...
- OpenXT Stable-6 configured for Measured Launch
- OpenXT Stable-7 packages-main hosted on web server accessible by DUT.
...
Artifacts:
| Artifact | Explanation |
|---|---|
Forward Seal Record: /boot/system/tpm/forward_pcr.lst | This file contains a list of PCRs the foward seal operation sealed to, including any predicted values. |
Failed ML PCR State: /boot/system/tpm/bad.pcrs | This file contains a list of the PCRs at the time that the unseal operation was attempted. In the situation where the unseal failed after a OTA upgrade, this file can be compared with the "Forward Seal Record" to verify whether the predicted PCRs matched dynamic PCRs (15,17,18,19). |
Known Good PCR State: /config/good.pcrs | This file contains a list of the PCRs at the last "known good" state of the system. Anytime a ML fails, this file can be compared with the "Failed ML PCR State" to verify/compare both static and dynamic PCRs. |
Platform Sealing Utility: /usr/sbin/seal-system | This utility can be used to seal to the current state or to a predicted state. For troubleshooting and/or testing purposes, it is possible to forward seal to the current state by invoking seal-system -f on an existing system. |
...