git.ipfire.org Git - thirdparty/systemd.git/commit

]> git.ipfire.org Git - thirdparty/systemd.git/commit

projects / thirdparty / systemd.git / commit

author	Lennart Poettering <lennart@poettering.net>
	Mon, 2 Jun 2025 09:20:52 +0000 (11:20 +0200)
committer	Lennart Poettering <lennart@poettering.net>
	Tue, 3 Jun 2025 14:12:45 +0000 (16:12 +0200)
commit	ccd2bf48b2d736e335f217d5621a817aa1b6beeb
tree	7355b99fde528f038c97ef6d06727eaa887b4d76	tree \| snapshot
parent	d1c36f11d55a0f91f9bf09ada699c346faaaf005	commit \| diff

pcrlock: add "is-supported" verb that checks if the local TPM supports the commands we need for pcrlock

systemd-pcrlock requires support for the PolicyAuthorizeNV command,
which is not implemented in the first TPM2 releases. We also strictly
require SHA-256 support. Hence add a tool for checking for both of
these.

This is a tighter version of "systemd-analyze has-tpm2", that checks for
the precise feature that systemd-pcrlock needs, on top of basic TPM2
functionality.

Fixes: #37607

man/systemd-pcrlock.xml		diff \| blob \| blame \| history
src/pcrlock/pcrlock.c		diff \| blob \| blame \| history
src/shared/tpm2-util.h		diff \| blob \| blame \| history
test/units/TEST-70-TPM2.pcrlock.sh		diff \| blob \| blame \| history

Unnamed repository; edit this file 'description' to name the repository.

RSS Atom