Windows 11 and 2k22 use TPMs without persistent storage #168
Comments
|
The PR has been closed as this isn't something we can enable by default in our Windows preferences at the moment. It might be in the future so I'm going to leave this issue open to remind us to revisit. |
|
@lyarwood we should actually enable this for Windows 11 as vTPM is a requirement there. Win 10 is a different situation. Can we work with core KubeVirt in order to GA persistent vTPM and get the FG removed in order to then add it to preferences? |
@fabiand I didn't think it required the vTPM to be persistent outside of the BitLocker use case but we can of course enable it and document the requirement for the FG.
Yeah I can follow up with that today. |
|
BitLocker is part of Windows VBS, and VBS is something which we should support out of the box, therefore it is important to fix this issue quickly. |
|
/reopen |
|
@lyarwood: Reopened this issue. In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
What happened:
$subject, this can result in unbootable guests when using BitLocker encryption.
What you expected to happen:
Persistent TPM storage to be provided by the Windows 11 and 2k22 preferences to avoid guests using BitLocker encryption becoming unbootable.
How to reproduce it (as minimally and precisely as possible):
Additional context:
Reported downstream against CNV v4.16.0 https://issues.redhat.com/browse/CNV-39710
Environment:
virtctl version): N/Akubectl version): N/Auname -a): N/AThe text was updated successfully, but these errors were encountered: