This bug is awaiting verification that the linux-gcp- fips/6.8.0-1035.37+fips1 kernel in -proposed solves the problem. Please test the kernel and update this bug with the results. If the problem is solved, change the tag 'verification-needed-noble-linux-gcp-fips' to 'verification-done-noble-linux-gcp-fips'. If the problem still exists, change the tag 'verification-needed-noble-linux-gcp-fips' to 'verification-failed-noble-linux-gcp-fips'.
If verification is not done by 5 working days from today, this fix will be dropped from the source code, and this bug will be closed. See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Thank you! ** Tags added: kernel-spammed-noble-linux-gcp-fips-v2 verification-needed-noble-linux-gcp-fips -- You received this bug notification because you are a member of Kernel Packages, which is subscribed to linux-gcp in Ubuntu. https://bugs.launchpad.net/bugs/2111956 Title: Add SVSM vTPM support for AMD SEV-SNP confidential VMs Status in linux-gcp package in Ubuntu: New Status in linux-gcp source package in Noble: Fix Released Status in linux-gcp source package in Plucky: Fix Released Bug description: SRU Justification [Impact] Google has made a request for SVSM vTPM support in linux-gcp kernels 6.8 and later. [Fix] Patches requested in the support case: 980a573621ea ("tpm: Make chip->{status,cancel,req_canceled} opt") 770de678bc28 ("x86/sev: Add SVSM vTPM probe/send_command functions") b2849b072366 ("svsm: Add header with SVSM_VTPM_CMD helpers") 93b7c6b3ce91 ("tpm: Add SNP SVSM vTPM driver") e396dd85172c ("x86/sev: Register tpm-svsm platform device") The config for all kernels must have CONFIG_TCG_SVSM=y 6.8 also requires the changes from this pull request: https://lore.kernel.org/lkml/20240716095557.GAZpZDrdC3HA0Zilxr@fat_crate.local/ and CONFIG_SEV_GUEST=m/y and CONFIG_TSM_REPORTS=y [Test Plan] Testing will be performed by Google. [Regression Potential] These changes are in core kernel security modules, so care should be taken to ensure that patches are applied correctly to avoid creating new security vulnerabilities. [Other] SF #00409503 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/linux-gcp/+bug/2111956/+subscriptions -- Mailing list: https://launchpad.net/~kernel-packages Post to : [email protected] Unsubscribe : https://launchpad.net/~kernel-packages More help : https://help.launchpad.net/ListHelp
