for the duration of boot, a PCR in the vTPM is prolonged While using the root of this Merkle tree, and afterwards confirmed because of the KMS ahead of releasing the HPKE private critical. All subsequent reads from your root partition are checked towards the Merkle tree. This ensures that the whole contents of the foundation partition are attested