-
Notifications
You must be signed in to change notification settings - Fork 13
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Windows 11 and 2k22 use TPMs without persistent storage #168
Comments
The PR has been closed as this isn't something we can enable by default in our Windows preferences at the moment. It might be in the future so I'm going to leave this issue open to remind us to revisit. |
@lyarwood we should actually enable this for Windows 11 as vTPM is a requirement there. Win 10 is a different situation. Can we work with core KubeVirt in order to GA persistent vTPM and get the FG removed in order to then add it to preferences? |
@fabiand I didn't think it required the vTPM to be persistent outside of the BitLocker use case but we can of course enable it and document the requirement for the FG.
Yeah I can follow up with that today. |
BitLocker is part of Windows VBS, and VBS is something which we should support out of the box, therefore it is important to fix this issue quickly. |
/reopen |
@lyarwood: Reopened this issue. In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
What happened:
$subject, this can result in unbootable guests when using BitLocker encryption.
What you expected to happen:
Persistent TPM storage to be provided by the Windows 11 and 2k22 preferences to avoid guests using BitLocker encryption becoming unbootable.
How to reproduce it (as minimally and precisely as possible):
Additional context:
Reported downstream against CNV v4.16.0 https://issues.redhat.com/browse/CNV-39710
Environment:
virtctl version
): N/Akubectl version
): N/Auname -a
): N/AThe text was updated successfully, but these errors were encountered: