_IA32_SMM_MONITOR_CTL with cpu 7
: succeeded.
TBOOT: enabling SMIs and NMI on cpu 7
TBOOT: VMXON done for cpu 7
TBOOT: launching mini-guest for cpu 7
TBOOT: cpu 1 waking up from TXT sleep
TBOOT: MSR for SMM monitor control on cpu 1 is 0x0
TBOOT: .verifying ILP's MSR_IA32_SMM_MONITOR_CTL with cpu 1
. : succeeded.
TBOOT: enabling SMIs and NMI on cpu 1
TBOOT: .VMXON done for cpu 1
TBOOT:
TBOOT: launching mini-guest for cpu 1
TBOOT: all APs in wait-for-sipi
TBOOT: saved IA32_MISC_ENABLE = 0x00850089
TBOOT: set TXT.CMD.SECRETS flag
TBOOT: opened TPM locality 1
TBOOT: got sinit match on module #2
TBOOT: no LCP module found
TBOOT: protecting TXT heap (b8f20000 - b8ffffff) in e820 table
TBOOT: protecting SINIT (b8ed0000 - b8f1ffff) in e820 table
TBOOT: protecting TXT Private Space (fed20000 - fed2ffff) in e820 table
TBOOT: verifying e820 table against SINIT MDRs: verification succeeded.
TBOOT: verifying module 0 of mbi (2a8c000 - 34463ff) in e820 table
(range from 0000000002a8c000 to 0000000003446400 is in E820_RAM)
TBOOT: : succeeded.
TBOOT: verifying module 1 of mbi (3447000 - 5fcfb9f) in e820 table
(range from 0000000003447000 to 0000000005fcfba0 is in E820_RAM)
TBOOT: : succeeded.
TBOOT: verifying tboot and its page table (800000 - 2a8bd53) in e820 table
(range from 0000000000800000 to 0000000002a8bd54 is in E820_RAM)
TBOOT: : succeeded.
TBOOT: ELF magic number is not matched, image is not ELF format.
TBOOT: protecting tboot (800000 - 2a8bfff) in e820 table
TBOOT: verifying policy
TBOOT: verifying module "
root=/dev/mapper/luks-7d971340-2305-4200-8cb7-da885315072b ro rd.luks.key=/keys/
Schubert-root-key.gpg:UUID=d63fff6a-1257-4be5-8011-bbb39d7845c9:UUID=7d971340-23
05-4200-8cb7-da885315072b rd.luks.key=/keys/Schubert-root-key.gpg:UUID=42FE-9744
:UUID=7d971340-2305-4200-8cb7-da885315072b rd.luks.allow-discards ipv6.disable=1
pcie_aspm=force intel_iommu=on ap_wake_mwait=true noefi lsm="...
TBOOT: OK : eb 99 87 d8 65 a1 76 54 4f 2f aa 4a 90 db ec 49 5d 73 8b f5
TBOOT: verifying module ""...
TBOOT: OK : 48 86 da cb e9 c7 74 34 6f 67 25 93 68 50 9c aa 69 07 d9 5a
TBOOT: all modules are verified
TBOOT: pre_k_s3_state:
TBOOT: vtd_pmr_lo_base: 0x0
TBOOT: vtd_pmr_lo_size: 0x97e00000
TBOOT: vtd_pmr_hi_base: 0x100000000
TBOOT: vtd_pmr_hi_size: 0x341800000
TBOOT: pol_hash: 86 a4 62 b6 f2 09 a2 e0 da d4 4e 8d 89 34 a2 40 59 0d 52 22
TBOOT: VL measurements:
TBOOT: PCR 17 (alg count 1):
TBOOT: alg 0004: c3 43 84 97 fd a8 27 be 3b 32 1c 53 09 a2 04 f0 c9
e5 39 43
TBOOT: PCR 18 (alg count 1):
TBOOT: alg 0004: eb 99 87 d8 65 a1 76 54 4f 2f aa 4a 90 db ec 49 5d
73 8b f5
TBOOT: PCR 19 (alg count 1):
TBOOT: alg 0004: 48 86 da cb e9 c7 74 34 6f 67 25 93 68 50 9c aa 69
07 d9 5a
TBOOT: TPM: seal data, return value = 00000001
TBOOT: failed to seal data
TBOOT: Event:
TBOOT: PCRIndex: 17
TBOOT: Type: 0x501
TBOOT: Digest: c3 43 84 97 fd a8 27 be 3b 32 1c 53 09
a2 04 f0 c9 e5 39 43
TBOOT: Data: 0 bytes
TBOOT: Event:
TBOOT: PCRIndex: 18
TBOOT: Type: 0x501
TBOOT: Digest: eb 99 87 d8 65 a1 76 54 4f 2f aa 4a 90
db ec 49 5d 73 8b f5
TBOOT: Data: 0 bytes
TBOOT: Event:
TBOOT: PCRIndex: 19
TBOOT: Type: 0x501
TBOOT: Digest: 48 86 da cb e9 c7 74 34 6f 67 25 93 68
50 9c aa 69 07 d9 5a
TBOOT: Data: 0 bytes
TBOOT: creation or verification of S3 measurements failed.
