Bug#1043585: AMD64 Kernel update prevents an emulated TPM working correctly inside Windows 11 KVM guest OS
Hi Martin,
On Sun, Aug 13, 2023 at 11:27:57AM +0100, Martin Johnson wrote:
> Package: linux-image
>
> Version: 6.1.0-11-amd64
>
> When latest Debian kernel is installed it is causing a problem with KVM
> virtual machine and the current version of QEMU on Bookworm. This is when
> swtpm is used to provide an emulated TPM for the guest OS. The guest OS is
> windows 11. swtpm does not receive commands from the host OS, something has
> been broken in KVM side I suspect this could be caused by recent CPU
> security patches or patches to KVM itself.
>
> The guest OS reports a code 10 on the TPM driver, and the TPM device is
> unusable. Trying a slightly older kernel the TPM is working as expected.
>
> I also noticed the same issue with vanilla kernels built from kernel.org for
> example kernel-6.1.44 and kernel-6.1.45 has this issue and kernel 6.1.42
> does not. So its some recent patch is likely causing it.
>
> I have two AMD64 machines with Ryzen processors and both exhibit this issue,
> I hope that it should be easily reproducible with a Ryzen CPU.
>
> One Machine has this CPU:
>
> AMD Ryzen 9 3950X 16-Core Processor
>
> The other machine has this CPU:
>
> AMD Ryzen 7 1800X 8-Core Processor
After picking the fix from upstream into unstable, this is as well
pending for bookworm and will land latest on the 12.2 point release.
Regards,
Salvatore
Reply to: