Hi,
I have been trying to get tboot to work on my thinkpad laptop but have run
into some issues, I have a thinkpad X1 (not carbon) with an i5 cpu, I enabled
vt-x and vt-d and txt in the bios. (also tried disabling, cold boot and
re-enabling to no avail). I got it to boot *once* but can not repeat
fstack-check breaks tboot this disables it in CFLAGS.
Signed-off-by: Jason Zaman
diff -ur tboot-1.8.2.orig/tboot/Config.mk tboot-1.8.2/tboot/Config.mk
--- tboot-1.8.2.orig/tboot/Config.mk 2014-07-28 12:24:21.0 +0400
+++ tboot-1.8.2/tboot/Config.mk 2015-05-05 02:14:26.333222301 +0400
Disabling paging if PCID is enabled causes the machine to reboot
since tboot was not exited properly. This disables PCID just before
disabling paging in the shutdown handler in case it was not disabled by
the OS first.
Signed-off-by: Jason Zaman
diff -ur tboot-1.8.2.orig/tboot/common/shutdown.S
ll break tboot?
>
> Thanks very much!
> -ning
>
>
>
> -Original Message-
> From: Jason Zaman [mailto:ja...@perfinion.com]
> Sent: Thursday, May 07, 2015 8:55 AM
> To: tboot-devel@lists.sourceforge.net
> Subject: [tboot-devel] [PATCH] Disable fstack-check
o see if PCID is disabled before
> disabling paging during the shutdown process.
> Meanwhile we need some time to verify your patch to see if there is any side
> effect...
>
> Thanks,
> -ning
>
> -Original Message-
> From: Jason Zaman [mailto:ja...@perfini
On Mon, May 09, 2016 at 12:58:48PM +0200, Jan Schermer wrote:
> > On 09 May 2016, at 12:50, martin.wi...@ts.fujitsu.com wrote:
> >> I sort_of_assumed that PCR-18 would only be present if the policy
> >> verification passed, and would be different different (or all 0s) when the
> >> verification f
On Wed, May 18, 2016 at 01:00:10PM +0200, Jan Schermer wrote:
> Hi,
> I'd like to calculate PCR 18 before first reboot.
>
> I am using tboot with "pcr_map=da", signed policy and TB_POLCTL_EXTEND_PCR17
> disabled
>
> docs say:
> PCR 18 (Authorities):
>It will be extended with the following va
On Wed, Jun 15, 2016 at 11:29:53AM +0200, Jan Schermer wrote:
> Hi,
> can someone please tell me from experience whether PCR-18 can be treated as
> non-changing between different servers or platforms when pcr_map=da is used
> and I use the same signing key?
>
> Can I safely assume that PCR-18 wi
m->cap_pcrs( , 18) before but that did not work
which must be for the reason you stated.
Also, the 0x123456 is completely arbitrary and can be changed if another
value makes more sense.
-- Jason
> Thanks,
> -ning
>
> -Original Message-
> From: Jason Zaman [mailto:ja
for both nonfatal and continue.
Can you test the patch too? I can only test it on my laptop so it
definitely needs wider testing (especially TPM2.0 which I do not have).
Or if you know a better way to implement the feature, I'd love to test
it.
With kind regards,
Jason
> -Original Mess
On Fri, Jul 29, 2016 at 01:01:46PM -0700, Justin King-Lacroix wrote:
> Nope, doesn't work on (at least) recent Lenovo laptops. Tried it a few
> weeks back.
>
> Getting the same "WARNING: no console will be available to OS" on 1.9.4,
> too.
>
> On 29 July 2016 at 09:26, Sun, Ning wrote:
>
> > Th
, still scratching my head here.
> >
> >
> > -- Brian
> >
> > On 07/31/2016 01:54 PM, Brian Luckau wrote:
> >> Re: [tboot-devel] no console will be available to OS Will try that
> >> when I Wade back onto it again. Last week tried we could get
12 matches
Mail list logo
