efi-boot-shim

proxmox-mirrors/efi-boot-shim

Fork 0

mirror of https://git.proxmox.com/git/efi-boot-shim synced 2025-06-14 12:18:53 +00:00

Commit Graph

Author	SHA1	Message	Date
Lans Zhang	d3884fe833	shim: trigger to record further logs to tcg 2.0 final event log area According to TCG EFI Protocol Specification for TPM 2.0 family, all events generated after the invocation of EFI_TCG2_GET_EVENT_LOG shall be stored in an instance of an EFI_CONFIGURATION_TABLE aka EFI TCG 2.0 final events table. Hence, it is necessary to trigger the internal switch through calling get_event_log() in order to allow to retrieve the logs from OS runtime. Signed-off-by: Lans Zhang <jia.zhang@windriver.com>	2016-09-30 09:38:33 -04:00
Matthew Garrett	22b58f2455	Measure state and second stage into TPM Add support for measuring the MOK database and secure boot state into a TPM, and do the same for the second stage loader. This avoids a hole in TPM measurement between the firmware and the second stage loader.	2016-05-11 11:11:05 -04:00

Author

SHA1

Message

Date

Lans Zhang

d3884fe833

shim: trigger to record further logs to tcg 2.0 final event log area

According to TCG EFI Protocol Specification for TPM 2.0 family,
all events generated after the invocation of EFI_TCG2_GET_EVENT_LOG
shall be stored in an instance of an EFI_CONFIGURATION_TABLE aka
EFI TCG 2.0 final events table. Hence, it is necessary to trigger the
internal switch through calling get_event_log() in order to allow
to retrieve the logs from OS runtime.

Signed-off-by: Lans Zhang <jia.zhang@windriver.com>

2016-09-30 09:38:33 -04:00

Matthew Garrett

22b58f2455

Measure state and second stage into TPM

Add support for measuring the MOK database and secure boot state into a
TPM, and do the same for the second stage loader. This avoids a hole in
TPM measurement between the firmware and the second stage loader.

2016-05-11 11:11:05 -04:00

2 Commits