none
TPM2.0 WHQL failure for Windows Server 2012 - UEFI Driver found in PCR[02]. RRS feed

  • 问题

  • When I was doing the WHQL test for "TPM 2.0 - Supplemental test", there is an error reported as "UEFI Driver found in PCR[02]." for the step "Checking for Boot Drivers in logs.".

    But according to the TCG spec PCR2 is used for UEFI driver measurement.

    Is there any specific requirement for the system for this test or something wrong with the BIOS?

    
    Context _ _
    Context Index: 3419165862
    Current: 829E7904-15E4-4424-AA49-04892EE01CCB
    Parent: WTTLOG
    Start Test 3/18/2015 2:33:22.576 AM Checking for Boot Drivers in logs.
    Message 3/18/2015 2:33:22.576 AM UEFI Driver found in PCR[02].
    Message 3/18/2015 2:33:22.576 AM UEFI Driver found in PCR[02].
    End Test 3/18/2015 2:33:22.576 AM Checking for Boot Drivers in logs.
    Result: Fail
    Repro: Manually verify files.

    Thanks.

    WJ


    • 已编辑 XU WJ 2015年3月17日 8:45
    2015年3月16日 2:37

全部回复

  • This test "TPM 2.0 - Supplemental test" checks for the correctness of the TCG logs with respect to the PCR
    measurements, and checks for unique SRK being generated across TPM clear.

    so why you think this is a problem about PCR[02] in this test?



    2015年3月30日 4:53
    版主
  • Please refer to the attached pictures captured. We are testing on server boards with secure boot disabled.

    The UEFI driver mentioned in the log are UEFI OpROMs loaded from an add-in card. If we disable the add-in card this test will pass.

    Do you know what the failure stands for?

    Thanks.

    2015年3月31日 0:52
  • Please post the contents of the log file TBSLog1.txt and TBSLog2.txt. Thanks.

    http://whqlcn.wordpress.com

    2015年4月1日 3:12
    版主
  • I've sent the tbs logs to your email modernland@hotmail.comThanks.

    Please ignore the EV_EVENT_TAG events in PCR[02]. We've tried to remove these events and the WHQL test still fail.

    Thanks.

    WJ

    2015年4月1日 4:02
  • The logs are posted at 

    https://ligouchu.wordpress.com/2015/04/07/tbslogs/

    Thanks.

    2015年4月7日 1:39
  • I see the boot driver in logs:

    ****ID0013***0x02c0-0x0333********************************************
    Event 13: EV_EFI_BOOT_SERVICES_DRIVER (0x80000004), 116 bytes for PCR[02]
    DIGEST  = b1490adcb99a024de0a6bb7eca61f4e3baa2f514
    PCR[02] = 96f1b1114c90f163bfe3b5d3c88099524a7c1d3a
    EventData (84 bytes):
    00000000 | 18 d0 e7 6b 00 00 00 00-80 34 01 00 00 00 00 00 |  Ðçk    €4     
    00000010 | 00 00 00 00 00 00 00 00-34 00 00 00 00 00 00 00 |         4      
    00000020 | 02 01 0c 00 d0 41 03 0a-00 00 00 00 01 01 06 00 |     ÐA         
    00000030 | 02 03 01 01 06 00 00 00-04 08 18 00 00 00 00 00 |                
    00000040 | 00 de 00 00 00 00 00 00-ff 71 01 00 00 00 00 00 |  Þ      ÿq     
    00000050 | 7f ff 04 00                                     | ÿ 
    ****ID0014***0x0334-0x0373********************************************
    Event 14: EV_EFI_BOOT_SERVICES_DRIVER (0x80000004), 64 bytes for PCR[02]
    DIGEST  = efad90fa827743d8053e32e22545e3f8a1952a19
    PCR[02] = 6557b86e5c95207b5c150a0f743be3d1e17d1cef
    EventData (32 bytes):
    00000000 | 18 80 82 6b 00 00 00 00-a0 af 24 00 00 00 00 00 |  €‚k     ¯$    
    00000010 | 00 00 00 00 00 00 00 00-00 00 00 00 00 00 00 00 |                

    Can you remove them?


    http://whqlcn.wordpress.com

    2015年4月8日 3:46
    版主
  • Thanks. 

    But according to the TCG EFI Platform Specification, EV_EFI_BOOT_SERVICES_DRIVER event is required to be logged into PCR2. 

    Could you help to share why this would lead to WHQL failure?

    2015年4月8日 4:42
  • Hi, 

    Could you please help to share some details regarding PCR2 leading to WHQL failure?

    Thanks.

    2015年4月13日 2:44