[SRU][Noble][PATCH 0/1] UBUNTU: [Config]: Configure TPM drivers as builtins for arm64 in annotations
mitchell.augustin at canonical.com
mitchell.augustin at canonical.com
Fri Apr 19 22:22:08 UTC 2024
From: Mitchell Augustin <mitchell.augustin at canonical.com>
BugLink: https://bugs.launchpad.net/ubuntu/+source/linux-nvidia-6.2/+bug/2037688
[Impact]
On Grace systems, the IMA driver emits the following log:
ima: No TPM chip found, activating TPM-bypass!
This occurs because the IMA driver initializes before we are able to detect
the TPM. This will always be the case when the drivers required to
communicate with the TPM, spi_tegra210_quad and tpm_tis_spi, are built as
modules.
These drivers are already set as builtins in the -nvidia kernel,
and we would like there to be parity between -nvidia and -generic
with respect to TPM initialization.
[Test case]
This change has been applied to the kernel in the following PPA, and
both the 64k and 4k page size variants have been verified to allow
the TPM to load as expected on our Grace machine:
https://launchpad.net/~mitchellaugustin/+archive/ubuntu/grace-tpm-config-patch-4-24
[Fix]
Having these drivers as built-ins ensures that the TPM is available before
the IMA driver initializes.
[Regression potential]
The only potential regression I could expect is the increased binary
size
due to the additional modules being built-in.
Mitchell Augustin (1):
UBUNTU: [Config]: Configure TPM drivers as builtins for arm64 in
annotations
debian.master/config/annotations | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
--
2.34.1
More information about the kernel-team
mailing list