TPM measurement of SMM region after reloc is inconsistent #13

Closed
osresearch opened this Issue Aug 16, 2016 · 1 comment

Comments

Projects
None yet
1 participant
@osresearch
Owner

osresearch commented Aug 16, 2016

It seems to change between boots.

@osresearch osresearch added this to the verifiedboot milestone Aug 16, 2016

@osresearch

This comment has been minimized.

Show comment
Hide comment
@osresearch

osresearch Aug 16, 2016

Owner

rmodule_copy_payload() was not initializing the unused regions. Reported to coreboot: https://ticket.coreboot.org/issues/66

Fixed in branch: osresearch/coreboot@f8d2344

Also noticed that MRC region is empty the first time, so the very first boot after a total reflash will have bad PCRs.

Owner

osresearch commented Aug 16, 2016

rmodule_copy_payload() was not initializing the unused regions. Reported to coreboot: https://ticket.coreboot.org/issues/66

Fixed in branch: osresearch/coreboot@f8d2344

Also noticed that MRC region is empty the first time, so the very first boot after a total reflash will have bad PCRs.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment