Hi Ning,
I was packaging tboot for Gentoo Linux and it would never actually manage
to load linux. It managed to SENTER fine but once it tried to jump to the
linux entry point it would fail and reboot. Gentoo Hardened adds
fstack-check by default (among other things) to the gcc specs.
After a lot
By default tboot does not enforce -fstack-check in Config.mk file, so
mainstream linux distributions do not have the issue you encountered in Gentoo
Linux.
However for compatibility with more Linux distributions, we will accept your
patch for tboot. You can get the latest tboot snapshot to test
fstack-check breaks tboot this disables it in CFLAGS.
Signed-off-by: Jason Zaman ja...@perfinion.com
diff -ur tboot-1.8.2.orig/tboot/Config.mk tboot-1.8.2/tboot/Config.mk
--- tboot-1.8.2.orig/tboot/Config.mk 2014-07-28 12:24:21.0 +0400
+++ tboot-1.8.2/tboot/Config.mk 2015-05-05
This release is to add SGX support for Intel Skylake platform and verified
launch control policy user guide, along with several significant bugs fix from
1.8.2, like using the primary object in NULL Hierarchy instead of Platform
Hierarchy for seal/unseal usage for TPM 2.0, Optimizing tboot log
