Re: [Xen-devel] vTPM ownership problem

Tue, 15 Sep 2015 23:17:52 -0700 

1. For xen 4.3.0, you’d better enable XSM security module.
2. share your vtpmmgr  / vtpm  instance log.
3. Clear vtpm / vtpmmgr disk, do it again.


Quan



From: xen-devel-boun...@lists.xen.org [mailto:xen-devel-boun...@lists.xen.org] 
On Behalf Of Zhenyang Feng
Sent: Wednesday, September 09, 2015 4:40 AM
To: xen-de...@lists.xenproject.org
Subject: [Xen-devel] vTPM ownership problem

Hello everyone, I need to use vTPM to finish a project but I encounter the same 
problem as 
http://lists.xenproject.org/archives/html/xen-devel/2015-06/msg03930.html

I followed the steps explained in 
https://mhsamsal.wordpress.com/2013/12/05/configuring-virtual-tpm-vtpm-for-xen-4-3-guest-virtual-machines/.

I'm running Ubuntu 14.04 as Dom0 on Dell. I compiled Xen 4.3.0 from source. 
After creating vtpmmgr and vtpm stubdoms, and DomU, I can invoke tpm_version as 
well as cat /sys/class/misc/tpm0/device/pcrs from DomU:

However, I cannot take ownership of vTPM and thus I fail to execute the 
commands required ownership of vTPM. When I invoke takeownership(I set SRK 
password to null) I get the following error:


root@tpm-guest:~# tpm_takeownership
Enter owner password:
Confirm password:
Enter SRK password:
Confirm password:
Tspi_TPM_TakeOwnership failed: 0x00002004 - layer=tcs, code=0004 (4), Internal 
software error


root@tpm-guest:~# tpm_takeownership -z -y -l debug
Tspi_Context_Create success
Tspi_Context_Connect success
Tspi_Context_GetTpmObject success
Tspi_GetPolicyObject success
Tspi_Policy_SetSecret success
Tspi_Context_CreateObject success
Tspi_GetPolicyObject success
Tspi_Policy_SetSecret success
Tspi_TPM_TakeOwnership failed: 0x00002004 - layer=tcs, code=0004 (4), Internal 
software error
Tspi_Context_CloseObject success
Tspi_Context_FreeMemory success
Tspi_Context_Close success

I have just upgraded to Ubuntu 15.04 as the reply said but get the same error 
again. Could you help me handle it? Thank you very much.

Best,
DearFuture



_______________________________________________
Xen-devel mailing list
Xen-devel@lists.xen.org
http://lists.xen.org/xen-devel

Reply via email to