[minimega] Add virtual TPM support (#1510)

* initial tpm commit * fixing command line args * collapse tpm args to one; get to print in vm info --------- Co-authored-by: root <[email protected]> Co-authored-by: jacdavi <[email protected]>
sandia-minimega · Aug 2, 2023 · 1964a67 · 1964a67
1 parent b5055e9
commit 1964a67
Show file tree

Hide file tree

Showing 4 changed files with 49 additions and 0 deletions.
diff --git a/cmd/minimega/kvm.go b/cmd/minimega/kvm.go
@@ -185,6 +185,10 @@ type KVMConfig struct {
 	// Default: true
 	UsbUseXHCI bool
 
+	// If specified, will configure VM to use virtual Trusted Platform Module (TPM)
+	// socket at the path provided
+	TpmSocketPath string
+
 	// Add additional arguments to be passed to the QEMU instance. For example:
 	//
 	// 	vm config qemu-append -serial tcp:localhost:4001
@@ -542,6 +546,7 @@ func (vm *KVMConfig) String() string {
 	fmt.Fprintf(w, "Sockets:\t%v\n", vm.Sockets)
 	fmt.Fprintf(w, "VGA:\t%v\n", vm.Vga)
 	fmt.Fprintf(w, "Usb Use XHCI:\t%v\n", vm.UsbUseXHCI)
+	fmt.Fprintf(w, "TPM Socket: \t%v\n", vm.TpmSocketPath)
 	w.Flush()
 	fmt.Fprintln(&o)
 	return o.String()
@@ -1316,6 +1321,14 @@ func (vm VMConfig) qemuArgs(id int, vmPath string) []string {
 	// this allows absolute pointers in vnc, and works great on android vms
 	args = append(args, "-device", "usb-tablet,bus=usb-bus.0")
 
+	if vm.TpmSocketPath != "" {
+		args = append(args, "-chardev")
+		args = append(args, fmt.Sprintf("socket,id=chrtpm,path=%v,nowait", vm.TpmSocketPath))
+		args = append(args, "-tpmdev")
+		args = append(args, "emulator,id=tpm0,chardev=chrtpm")
+		args = append(args, "-device")
+		args = append(args, "tpm-tis,tpmdev=tpm0")
+	}
 	// this is non-virtio serial ports
 	// for virtio-serial, look below near the net code
 	for i := uint64(0); i < vm.SerialPorts; i++ {

diff --git a/cmd/minimega/vm.go b/cmd/minimega/vm.go
@@ -145,6 +145,7 @@ var vmInfo = []string{
 	// kvm fields
 	"vcpus", "disks", "snapshot", "initrd", "kernel", "cdrom", "migrate",
 	"append", "serial-ports", "virtio-ports", "vnc_port", "usb-use-xhci",
+	"tpm-socket",
 	// container fields
 	"filesystem", "hostname", "init", "preinit", "fifo", "volume",
 	"console_port",

diff --git a/cmd/minimega/vm_cli.go b/cmd/minimega/vm_cli.go
@@ -63,6 +63,7 @@ Additional fields are available for KVM-based VMs:
 - virtio-serial : number of virtio ports
 - vnc_port      : port for VNC shim
 - usb-use-xhci  : usb controller (true = xhci; false = ehci)
+- tpm-socket	: path of emulated tpm socket
 
 Additional fields are available for container-based VMs:
 

diff --git a/cmd/minimega/vmconfiger_cli.go b/cmd/minimega/vmconfiger_cli.go