Although there are some distinct error codes for locality access problems, you might check whether the Linux TPM driver is active. If the TPM has an active locality (which would be locality 1 with Linux's tpm_tis), then SENTER will not succeed. The easiest way to test if this makes a difference is to boot Linux without loading tpm_tis, then try a Flicker session, and see if it makes any difference.
Also, with the SINIT module you're using, ACMOD_SIZE_MAX as defined in flicker.h is too small in flicker-0.2. I generally use 64K instead of 32K these days. Unfortunately the error handling in flicker-0.2 just prints a small warning message and blindly keeps going with an incomplete SINIT module if the buffer is too small. However, I would expect that you would observe a different failure mode under those conditions. Hope this helps, -Jon On Fri, Jan 14, 2011 at 10:54 AM, Jeff Cleveland <jclevel...@bbn.com> wrote: > Hi list, > > My question stems from a TXT error I'm getting while trying to run > Flicker. I have a dual core i5 laptop I'm testing on and using the sinit > module i5_i7_DUAL_SINIT_18.bin. During execution of Flicker my computer > reboots, upon startup I see the TXT ERRORCODE 0xc0003cd1, which parses > as acm_type=1, progress=0d, error=f, and according to sinit_errors.txt > that is "TPM PCR 17 was not properly initialized" > > The MLE Software Development Guide is pretty clear on how PCR 17 should > be initialized, and yet I can't find in the Flicker or tboot source code > where this initialization is happening. I was hoping to use the tboot > source as a reference because on this machine GETSEC[SENTER] does > successfully execute when I try launching tboot (loading the operating > system fails afterwards but I believe thats a kernel configuration issue > I haven't fixed yet). > > Any advice or pointers to where tboot initializes PCR 17 would be > greatly appreciated. > > Thanks, > Jeff > > ------------------------------------------------------------------------------ > Protect Your Site and Customers from Malware Attacks > Learn about various malware tactics and how to avoid them. Understand > malware threats, the impact they can have on your business, and how you > can protect your company and customers by using code signing. > http://p.sf.net/sfu/oracle-sfdevnl > _______________________________________________ > tboot-devel mailing list > tboot-devel@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/tboot-devel > ------------------------------------------------------------------------------ Protect Your Site and Customers from Malware Attacks Learn about various malware tactics and how to avoid them. Understand malware threats, the impact they can have on your business, and how you can protect your company and customers by using code signing. http://p.sf.net/sfu/oracle-sfdevnl _______________________________________________ tboot-devel mailing list tboot-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/tboot-devel
