<xi:include href="version-info.xml" xpointer="v261"/></listitem>
</varlistentry>
+ <varlistentry>
+ <term><varname>systemd.tpm2_measured_os=</varname></term>
+
+ <listitem><para>Controls whether to execute various boot and runtime TPM PCR measurements. Takes a
+ boolean argument. If not specified explicitly this behaviour is enabled automatically in case
+ <citerefentry><refentrytitle>systemd-stub</refentrytitle><manvolnum>7</manvolnum></citerefentry> is
+ used and it succeeded in doing pre-boot measurements of the booted UKI, and otherwise
+ disabled.</para>
+
+ <xi:include href="version-info.xml" xpointer="v261"/></listitem>
+ </varlistentry>
+
<varlistentry>
<term><varname>systemd.factory_reset=</varname></term>
<entry>measured-uki</entry>
<entry>Unified Kernel Image with PCR 11 Measurements, as per <citerefentry><refentrytitle>systemd-stub</refentrytitle><manvolnum>7</manvolnum></citerefentry>. <xi:include href="version-info.xml" xpointer="v255"/></entry>
</row>
+ <row>
+ <entry>measured-os</entry>
+ <entry>OS PCR measurements enabled. This is typically equivalent to <varname>measured-uki</varname>, however may also be set explicitly via the <varname>systemd.tpm2_measured_os=</varname> kernel command line switch, see <citerefentry><refentrytitle>kernel-command-line</refentrytitle><manvolnum>7</manvolnum></citerefentry> for details. The various system services doing boot and runtime measurements are conditioned on this flag. <xi:include href="version-info.xml" xpointer="v261"/></entry>
+ </row>
</tbody>
</tgroup>
</table>
printf(" Measured UKI: %sfailed%s (%m)\n", ansi_highlight_red(), ansi_normal());
}
+ k = efi_measured_os(LOG_DEBUG);
+ if (k > 0)
+ printf(" Measured OS: %syes%s\n", ansi_highlight_green(), ansi_normal());
+ else if (k == 0)
+ printf(" Measured OS: no\n");
+ else {
+ errno = -k;
+ printf(" Measured OS: %sfailed%s (%m)\n", ansi_highlight_red(), ansi_normal());
+ }
+
k = efi_get_reboot_to_firmware();
if (k > 0)
printf(" Boot into FW: %sactive%s\n", ansi_highlight_yellow(), ansi_normal());
return 0;
}
- r = efi_measured_uki(LOG_WARNING);
+ r = efi_measured_os(LOG_WARNING);
if (r < 0)
return r;
if (r == 0) {
- log_debug("Kernel stub did not measure kernel image into the expected PCR, skipping userspace volume key measurement, too.");
+ log_debug("OS measurements not explicitly requested and kernel stub did not measure kernel image into the expected PCR, skipping userspace volume key measurement, too.");
return 0;
}
}
#if HAVE_TPM2
- r = efi_measured_uki(LOG_WARNING);
+ r = efi_measured_os(LOG_WARNING);
if (r < 0)
return r;
if (r == 0) {
- log_debug("Kernel stub did not measure kernel image into the expected PCR, skipping userspace key slot measurement, too.");
+ log_debug("OS measurements not explicitly requested and kernel stub did not measure kernel image into the expected PCR, skipping userspace key slot measurement, too.");
return 0;
}
}
if (flags & MOUNT_PCRFS) {
- r = efi_measured_uki(LOG_WARNING);
+ r = efi_measured_os(LOG_WARNING);
if (r == 0)
- log_debug("Kernel stub did not measure kernel image into PCR, skipping userspace measurement, too.");
+ log_debug("OS measurements not explicitly requested and kernel stub did not measure kernel image into PCR, skipping userspace measurement, too.");
else if (r > 0) {
r = generator_hook_up_pcrfs(dest, where, target_unit);
if (r < 0)
return log_oom();
}
- r = efi_measured_uki(LOG_WARNING);
- if (r > 0)
+ r = efi_measured_os(LOG_WARNING);
+ if (r > 0) {
/* Enable TPM2 based unlocking automatically, if we have a TPM. See #30176. */
