all through boot, a PCR with the vTPM is prolonged With all the root of the Merkle tree, and later confirmed by the KMS right before releasing the HPKE personal critical. All subsequent reads from the basis partition are checked against the Merkle tree. This ensures that your entire contents of the foundation confidential icon partition are atteste