[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-devel] [PATCH v2 2/2] vtpmmgr: execute deep quote in locality 0



On 04/14/2015 05:08 AM, Emil Condrea wrote:
Enables deep quote execution for vtpmmgr which can not be started
using locality 2. Flags are used to request additional data to be
present when executing quote. They are interpreted as a bitmask of:
  * VTPM_QUOTE_FLAGS_HASH_UUID
  * VTPM_QUOTE_FLAGS_VTPM_MEASUREMENTS
  * VTPM_QUOTE_FLAGS_GROUP_INFO
  * VTPM_QUOTE_FLAGS_GROUP_PUBKEY

The externData param for TPM_Quote is calculated as:
externData = SHA1 (
        extraInfoFlags
        requestData
        [SHA1 (
           [SHA1 (UUIDs if requested)]
           [SHA1 (vTPM measurements if requested)]
           [SHA1 (vTPM group update policy if requested)]
           [SHA1 (vTPM group public key if requested)]
        ) if flags !=0 ]
)

The response param pcrValues is an array containing requested hashes used
for externData calculation : UUIDs, vTPM measurements, vTPM group update
policy, group public key. At the end of these hashes the PCR values are
appended.

Signed-off-by: Emil Condrea <emilcondrea@xxxxxxxxx>

Acked-by: Daniel De Graaf <dgdegra@xxxxxxxxxxxxx>

_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxx
http://lists.xen.org/xen-devel


 


Rackspace

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.