if (!strextend_with_separator(&options, ",", "tpm2-device=auto"))
return log_oom();
+ } else if (r == 0)
+ log_debug("Will not enable TPM based unlocking of volume '%s', OS measurements are not explicitly requested and not booted via systemd-stub with measurements enabled.", id);
if (FLAGS_SET(flags, MOUNT_MEASURE)) {
/* We only measure the root volume key into PCR 15 if we are booted with sd-stub (i.e. in a
if (!strextend_with_separator(&options, ",", "tpm2-measure-pcr=yes,tpm2-measure-keyslot-nvpcr=yes"))
return log_oom();
if (r == 0)
- log_debug("Will not measure volume key of volume '%s', not booted via systemd-stub with measurements enabled.", id);
+ log_debug("Will not measure volume key of volume '%s', as OS measurements are not explicitly requested and not booted via systemd-stub with measurements enabled.", id);
}
r = generator_write_cryptsetup_service_section(f, id, what, NULL, options);
return log_oom();
if (FLAGS_SET(flags, MOUNT_MEASURE)) {
- r = efi_measured_uki(LOG_WARNING);
+ r = efi_measured_os(LOG_WARNING);
if (r > 0 && !strextend_with_separator(&options, ",", "tpm2-measure-nvpcr=yes"))
return log_oom();
- if (r == 0)
- log_debug("Will not measure root hash/signature of volume '%s', not booted via systemd-stub with measurements enabled.", id);
+ else if (r == 0)
+ log_debug("Will not measure root hash/signature of volume '%s', OS measurements not explicitly requested and not booted via systemd-stub with measurements enabled.", id);
}
r = generator_write_veritysetup_service_section(
r = generator_write_cryptsetup_service_section(
f, "swap", DISSECTED_SWAP_LUKS_DEVICE,
/* key_file= */ NULL,
- efi_measured_uki(LOG_DEBUG) > 0 ? "tpm2-device=auto" : NULL);
+ efi_measured_os(LOG_DEBUG) > 0 ? "tpm2-device=auto" : NULL);
if (r < 0)
return r;
return EXIT_SUCCESS;
}
- /* Skip logic if sd-stub is not used, after all PCR 11 might have a very different purpose then. */
- r = efi_measured_uki(LOG_ERR);
+ /* Skip logic if measured OS functionality is not enabled. */
+ r = efi_measured_os(LOG_ERR);
if (r < 0)
return r;
if (r == 0) {
- log_info("Kernel stub did not measure kernel image into PCR %i, skipping userspace measurement, too.", TPM2_PCR_KERNEL_BOOT);
+ log_info("OS measurements not explicitly requested and kernel stub did not measure kernel image into PCR %i, skipping userspace measurement, too.", TPM2_PCR_KERNEL_BOOT);
return EXIT_SUCCESS;
}
return detect_confidential_virtualization() > 0;
if (streq(c->parameter, "measured-uki"))
return efi_measured_uki(LOG_DEBUG);
+ if (streq(c->parameter, "measured-os"))
+ return efi_measured_os(LOG_DEBUG);
return false;
}
#include "log.h"
#include "parse-util.h"
#include "path-util.h"
+#include "proc-cmdline.h"
#include "stat-util.h"
#include "string-util.h"
#include "strv.h"
#endif
}
+int efi_measured_os(int log_level) {
+#if ENABLE_EFI
+ static int cached = -1;
+ int r;
+
+ /* Returns if we shall enable our measurement machinery */
+
+ if (cached >= 0)
+ return cached;
+
+ bool b;
+ r = proc_cmdline_get_bool("systemd.tpm2_measured_os", /* flags= */ 0, &b);
+ if (r < 0)
+ log_debug_errno(r, "Failed to parse systemd.tpm2_measured_os= kernel command line argument, ignoring: %m");
+ else if (r > 0)
+ return (cached = b);
+
+ /* If nothing is explicitly configured, just assume that if we booted with a measured UKI we also want a measured OS */
+ return (cached = efi_measured_uki(log_level));
+#else
+ return log_full_errno(log_level, SYNTHETIC_ERRNO(EOPNOTSUPP), "Compiled without support for EFI");
+#endif
+}
+
