| Bug ID | 1209735 |
|---|---|
| Summary | GNOME device security checks failed on a supposedly passed device. |
| Classification | openSUSE |
| Product | openSUSE Tumbleweed |
| Version | Current |
| Hardware | 64bit |
| OS | openSUSE Tumbleweed |
| Status | NEW |
| Severity | Normal |
| Priority | P5 - None |
| Component | GNOME |
| Assignee | gnome-bugs@suse.de |
| Reporter | 95kreaninw95@gmail.com |
| QA Contact | qa-bugs@suse.de |
| Found By | --- |
| Blocker | --- |
Created attachment 865837 [details] My failed device security report. My device security report shows the system's security level at level 0 - HSI:0! (v1.8.12), as shown in the attached device security report file. I check the level 1 test, 2 tests are showing as "Fail". - Intel ME (Intel Management Engine) version is showing as "Fail (Not Valid)" even though my CPU, Intel i5-8250U, supports Intel ME. See: https://ark.intel.com/content/www/us/en/ark/products/124967/intel-core-i58250u-processor-6m-cache-up-to-3-40-ghz.html#:~:text=Yes%20with-,Intel%C2%AE%20ME,-Intel%C2%AE%20OS%20Guard - TPM v2.0 is showing as "Fail (Not Found)". As stated by Intel, my CPU should support TPM v2.0. See: https://www.intel.com/content/www/us/en/business/enterprise-computers/resources/trusted-platform-module.html#:~:text=If%20your%20computer%20is%20based%20on%20the%208th%20Generation%20or%20later%20Intel%C2%AE%20Core%E2%84%A2%20Processor%20family%2C%C2%A0you%20can%20rest%20assured%20knowing%20your%20system%20has%20Intel%C2%AE%20Platform%20Trust%20Technology%20(Intel%C2%AE%20PTT)%2C%C2%A0an%20integrated%20TPM%20that%20adheres%20to%20the%202.0%20specifications. My laptop should be at least passed the level 1 test, but it failed instead. Note my Linux kernel verification shows as "Fail (Tainted)" because I enable HuC firmware loading with "options i915 enable_guc=2" in "/etc/modprobe.d/i915.conf" file. However, this shouldn't affect my security level 1 test.