On Fri, 2020-01-24 at 12:34 -0300, Martin Galvan wrote: > The TXT.STS values make more sense now, though the PCH DID is still > incorrect. Is there a way to check whether TXT is enabled other than > looking at SINIT.BASE and HEAP.BASE?
Please look at txt_verify_platform() function in verify.c there are few checks that TBOOT does to verify if platform is properly configured for measured launch. You can also look at does_acmod_match_platform() in acmod.c, to see how TBOOT checks if SINIT ACM matches platform. It compares CPU and PCH IDs from SINIT header to actual values. Thanks, Lukasz _______________________________________________ tboot-devel mailing list tboot-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/tboot-devel