int efi_loader_get_config_timeout_one_shot(usec_t *ret) {
#if ENABLE_EFI
_cleanup_free_ char *v = NULL;
int efi_stub_get_features(uint64_t *ret);
int efi_measured_uki(int log_level);
+int efi_measured_os(int log_level);
int efi_loader_get_config_timeout_one_shot(usec_t *ret);
int efi_loader_update_entry_one_shot_cache(char **cache, struct stat *cache_stat);
DefaultDependencies=no
After=tpm2.target
Before=sockets.target
-ConditionSecurity=measured-uki
+ConditionSecurity=measured-os
[Socket]
ListenStream=/run/systemd/io.systemd.PCRExtend
After=tpm2.target systemd-pcrmachine.service
Before=shutdown.target
ConditionPathExists=!/etc/initrd-release
-ConditionSecurity=measured-uki
+ConditionSecurity=measured-os
FailureAction=reboot-force
[Service]
After=%i.mount tpm2.target systemd-pcrfs-root.service
Before=shutdown.target
ConditionPathExists=!/etc/initrd-release
-ConditionSecurity=measured-uki
+ConditionSecurity=measured-os
FailureAction=reboot-force
[Service]
After=tpm2.target
Before=sysinit.target shutdown.target
ConditionPathExists=!/etc/initrd-release
-ConditionSecurity=measured-uki
+ConditionSecurity=measured-os
FailureAction=reboot-force
[Service]
Conflicts=shutdown.target
After=systemd-tpm2-setup-early.service systemd-tpm2-setup.service
Before=sysinit.target shutdown.target
-ConditionSecurity=measured-uki
+ConditionSecurity=measured-os
ConditionPathExists=!/etc/initrd-release
FailureAction=reboot-force
Conflicts=shutdown.target
After=tpm2.target
Before=shutdown.target factory-reset.target
-ConditionSecurity=measured-uki
+ConditionSecurity=measured-os
FailureAction=reboot-force
[Service]
After=tpm2.target
Before=sysinit.target cryptsetup-pre.target cryptsetup.target shutdown.target initrd-switch-root.target systemd-sysext.service
ConditionPathExists=/etc/initrd-release
-ConditionSecurity=measured-uki
+ConditionSecurity=measured-os
FailureAction=reboot-force
[Service]
After=tpm2.target
Before=shutdown.target
ConditionPathExists=/etc/initrd-release
-ConditionSecurity=measured-uki
+ConditionSecurity=measured-os
FailureAction=reboot-force
[Service]
After=sysinit.target tpm2.target
Before=basic.target shutdown.target
ConditionPathExists=!/etc/initrd-release
-ConditionSecurity=measured-uki
+ConditionSecurity=measured-os
FailureAction=reboot-force
[Service]
After=remote-fs.target remote-cryptsetup.target tpm2.target
Before=systemd-user-sessions.service
ConditionPathExists=!/etc/initrd-release
-ConditionSecurity=measured-uki
+ConditionSecurity=measured-os
FailureAction=reboot-force
[Service]
Before=sysinit.target shutdown.target
RequiresMountsFor=/var/lib/systemd/nvpcr
ConditionPathExists=!/etc/initrd-release
-ConditionSecurity=measured-uki
+ConditionSecurity=measured-os
[Service]
Type=oneshot
# derive here from the fact that UKIs are used. Because if they do they are OK
# with our SRK initialization and our PCR measurements, and hence should also
# be OK with our TPM resets.
-ConditionSecurity=measured-uki
+ConditionSecurity=measured-os
[Service]
Type=oneshot
Conflicts=shutdown.target
After=tpm2.target systemd-pcrphase-initrd.service
Before=sysinit.target shutdown.target
-ConditionSecurity=measured-uki
+ConditionSecurity=measured-os
ConditionPathExists=!/run/systemd/tpm2-srk-public-key.pem
[Service]
After=tpm2.target systemd-tpm2-setup-early.service systemd-remount-fs.service
Before=sysinit.target shutdown.target
RequiresMountsFor=/var/lib/systemd
-ConditionSecurity=measured-uki
+ConditionSecurity=measured-os
ConditionPathExists=!/etc/initrd-release
[Service]
projects / thirdparty / systemd.git / commitdiff
