From 9f565e1407e71cc3faf423640ea3aae336d95e5f Mon Sep 17 00:00:00 2001
From: Kroese <kroese@users.noreply.github.com>
Date: Thu, 18 Jan 2024 10:05:08 +0100
Subject: [PATCH] feat: Add TPM emulator (#344)

---
 Dockerfile  |  5 +++--
 src/boot.sh | 10 ++++++++++
 2 files changed, 13 insertions(+), 2 deletions(-)

diff --git a/Dockerfile b/Dockerfile
index 5b6bc90a..90af56e5 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -11,6 +11,7 @@ RUN apt-get update \
         ovmf \
 	socat \
  	nginx \
+        swtpm \
 	procps \
 	iptables \
 	iproute2 \
@@ -21,13 +22,13 @@ RUN apt-get update \
 	ca-certificates \
 	netcat-openbsd \
 	qemu-system-x86 \
+    && apt-get clean \
     && novnc="1.4.0" \
+    && mkdir -p /usr/share/novnc \
     && wget https://github.com/novnc/noVNC/archive/refs/tags/v"$novnc".tar.gz -O /tmp/novnc.tar.gz -q \
     && tar -xf /tmp/novnc.tar.gz -C /tmp/ \
     && cd /tmp/noVNC-"$novnc" \
-    && mkdir -p /usr/share/novnc \    
     && mv app core vendor package.json *.html /usr/share/novnc \
-    && apt-get clean \
     && rm -rf /var/lib/apt/lists/* /tmp/* /var/tmp/*
 
 COPY ./src /run/
diff --git a/src/boot.sh b/src/boot.sh
index 9d88f9ef..f6080500 100644
--- a/src/boot.sh
+++ b/src/boot.sh
@@ -54,6 +54,16 @@ if [[ "${BOOT_MODE,,}" != "legacy" ]]; then
   BOOT_OPTS="$BOOT_OPTS -drive file=$DEST.rom,if=pflash,unit=0,format=raw,readonly=on"
   BOOT_OPTS="$BOOT_OPTS -drive file=$DEST.vars,if=pflash,unit=1,format=raw"
 
+  if [[ "${BOOT_MODE,,}" == "windows" ]]; then
+
+    BOOT_OPTS="$BOOT_OPTS -chardev socket,id=chrtpm,path=/dev/shm/tpm/swtpm-sock"
+    BOOT_OPTS="$BOOT_OPTS -tpmdev emulator,id=tpm0,chardev=chrtpm -device tpm-tis,tpmdev=tpm0"
+
+    mkdir -p /dev/shm/tpm
+    swtpm socket -t -d --tpmstate dir=/dev/shm/tpm --ctrl type=unixio,path=/dev/shm/tpm/swtpm-sock --log level=1 --tpm2
+
+  fi
+
 fi
 
 return 0