git.ipfire.org Git - thirdparty/systemd.git/commit

]> git.ipfire.org Git - thirdparty/systemd.git/commit

projects / thirdparty / systemd.git / commit

author	Harald Hoyer <harald@redhat.com>
	Wed, 3 Feb 2016 16:39:24 +0000 (17:39 +0100)
committer	Harald Hoyer <harald@redhat.com>
	Thu, 11 Feb 2016 16:48:09 +0000 (17:48 +0100)
commit	92ed3bb49e460b11aa86c828083e36373ae039dd
tree	ad3c240d26363c5bfdeb6d5809607b515b55fd18	tree \| snapshot
parent	462c0cc526358b53bbf9177583c3273d866fac1b	commit \| diff

sd-boot: put hashed kernel command line in a PCR of the TPM

The UEFI BIOS already hashes the contents of the loaded image, so the
initrd and the command line of the binary are recorded.

Because manually added LoadOptions are not taken into account, these
should be recorded also.

This patch logs and extends a TPM PCR register with the LoadOptions.

This feature can be enabled with configure --enable-tpm

The PCR register index can be specified with
configure --with-tpm-pcrindex=<NUM>

Makefile.am		diff \| blob \| blame \| history
configure.ac		diff \| blob \| blame \| history
src/boot/efi/boot.c		diff \| blob \| blame \| history
src/boot/efi/measure.c	[new file with mode: 0644]	blob
src/boot/efi/measure.h	[new file with mode: 0644]	blob
src/boot/efi/stub.c		diff \| blob \| blame \| history

Unnamed repository; edit this file 'description' to name the repository.

RSS Atom