-
Notifications
You must be signed in to change notification settings - Fork 458
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Support TPM devices #888
Comments
klausenbusk
added a commit
to klausenbusk/terraform-provider-libvirt
that referenced
this issue
Oct 5, 2021
"TPM (Trusted Platform Module) is a computer chip (microcontroller) that can securely store artifacts used to authenticate the platform (your PC or laptop). These artifacts can include passwords, certificates, or encryption keys. A TPM can also be used to store platform measurements that help ensure that the platform remains trustworthy. Authentication (ensuring that the platform can prove that it is what it claims to be) and attestation (a process helping to prove that a platform is trustworthy and has not been breached) are necessary steps to ensure safer computing in all environments."[1] A TPM device is required by Windows 11 and it is also useful for testing TPM support and can be used protecting secrets in guests. [1] https://trustedcomputinggroup.org/resource/trusted-platform-module-tpm-summary/ [2] https://docs.microsoft.com/en-us/windows/whats-new/windows-11-requirements Fix dmacvicar#888
klausenbusk
added a commit
to klausenbusk/terraform-provider-libvirt
that referenced
this issue
Oct 5, 2021
"TPM (Trusted Platform Module) is a computer chip (microcontroller) that can securely store artifacts used to authenticate the platform (your PC or laptop). These artifacts can include passwords, certificates, or encryption keys. A TPM can also be used to store platform measurements that help ensure that the platform remains trustworthy. Authentication (ensuring that the platform can prove that it is what it claims to be) and attestation (a process helping to prove that a platform is trustworthy and has not been breached) are necessary steps to ensure safer computing in all environments."[1] A TPM device is required by Windows 11 and it is also useful for testing TPM support and can be used protecting secrets in guests. [1] https://trustedcomputinggroup.org/resource/trusted-platform-module-tpm-summary/ [2] https://docs.microsoft.com/en-us/windows/whats-new/windows-11-requirements Fix dmacvicar#888
Merged
klausenbusk
added a commit
to klausenbusk/terraform-provider-libvirt
that referenced
this issue
Oct 5, 2021
"TPM (Trusted Platform Module) is a computer chip (microcontroller) that can securely store artifacts used to authenticate the platform (your PC or laptop). These artifacts can include passwords, certificates, or encryption keys. A TPM can also be used to store platform measurements that help ensure that the platform remains trustworthy. Authentication (ensuring that the platform can prove that it is what it claims to be) and attestation (a process helping to prove that a platform is trustworthy and has not been breached) are necessary steps to ensure safer computing in all environments."[1] A TPM device is required by Windows 11 and it is also useful for testing TPM support and can be used protecting secrets in guests. [1] https://trustedcomputinggroup.org/resource/trusted-platform-module-tpm-summary/ [2] https://docs.microsoft.com/en-us/windows/whats-new/windows-11-requirements Fix dmacvicar#888
klausenbusk
added a commit
to klausenbusk/terraform-provider-libvirt
that referenced
this issue
Oct 6, 2021
"TPM (Trusted Platform Module) is a computer chip (microcontroller) that can securely store artifacts used to authenticate the platform (your PC or laptop). These artifacts can include passwords, certificates, or encryption keys. A TPM can also be used to store platform measurements that help ensure that the platform remains trustworthy. Authentication (ensuring that the platform can prove that it is what it claims to be) and attestation (a process helping to prove that a platform is trustworthy and has not been breached) are necessary steps to ensure safer computing in all environments."[1] A TPM device is required by Windows 11 and it is also useful for testing TPM support and can be used for protecting secrets in guests. [1] https://trustedcomputinggroup.org/resource/trusted-platform-module-tpm-summary/ [2] https://docs.microsoft.com/en-us/windows/whats-new/windows-11-requirements Fix dmacvicar#888
dmacvicar
pushed a commit
that referenced
this issue
Oct 11, 2021
"TPM (Trusted Platform Module) is a computer chip (microcontroller) that can securely store artifacts used to authenticate the platform (your PC or laptop). These artifacts can include passwords, certificates, or encryption keys. A TPM can also be used to store platform measurements that help ensure that the platform remains trustworthy. Authentication (ensuring that the platform can prove that it is what it claims to be) and attestation (a process helping to prove that a platform is trustworthy and has not been breached) are necessary steps to ensure safer computing in all environments."[1] A TPM device is required by Windows 11 and it is also useful for testing TPM support and can be used for protecting secrets in guests. [1] https://trustedcomputinggroup.org/resource/trusted-platform-module-tpm-summary/ [2] https://docs.microsoft.com/en-us/windows/whats-new/windows-11-requirements Fix #888
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Checklist
Is your issue/contribution related with enabling some setting/option exposed by libvirt that the plugin does not yet support, or requires changing/extending the provider terraform schema?
Description of Issue/Question
libvirt
supports TPM devices, either passthrough or a software TPM. It would be useful if the provider could add a TPM device to the domain.We have a custom Linux image requiring Secure Boot and a TPM device. The TPM device is used for unlocking a encrypted partition with systemd's
crypttab
. Windows 11 is also requiring a TPM device, so a TPM device will be a hard requirement for booting Windows guests in the future.The text was updated successfully, but these errors were encountered: