]> git.ipfire.org Git - thirdparty/systemd.git/commit
projects / thirdparty / systemd.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 89bfa92) | patch
tpm2-setup: measure information about NvPCR initialization to PCR 9
authorLennart Poettering <lennart@poettering.net>
Wed, 12 Nov 2025 21:35:30 +0000 (22:35 +0100)
committerLennart Poettering <lennart@poettering.net>
Fri, 14 Nov 2025 21:04:58 +0000 (22:04 +0100)
commitd70296bb563338f59d3be998a3049ad74ebd7a32
tree780e6807376d87a0cb74d077298c8751548df728tree | snapshot
parent89bfa9239e7092fb4cce7ef64bbbb68eefbe5fd2commit | diff
tpm2-setup: measure information about NvPCR initialization to PCR 9

This locks down NvPCR initilization a bit more: we'll measure each
initialization of an NvPCR into PCR 9, thus chaining the NvPCRs to the
PCR set. After all NvPCRs are initialized we measure a barrier into PCR
9 as well.

This ensures that later additions of NvPCRs are clearly recognizable and
distuingishable from those done at boot.
docs/TPM2_PCR_MEASUREMENTS.md diff | blob | blame | history
src/shared/tpm2-util.c diff | blob | blame | history
src/shared/tpm2-util.h diff | blob | blame | history
Unnamed repository; edit this file 'description' to name the repository.