I have to take back what I said, and the Dell PowerEdge T620 platform should be ok. We were wrong on how to concatenate 4/8-byte integers into the composite for SHA1. IA arch always use little-endian byte order for integers, that means even tboot log print:
TBOOT: proc_scrtm_status: 0x00000001
The script should make:
scrtm_status_ascii = "01 00 00 00" instead of "00 00 00 01".
As well, The script should treat below integers in the same way:
SinitMleData.MsegValid 8bytes
SinitMleData.PolicyControl 4bytes
(OsSinitData.Capabilities, 0) 4bytes
SinitMleData.ProcessorSCRTMStatus 4bytes
I can replicate PCR17 value after I made above change in my shell script.
Thanks
Jimmy
Sahil Rihan wrote onĀ 2013-02-19:
> Hi Jimmy,
>
> Thanks for all your help on this.
>
> The platform I'm using is a Dell PowerEdge T620 with dual-socket Intel
Xeon
> E5-2650 (f/m/s: 06-2D-7) and BIOS version 1.2.6.
>
> Attached is the output from tboot.
>
> Out of curiosity, did you try with the values I posted earlier?
>
> Thanks,
> Sahil
>
>
> On Mon, Feb 18, 2013 at 12:09 AM, Wei, Gang <gang....@intel.com> wrote:
>
>
> Hi, Sahil,
>
> The version 8 PCR 17 value could be replicated for some platform I
can
> access, so the MLE DG should be right. The issue might be with the
> platform you are using. Can you tell the detailed model number of
that
> platform and attach a completed tboot log for further analysis?
>
> Jimmy
smime.p7s
Description: S/MIME cryptographic signature
------------------------------------------------------------------------------ Everyone hates slow websites. So do we. Make your web apps faster with AppDynamics Download AppDynamics Lite for free today: http://p.sf.net/sfu/appdyn_d2d_feb
_______________________________________________ tboot-devel mailing list tboot-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/tboot-devel
