units: add ConditionSecurity=tpm2 to systemd-tpm2-setup units

author Luca Boccassi <bluca@debian.org>

Thu, 28 Dec 2023 16:32:06 +0000 (17:32 +0100)

committer Yu Watanabe <watanabe.yu+github@gmail.com>

Thu, 28 Dec 2023 18:14:34 +0000 (03:14 +0900)
author Luca Boccassi <bluca@debian.org>
Thu, 28 Dec 2023 16:32:06 +0000 (17:32 +0100)
committer Yu Watanabe <watanabe.yu+github@gmail.com>
Thu, 28 Dec 2023 18:14:34 +0000 (03:14 +0900)
diff --git a/units/systemd-tpm2-setup-early.service.in b/units/systemd-tpm2-setup-early.service.in

index c1597ea3f9fd6f730b9fbc5cf97546d805b7337c..57fe5e2537a8513583b178227e809b19fe304cc4 100644 (file)
--- a/units/systemd-tpm2-setup-early.service.in
+++ b/units/systemd-tpm2-setup-early.service.in
@@ -14,6 +14,7 @@ DefaultDependencies=no
  Conflicts=shutdown.target
  Before=sysinit.target shutdown.target
  ConditionSecurity=measured-uki
+ConditionSecurity=tpm2
  ConditionPathExists=!/run/systemd/tpm2-srk-public-key.pem
  
  [Service]
diff --git a/units/systemd-tpm2-setup.service.in b/units/systemd-tpm2-setup.service.in

index 6c99f3af0a6b258a3df6562cc57c22825df64b6d..9d882d690faa1f991e99fac3009f2ad0d76d3153 100644 (file)
--- a/units/systemd-tpm2-setup.service.in
+++ b/units/systemd-tpm2-setup.service.in
@@ -16,6 +16,7 @@ After=systemd-tpm2-setup-early.service systemd-remount-fs.service
  Before=sysinit.target shutdown.target
  RequiresMountsFor=/var/lib/systemd/tpm2-srk-public-key.pem
  ConditionSecurity=measured-uki
+ConditionSecurity=tpm2
  ConditionPathExists=!/etc/initrd-release
  
  [Service]
author	Luca Boccassi <bluca@debian.org>
	Thu, 28 Dec 2023 16:32:06 +0000 (17:32 +0100)
committer	Yu Watanabe <watanabe.yu+github@gmail.com>
	Thu, 28 Dec 2023 18:14:34 +0000 (03:14 +0900)
units/systemd-tpm2-setup-early.service.in		patch \| blob \| blame \| history
units/systemd-tpm2-setup.service.in		patch \| blob \| blame \| history