converged-security-suite icon indicating copy to clipboard operation
converged-security-suite copied to clipboard

Published 20 hours ago verified publisher icon 9elements

bg-suite fails to access MSRs and memory when running runtime subset of tests

Open miczyg1 opened this issue 6 months ago • 0 comments
trafficstars

When trying to run the runtime subset of Boot GUard tests on a Boot Guard/CBnT enabled system, the suite fails to access MSRs and memory.

sudo ./bg-suite exec-tests --set=5,6,7 -f coreboot.rom 
INFO[0000] Custom Set tests   
INFO[0000] -------------------------------------------------- 
ReadMSR - gomsr.MSR context aborted with: too many open files
ERRO[0001] Error writing log file: open test_log.json: too many open files 
INFO[0001] 00 - [RUNTIME] Validates Intel ME specific configuration against KM/BPM in firmware image: FAIL
                 (bootguard km/bpm doesn't match ME BootGuard configuration: km svn doesn't match me configuration) 
INFO[0001] 01 - [RUNTIME] Verifies Intel ME Boot Guard configuration is sane and safe: FAIL
                 (provisiong boot guard configuraton in me isn't safe: FPF isn't locked) 
INFO[0001] 02 - [RUNTIME] BtG/TXT registers are sane    : FAIL
                 (txt regs aren't valid: couldn't fetch TXT regs: open /dev/mem: too many open files) 
bg-suite: error: tests ran with errors

Not sure what may cause this, but I can freely access memory and MSRs on this system using iotools

The suite was built from revision ea7b88ba12dc315fee3fdf87973ba0da73d8fed1

miczyg1 avatar May 19 '25 08:05 miczyg1