On Thu, Oct 01, 2020 at 02:01:25PM +0200, Petr Vorel wrote: > I'll need to keep these hacks for older kernels, but it's great that there is a > better solution. > > Other thing: do you know anybody practically uses more TPM devices in single > machine? I'm asking that I work with tpm0 in ima_tpm.sh, but maybe I should > allow user to redefine it to choose different device (or even run tests for all > available devices). You can create a proxy TPM device for a TPM emulator or a software TPM (e.g. could be an SGX enclave) by using ioctl interface /dev/vtpmx, provided by tpm_vtpm_proxy driver. QEMU provides a passthrough interface from TPM devices to the VM, which can be utilized for this. This one I know at least. > Kind regards, > Petr /Jarkko
