From 2cf51314956943d963d360a30761315467e8a95a Mon Sep 17 00:00:00 2001
From: Takashi Kajinami <kajinamit@oss.nttdata.com>
Date: Thu, 15 Feb 2024 20:50:55 +0900
Subject: [PATCH] Add traits for TPM models

Currently nova supports two TPM models, TIS and CRB, but available TPM
models may be different according to the build of underlying software
like swtpm or libvirt. Since libvirt 8.0.0, libvirt now presents
available TPM models in domain capabilities API.

This change introduces the two new traits, to present availability of
these two TPM models, so that these traits can be used to determine
whether a requested model is actually available in compute nodes.

Partially-Implements: blueprint libvirt-detect-vtpm-support
Change-Id: Ibf521c5154cd07d90f51ed78f81f747926ed7bd1
---
 os_traits/compute/security.py | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/os_traits/compute/security.py b/os_traits/compute/security.py
index 044fac9..510f161 100644
--- a/os_traits/compute/security.py
+++ b/os_traits/compute/security.py
@@ -19,6 +19,10 @@ TRAITS = [
     'TPM_1_2',
     # support for TPM 2.0
     'TPM_2_0',
+    # support for TPM with TPM interface Specification(TIS)
+    'TPM_TIS',
+    # support for TPM with Command-Response Buffer(CRB)
+    'TPM_CRB',
     # support for UEFI Secure Boot
     # ref:
     # https://opendev.org/openstack/nova-specs/src/branch/master/specs/wallaby/approved/allow-secure-boot-for-qemu-kvm-guests.rst#fnref8