-
Notifications
You must be signed in to change notification settings - Fork 129
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Running on FreeBSD #820
Comments
Colegue told me that CUSE on FreeBSD is not extension of FUSE, hence the error. OK, that makes sense, now only to narrow down socket. |
Try these steps with
|
All right, that's a progress. On the "daemon" side I got
Is that what I'm supposed to see? |
Looks good. Your swtpm only has a control channel. If you wanted to add a data/command channel you would need to add something like this so that you can send TPM commands to it. Have a look at this here.
|
It does start, but I can't do anything with it. The port is opened on 127.0.0.1 and checking with nmap it appears to be so, but I get an error trying to reach it:
|
Oh, I realize what's my error here. |
I created a little playground to learn and experiment more, and for now I have |
What do you want to achieve at this point? Generally the first command you should implement support for is TPM_Startup() since this command is always needed. You could avoid implementing support for it if you passed |
I would like to write backend for bhyve, which is FreeBSD's hypervisor. What I was thinking would be the easiest way to achieve that is by learning from existing tools and implementing at least one command for ctrl/data channel in order to verify it works. As my code will just be a proxy for the VM, I don't need comprehensive set of commands, just one or a handful to verify code works before I turn it into bhyve backend for TPM. |
Next simple command would be TPM_PcrRead to read a PCR. As for passthrough: We have that also with QEMU and I would not recommend using it but us a vTPM instance (swtpm) per VM. Multiple VMs sharing TPM 'resources' like PCRs is not 'good'. |
Maybe I used the wrong word. Passthrough is already implemented and I use it to learn about how to add swtpm to bhyve. Of course, it will be used as a one swtpm instance per VM. Anyway, when I make progress, I'll report it here. Thank you! |
Describe the bug
There is a swtpm port in FreeBSD but I don't know how to use it. With socket and cuse there is an error. Socket can not be opened by client apps, cuse fails with an error.
Required: To Reproduce (without these steps your issue may be deleted)
Steps to reproduce the behavior/issue showing all commands on command line, needed XML or JSON (if necessary), etc.:
Socket
CUSE
Expected behavior
I expect no error at this stage. Maybe later, but I would expect that I can at least run it.
Desktop (please complete the following information):
Versions of relevant components
Log files
No log files are produced, yet.
Additional context
I know FreeBSD is not a target platform and that errors might indicate faults in other libraries, not swtpm itself, but can you help me at least narrow the problem down? It would be great if CUSE would start working as recently bhyve, FreeBSD's hypervisor, got TPM pass-through feature so swtpm could be used right away.
The text was updated successfully, but these errors were encountered: