Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Talos II - 0.6 Release - Cannot boot if no TPM - TPM module cannot be expected (cannot be bought) #191

Closed
tlaurion opened this issue Sep 12, 2022 · 5 comments
Closed

Talos II - 0.6 Release - Cannot boot if no TPM - TPM module cannot be expected (cannot be bought) #191

tlaurion opened this issue Sep 12, 2022 · 5 comments
Assignees
@SergiiDmytruk
Labels
raptor-cs_talos-2
Milestone
Raptor CS Talos I...

Comments

@tlaurion
Copy link

USB boot results in:

TPM_OpenClientCharDev: Could not open char device /dev/tpm0: No such file or directory
Error I/O error from TPM_Extend
!!! Could not find any ISO, trying bootable USB
TPM_OpenClientCharDev: Could not open char device /dev/tpm0: No such file or directory
Error I/O error from TPM_Extend
Failed to extend PCR 4
!!!!! Something failed during USB boot
TPM_OpenClientCharDev: Could not open char device /dev/tpm0: No such file or directory
Error I/O error from TPM_Extend
!!!!! Starting recovery shell

Internally, this requires TPM to extend PCR4 with kernel modules hashes prior of loading them.

~ # usb-scan
!!! Could not find any ISO, trying bootable USB
TPM_OpenClientCharDev: Could not open char device /dev/tpm0: No such file or directory
Error I/O error from TPM_Extend
Failed to extend PCR 4

I think 0.6.1 needs to be released prior of going further, which should be based on linuxboot/heads@493149b

Otherwise, willing testers will become unwilling testers.
We cannot consider any tester today to have non-buyable assembled TPM module.
@macpijan
Copy link
Contributor

See here for TPM availability.

@miczyg1
Copy link
Contributor

miczyg1 commented Mar 2, 2023

We will need a v0.7.0 release or something to close it.

@artur-rs artur-rs added this to the Raptor CS Talos II v0.7.0 milestone Jun 30, 2023
@macpijan
Copy link
Contributor

TPM module can be bought here: https://shop.3mdeb.com/shop/modules/tpm-1-2-compatible-with-raptor-computing-systems-talos-ii-mainboard/

The design files are here: https://github.com/3mdeb/talos-tpm-module

What is the expectation here @tlaurion ? Do we want heads on Talos to boot without TPM? What is heads usefulness in such a case? Are there more platforms like this? Do we need to test for the "booting heads without TPM" for each release?

Or maybe it can be closed, as TPM is already available, as this was the main point in the original comment.

@macpijan
Copy link
Contributor

According to: https://github.com/Dasharo/dasharo/pull/43#discussion_r1273470307 we should be able to close this one.

@SergiiDmytruk
Copy link
Member

Some context: this was opened after linuxboot/heads#1200 was already merged which happened after v0.6.0 release. The release of v0.6.1 was suggested to pick up that change and avoid requiring TPM presence. So, yes, this should be fixed.

@tlaurion tlaurion mentioned this issue Jul 22, 2024
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@SergiiDmytruk SergiiDmytruk

Labels
raptor-cs_talos-2
Projects
None yet
Milestone
Raptor CS Talos II v0.7.0
Development

No branches or pull requests
5 participants
@tlaurion @macpijan @miczyg1 @artur-rs @SergiiDmytruk