]> git.ipfire.org Git - thirdparty/systemd.git/commit
projects / thirdparty / systemd.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: d0a337b) | patch
sd-stub: drop any support for TPM 1.2
authorLennart Poettering <lennart@poettering.net>
Fri, 23 Feb 2024 09:52:16 +0000 (10:52 +0100)
committerLennart Poettering <lennart@poettering.net>
Fri, 23 Feb 2024 09:56:54 +0000 (10:56 +0100)
commit13fc754dc3f431113537586125a356817ee960a2
tree4e442dae5fe825503666e3a5e542ad9be944b152tree | snapshot
parentd0a337bb726fdc1f1170c94f78067185a27bbde0commit | diff
sd-stub: drop any support for TPM 1.2

TPM 1.2 is obsolete, and doesn't really provide much security guarantees
given it's build around SHA1 which is not up to today's standards.

The rest of systemd's TPM codebase never supported TPM 1.2 hence let's
drop this partial support in sd-stub too. It has created problems after
all (sd-stub reported the measuements and userspace assumed these were
for TPM2), without bringing any benefits (given that the measurements we
make are not consumed by us anyway, unlike those for TPM 2.0)

let's cut off this old support.
NEWS diff | blob | blame | history
src/boot/efi/measure.c diff | blob | blame | history
src/boot/efi/proto/tcg.h diff | blob | blame | history
Unnamed repository; edit this file 'description' to name the repository.