Upgrading to the Confidential OS on the TaiShan 200 Server (Model 2280, VF)

4.1.13

Verify that the OS can be securely upgraded to the confidential OS on the TaiShan 200 server (model 2280, VF).

See Test Networking.

1. The server motherboard is TaiShan 200 (model 2280, VF). The iBMC management IP address has been configured and is reachable.
2. The software packages BoostKit-teeos_2.0.0.zip and BoostKit-reepatch_2.0.0.zip have been preconfigured on the server.

1. Log in to the iBMC WebUI and power off the server.
2. Choose iBMC Settings > Firmware Upgrade, upload the TEE OS firmware package, and click Upgrade. (See Expected Result 1.)
3. Power on the server. (See Expected Result 2.)
4. Decompress BoostKit-teeos_2.0.0.zip and deploy the confidential OS. (See Expected Result 3.)

   unzip BoostKit-teeos_2.0.0.zip

   cp -rf trustedcore.img /var/itrustee/image

5. Load tzdriver.ko. The confidential OS binary file is automatically loaded to the secure memory in the TEE to hot swap the secure OS. (See Expected Result 4.)

   cd reepatch

   insmod itrustee_tzdriver/tzdriver.ko

1. The iBMC displays a message indicating that the firmware is upgraded successfully, and related iBMC operation logs are recorded.
2. The displayed TEE OS version is 2.0.0.
3. The trustedcore.img file is stored in /var/itrustee/image.
4. Run the lsmod | grep tzdriver command to check whether the tzdriver is started.

Perform the test specific to the motherboard model.