Hi. I've just started using tboot for few days now. I've got compiled the tboot (tboot-20090330) successfully and did all the policy.
------------------------------------------------------------------------ title Xen w/ Intel(R) Trusted Execution Technology - Fedora (2.6.32.16) root (hd0,0) kernel /tboot.gz logging=serial,vga,memory module /vmlinuz-2.6.32.16 ro root=/dev/mapper/vg_ndslpc2-lv_root rd_LVM_LV=vg_ndslpc2/lv_root rd_LVM_LV=vg_ndslpc2/lv_swap rd_NO_LUKS rd_NO_MD rd_NO_DM LANG=en_US.UTF-8 SYSFONT=latarcyrheb-sun16 KEYTABLE=us nomodeset rhgb quiet intel_iommu=on 3 module /initramfs-2.6.32.16.img module /i7_QUAD_SINIT_20.BIN ------------------------------------------------------------------------ This is my grub.conf. When I booted with tboot, it showed tboot log such as this. (I had to manually type it by looking) ------------------------------------------------------------------------ ... no machine check erros user provided SINIT found: /boot/i7_QUAD_SINIT_20.BIN SINIT' .... sinit_data version unsupported (5) TPM error code 0 policy_type: TP_POLTYPE_CONT_NON_FATAL policy_control: 00000001 (EXTEND_PCR17) num_entries: 2 policy entry[0]: mod_num: 0 pcr: none hash_type: TB_HTYPE_ANY num_hashes: 0 policy entry[1]: mod_num: any pcr: 19 hash_type: TB_HTYPE_ANY num_hashes: 0 no policy in TPM NV IA32_FEATURE_CONTROL_MSR: 0000ff07 CPU is SMX-capable CPU is VMX-capable SMX is enabled ... TBOOT: o version: 3 TBOOT: o bios_sinit_size: 0x0 (0) TBOOT: o lcp_pd_base: 0x0 TBOOT: o lcp_pd_size: 0x0 (0) TBOOT: o num_logical_procs: 8 TBOOT: o flags: 0x0000000000 TBOOT: min_lo_ram: 0x0, max_lo_ram: 0x7bcad440 TBOOT: min_hi_ram: 0x0, max_hi_ram: 0x0 TBOOT: no LCP manifest found TBOOT: os_sinit_data (@7f720154, 5c): TBOOT: o version: 4 TBOOT: o mle_ptab: 0x800000 TBOOT: o mle_size: 0x1e000 (122880) TBOOT: o mle_hdr_base: 0x15920 TBOOT: o vtd_pmr_los_base: 0x0 TBOOT: o vtd_pmr_lo_size: 0x7bc00000 TBOOT: o vtd_pmr_hi_base: 0x0 TBOOT: o vtd_pmr_hi_size: 0x0 TBOOT: o lcp_po_base: 0x0 TBOOT: o lcp_po_size: 0x0 (0) TBOOT: o capabilities: 0x00000002 TBOOT: o rlp_wake_getsec: 0 TBOOT: o rlp_wake_monitor: 1 TBOOT: setting MTRRs for acmod: base=7f700000, size_aa80, num_pages=11 TBOOT: executing GETSEC[SENTER]... ------------------------------------------------------------------------ I used txt-stat to get additional information ------------------------------------------------------------------------ Intel(r) TXT Configuration Registers: STS: 0x00000002 senter_done: FALSE sexit_done: TRUE mem_unlock: FALSE mem_config_lock: FALSE private_open: FALSE mem_config_ok: FALSE ESTS: 0x00 txt_reset: FALSE txt_wake_error: FALSE E2STS: 0x000000000000000c slp_entry_error: FALSE secrets: FALSE block_mem: TRUE reset: TRUE ERRORCODE: 0xc00028d1 DIDVID: 0x00000001c0028086 vendor_id: 0x8086 device_id: 0xc002 revision_id: 0x1 SINIT.BASE: 0x7f700000 SINIT.SIZE: 131072B (0x20000) HEAP.BASE: 0x7f720000 HEAP.SIZE: 917504B (0xe0000) DPR: 0x000000007f800031 lock: TRUE top: 0x7f800000 size: 3MB (3145728B) *********************************************************** TXT measured launch: FALSE secrets flag set: FALSE *********************************************************** bios_data (@0x7fecac539008, 2c): version: 3 bios_sinit_size: 0x0 (0) lcp_pd_base: 0x0 lcp_pd_size: 0x0 (0) num_logical_procs: 8 flags: 0x12000000000 unable to find TBOOT log ------------------------------------------------------------------------ Can you help me find why the tboot restarts after Executing GETSEC[SENTER]...? Thanks.
------------------------------------------------------------------------------ This SF.net email is sponsored by Make an app they can't live without Enter the BlackBerry Developer Challenge http://p.sf.net/sfu/RIM-dev2dev
_______________________________________________ tboot-devel mailing list tboot-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/tboot-devel
