Qemu environment

[osresearch]

For ease of setup and testing it would be helpful to have instructions for booting in qemu.

[osresearch]

swtpm works with some effort to provide an emulated tpm2. It has to be run before qemu (and exits when qemu shutsdown):

swtpm socket \
  --tpm2 \
  --tpmstate dir=/tmp/vtpm \
  --ctrl type=unixio,path=/tmp/vtpm/sock \
  --flags startup-clear

Qemu needs some extra arguments:

qemu-system-x86_64 \
                -M q35,accel=kvm \
                -m 4G \
                -bios /usr/share/ovmf/OVMF.fd \
                -nographic \
                -chardev socket,id=chrtpm,path=/tmp/vtpm/sock \
                -tpmdev emulator,id=tpm0,chardev=chrtpm \
                -device tpm-tis,tpmdev=tpm0 \
                -drive "file=hda.bin,format=raw" \

The vtpm does not have an EK. It is necessary to export it and sign it, as described in #83

[osresearch]

Qemu support (including swtpm) will be merged in as part of #86

[osresearch]

swtpm is now built as part of the make qemu target and a new vTPM is created. Need to streamline the EK signing process. 6d60eef