intel

[MIR] tboot

Bug #1026032 reported by Gang Wei on 2012-07-18

14

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	intel	Invalid	Undecided	Unassigned
	tboot (Ubuntu)	Won't Fix	Undecided	Unassigned

Bug Description

[Background information]:
Trusted Boot (tboot) is an open source, pre-kernel/VMM module that uses Intel Trusted Execution Technology (Intel TXT) to perform a measured and verified launch of an OS kernel/VMM.

[Availability]: In the Ubuntu universe since 11.10.

[Rationale]: This package is required to take advantage of Intel Trusted Execution Technology.

[Security]:
CVE(http://cve.mitre.org/cve/cve.html): One vulnerability(CVE-2009-0066) was found.
Secunia Advisory(http://secunia.com/advisories/search): One advisory(SA37900) was found, fixed with updated SINIT.
All tools are installed into /usr/sbin/.

[Quality assurance]: No obvious issues with the MIR requirements

[UI standard]: Not applicable

[Dependencies]: Build dependencies: libtspi-dev, libssl-dev. Binary dependencie: libc6 (>= 2.14) libssl1.0.0 (>= 1.0.0) libtspi1 (>= 0.3.1) zlib1g (>= 1:1.1.4) .

[Standards compliance]: No issues identified

[Maintenance]: TBD.

See original description

Gang Wei (gang-wei) on 2012-08-13

description:

updated

Leann Ogasawara (leannogasawara) on 2012-08-21

visibility:

private → public

Michael Terry (mterry) on 2012-08-29

Changed in tboot (Ubuntu):
assignee:	nobody → Jamie Strandboge (jdstrand)

Revision history for this message

Jamie Strandboge (jdstrand) wrote on 2012-09-17:

#1

Based on conversations outside of this bug, I am unassigning myself for now. When it is clear that this is something that Foundations or Server wants, please feel free to assign back to me.

Changed in tboot (Ubuntu):
assignee:	Jamie Strandboge (jdstrand) → nobody

Revision history for this message

Michael Terry (mterry) wrote on 2012-12-05:

#2

I wasn't a part of that conversation, but based on Jamie's comment, sounds like this is a Won't Fix.

Changed in tboot (Ubuntu):
status:	New → Won't Fix

Revision history for this message

Gang Wei (gang-wei) wrote on 2012-12-06:

#3

Can't it be considered in 13.04?

Revision history for this message

Michael Terry (mterry) wrote on 2012-12-10:

#4

I wasn't part of the conversation, but maybe Jamie can comment on whether "this is something that Foundations or Server wants" is more true for 13.04 than 12.10.

Revision history for this message

Jamie Strandboge (jdstrand) wrote on 2012-12-18:

#5

My comment meant to simply say that the Ubuntu Security team is not driving the tboot feature or the trusted boot installation choice in the Ubuntu installer and at the time it was not clear if this feature was going to be pursued. I unassigned myself and my team since there is nothing for us to do at this time. The team implementing this feature would need to comment on any plans for this feature for 13.04. When it is implemented, feel free to reassign ubuntu-security for the MIR security review.

Jeremy Bícha (jbicha) on 2018-04-07

Changed in intel:
status:	New → Invalid

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.