TBOOT: tboot_shared data:
TBOOT: version: 6
TBOOT: log_addr: 0x00060000
TBOOT: shutdown_entry: 0x008041d0
TBOOT: shutdown_type: 0
TBOOT: tboot_base: 0x00804000
TBOOT: tboot_size: 0x2287d54
TBOOT: num_in_wfs: 7
TBOOT: flags: 0x00000000
TBOOT: ap_wake_addr: 0x00000000
TBOOT: ap_wake_trigger: 0
TBOOT: reserving tboot memory log (60000 - 67fff) in e820 table
TBOOT: no LCP module found
TBOOT: ELF magic number is not matched, image is not ELF format.
TBOOT: assuming kernel is Linux format
TBOOT: get_highest_sized_ram: size 2b88ba0 -> base 6c0c5000, size 2bd3b000
TBOOT: Initrd from 0x7d477000 to 0x7ffffba0
TBOOT: Kernel (protected mode) from 0x3000000 to 0x39b6c00
TBOOT: Kernel (real mode) from 0x71c00 to 0x75400
TBOOT: Linux cmdline from 0x7a900 to 0x7ad00:
TBOOT: root=/dev/mapper/luks-7d971340-2305-4200-8cb7-da885315072b ro rd.luks.
TBOOT: key=/keys/Schubert-root-key.gpg:UUID=d63fff6a-1257-4be5-8011-bbb39d784
TBOOT: 5c9:UUID=7d971340-2305-4200-8cb7-da885315072b rd.luks.key=/keys/Schube
TBOOT: rt-root-key.gpg:UUID=42FE-9744:UUID=7d971340-2305-4200-8cb7-da88531507
TBOOT: 2b rd.luks.allow-discards ipv6.disable=1 pcie_aspm=force intel_iommu=o
TBOOT: n ap_wake_mwait=true noefi lsm=
TBOOT: EFI memmap: memmap base: 0x69808, memmap size: 0xb70
TBOOT: EFI memmap: descr size: 0x30, descr version: 0x1
TBOOT: transfering control to kernel @0x3000000...
TBOOT: VMXOFF done for cpu 2
TBOOT: cpu 2 waking up, SIPI vector=87000
TBOOT: VMXOFF done for cpu 4
TBOOT: cpu 4 waking up, SIPI vector=87000
TBOOT: VMXOFF done for cpu 6
TBOOT: cpu 6 waking up, SIPI vector=87000
TBOOT: VMXOFF done for cpu 1
TBOOT: cpu 1 waking up, SIPI vector=87000
TBOOT: VMXOFF done for cpu 3
TBOOT: cpu 3 waking up, SIPI vector=87000
TBOOT: VMXOFF done for cpu 5
TBOOT: cpu 5 waking up, SIPI vector=87000
TBOOT: VMXOFF done for cpu 7
TBOOT: cpu 7 waking up, SIPI vector=87000
_______________________________________________
tboot-devel mailing list
tboot-devel@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/tboot-devel
