efi-boot-shim

proxmox-mirrors/efi-boot-shim

Fork 0

mirror of https://git.proxmox.com/git/efi-boot-shim synced 2025-06-14 14:48:19 +00:00

Commit Graph

Author	SHA1	Message	Date
Tamas K Lengyel	829d3c8265	Log measurements in PCR4 for applications being verified through shim_lock Currently the only measurement the shim logs in the TPM is that of the EFI application it directly loads. However, there are no measurements being taken of application that are being verified through the shim_lock protocol. In this patch we extend PCR4 for any binary for which Verify is being called through the shim_lock protocol. Signed-off-by: Tamas K Lengyel <lengyelt@ainfosec.com>	2018-03-06 14:37:07 -05:00
Peter Jones	631265b7e9	Add README.tpm to explain which PCRs we extend things to. Signed-off-by: Peter Jones <pjones@redhat.com>	2017-08-03 11:24:56 -04:00

Author

SHA1

Message

Date

Tamas K Lengyel

829d3c8265

Log measurements in PCR4 for applications being verified through shim_lock

Currently the only measurement the shim logs in the TPM is that of the EFI
application it directly loads. However, there are no measurements being taken
of application that are being verified through the shim_lock protocol. In this
patch we extend PCR4 for any binary for which Verify is being called through
the shim_lock protocol.

Signed-off-by: Tamas K Lengyel <lengyelt@ainfosec.com>

2018-03-06 14:37:07 -05:00

Peter Jones

631265b7e9

Add README.tpm to explain which PCRs we extend things to.

Signed-off-by: Peter Jones <pjones@redhat.com>

2017-08-03 11:24:56 -04:00

2 Commits