]> git.ipfire.org Git - thirdparty/systemd.git/commit
projects / thirdparty / systemd.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 500cd2e) | patch
cryptenroll: do not implicitly verify with default tpm policy signature
authorLuca Boccassi <bluca@debian.org>
Wed, 8 Feb 2023 02:10:28 +0000 (02:10 +0000)
committerLuca Boccassi <luca.boccassi@gmail.com>
Wed, 8 Feb 2023 10:58:57 +0000 (10:58 +0000)
commitb0fc23fae51d244d2c33d70c10003aa5d5840223
treeb7bdaca48b856c42374a660a108d175901b62daatree | snapshot
parent500cd2e83b8246fbf20d99db898039cfba746223commit | diff
cryptenroll: do not implicitly verify with default tpm policy signature

If it was not requested to use a tpm2 signature file when enrolling, do
not fallback to the default /run/systemd/tpm2-pcr-signature.json as it
likely will be unrelated if it exists.

Fixes https://github.com/systemd/systemd/issues/25435
src/cryptenroll/cryptenroll-tpm2.c diff | blob | blame | history
test/units/testsuite-70.sh diff | blob | blame | history
Unnamed repository; edit this file 'description' to name the repository.