Skip site navigation (1)Skip section navigation (2)
Date:      Sun, 6 Aug 2023 18:47:27 +0200
From:      =?UTF-8?Q?Goran_Meki=c4=87?= <meka@tilda.center>
To:        Michael Dexter <editor@callfortesting.org>, "freebsd-virtualization@freebsd.org" <freebsd-virtualization@freebsd.org>
Subject:   Re: Sudden need for bhyve TPM Emulation... willing to port swtpm?
Message-ID:  <1d4e6558-0c56-5758-d87e-e9bf4aacc0a5@tilda.center>
In-Reply-To: <662af723-de9f-36d9-c960-ef08379ca26e@callfortesting.org>
References:  <662af723-de9f-36d9-c960-ef08379ca26e@callfortesting.org>

next in thread | previous in thread | raw e-mail | index | archive | help
This is a multi-part message in MIME format.
--------------W0KCCeKHHIqE0uZCk00J25MY
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 7bit

On 8/2/23 02:28, Michael Dexter wrote:
> Hello all,
>
> Long-time bhyve-in-production user Jason Tubnor pointed out that a 
> recent Windows 11 update breaks the "lab mode" under which Windows 11 
> could be run without a TPM (Trusted Platform Module) chip via a 
> registry edit. Corvin has made significant progress with TPM 
> pass-through support but it only supports one VM associated with the 
> hardware TPM.
>
> This 3-clause BSD-license software TPM project has existed but I have 
> never heard it brought up in the bhyve context, possibly because of 
> the available workaround:
>
> https://github.com/stefanberger/swtpm
>
> Is anyone be willing to look into porting this to bhyve?
>
> All the best,
>
> Michael
>
Hello,

If anyone can take a look and merge these, it would be a start:

  * libtpms https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=272972
  * swtpm https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=272973

As I never read bhyve code before, I will start glancing it and trying 
to figure out stuff from Corvin's previous PR enabling pass-through for 
TPM. If anyone has any info to speed me up on this quest, please speak! 
Thank you!

Regards,
meka
--------------W0KCCeKHHIqE0uZCk00J25MY
Content-Type: text/html; charset=UTF-8
Content-Transfer-Encoding: 7bit

<html>
  <head>
    <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
  </head>
  <body>
    <div class="moz-cite-prefix">On 8/2/23 02:28, Michael Dexter wrote:<br>
    </div>
    <blockquote type="cite"
      cite="mid:662af723-de9f-36d9-c960-ef08379ca26e@callfortesting.org">Hello
      all,
      <br>
      <br>
      Long-time bhyve-in-production user Jason Tubnor pointed out that a
      recent Windows 11 update breaks the "lab mode" under which Windows
      11 could be run without a TPM (Trusted Platform Module) chip via a
      registry edit. Corvin has made significant progress with TPM
      pass-through support but it only supports one VM associated with
      the hardware TPM.
      <br>
      <br>
      This 3-clause BSD-license software TPM project has existed but I
      have never heard it brought up in the bhyve context, possibly
      because of the available workaround:
      <br>
      <br>
      <a class="moz-txt-link-freetext" href="https://github.com/stefanberger/swtpm">https://github.com/stefanberger/swtpm</a>;
      <br>
      <br>
      Is anyone be willing to look into porting this to bhyve?
      <br>
      <br>
      All the best,
      <br>
      <br>
      Michael
      <br>
      <br>
    </blockquote>
    Hello,<br>
    <p>If anyone can take a look and merge these, it would be a start:</p>
    <ul>
      <li>libtpms <a class="moz-txt-link-freetext"
          href="https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=272972">https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=272972</a></li>;
      <li>swtpm <a class="moz-txt-link-freetext"
          href="https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=272973">https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=272973</a></li>;
    </ul>
    <p>As I never read bhyve code before, I will start glancing it and
      trying to figure out stuff from Corvin's previous PR enabling
      pass-through for TPM. If anyone has any info to speed me up on
      this quest, please speak! Thank you!</p>
    Regards,<br>
    meka
  </body>
</html>

--------------W0KCCeKHHIqE0uZCk00J25MY--



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?1d4e6558-0c56-5758-d87e-e9bf4aacc0a5>