]> git.ipfire.org Git - thirdparty/systemd.git/commit
projects / thirdparty / systemd.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 3f31c8f) | patch
pcrextend-util: add helpers for measuring roothash/signature of Verity volumes
authorLennart Poettering <lennart@amutable.com>
Wed, 11 Feb 2026 12:11:38 +0000 (13:11 +0100)
committerLennart Poettering <lennart@amutable.com>
Tue, 17 Feb 2026 21:00:14 +0000 (22:00 +0100)
commit71ca7532de1cf56ed3c1360c8db3ea2bee0f9ace
treed272928e0f979c956f801987bac66678dc02c3d5tree
parent3f31c8ff46537b5193a7289d1b40406263260806commit | diff
pcrextend-util: add helpers for measuring roothash/signature of Verity volumes

This adds infrastructure for measuring Verity root hashes from
userspace, along with he issuer/serial of the signatures used to unlock
them.

We measure the triplet of volume name, root hash and issuer/serial. if
confext/sysext use different signing keys then this ensures the event
log carry information about the type of image measures.
src/shared/pcrextend-util.c diff | blob | blame | history
src/shared/pcrextend-util.h diff | blob | blame | history
src/shared/tpm2-util.c diff | blob | blame | history
src/shared/tpm2-util.h diff | blob | blame | history
src/shared/varlink-io.systemd.PCRExtend.c diff | blob | blame | history
Unnamed repository; edit this file 'description' to name the repository.