[PATCH] qemu: Extend qemu.conf with PCR banks to activate during 'TPM manufacturing'
Stefan Berger
stefanb at linux.ibm.com
Wed Oct 27 21:48:19 UTC 2021
On 10/27/21 14:17, Marc-André Lureau wrote:
> Hi
>
> On Wed, Oct 27, 2021 at 9:00 PM Stefan Berger <stefanb at linux.ibm.com> wrote:
>> Extend qemu.conf with a configration option swtpm_active_pcr_banks that
>> allows a user to set a comma-separated list of PCR banks to activate
>> during 'TPM manufacturing'. Valid PCR banks are sha1,sha256,sha384 and
>> sha512.
>>
> Why not put this option in swtpm_setup.conf instead?
That is another option but it depends on when one wants to see the
effect or how one wants to control it. With newer libvirt or newer swtpm?
More information about the libvir-list
mailing list