proxmox-mirrors/fwupd
1
0
Fork 0
mirror of https://git.proxmox.com/git/fwupd synced 2025-07-21 23:24:29 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
9d07b7c23c
fwupd/plugins/tpm-eventlog
History
Richard Hughes c1eda7d516 Add many new plugins to support for the Host Security ID 
The HSI specification is currently incomplete and in active development.

Sample output for my Lenovo P50 Laptop:

    Host Security ID: HSI:2+UA!

    HSI-1
    ✔  UEFI dbx: OK
    ✔  TPM: v2.0
    ✔  SPI: Write disabled
    ✔  SPI: Lock enabled
    ✔  SPI: SMM required
    ✔  UEFI Secure Boot: Enabled

    HSI-2
    ✔  TPM Reconstruction: Matched PCR0 reading

    HSI-3
    ✘  Linux Kernel S3 Sleep: Deep sleep available

    HSI-4
    ✘  Intel CET: Unavailable

    Runtime Suffix -U
    ✔  Firmware Updates: Newest release is 8 months old

    Runtime Suffix -A
    ✔  Firmware Attestation: OK

    Runtime Suffix -!
    ✔  fwupd plugins: OK
    ✔  Linux Kernel: OK
    ✔  Linux Kernel: Locked down
    ✘  Linux Swap: Not encrypted
2020-05-12 21:20:18 +01:00
..
tests Add a new plugin that can parse the TPM event log 2019-12-06 15:05:16 +00:00
fu-plugin-tpm-eventlog.c Add many new plugins to support for the Host Security ID 2020-05-12 21:20:18 +01:00
fu-self-test.c tpm-eventlog: Replay the TPM event log to get the PCRx values 2020-02-04 11:54:27 +00:00
fu-tpm-eventlog-common.c tpm-eventlog: Replay the TPM event log to get the PCRx values 2020-02-04 11:54:27 +00:00
fu-tpm-eventlog-common.h tpm-eventlog: Replay the TPM event log to get the PCRx values 2020-02-04 11:54:27 +00:00
fu-tpm-eventlog-device.c tpm-eventlog: Replay the TPM event log to get the PCRx values 2020-02-04 11:54:27 +00:00
fu-tpm-eventlog-device.h tpm-eventlog: Replay the TPM event log to get the PCRx values 2020-02-04 11:54:27 +00:00
fu-tpm-eventlog-parser.c tpm-eventlog: Store the eventlog hashes in binary form 2020-02-04 11:54:27 +00:00
fu-tpm-eventlog-parser.h tpm-eventlog: Store the eventlog hashes in binary form 2020-02-04 11:54:27 +00:00
fu-tpm-eventlog.c trivial: tpm-eventlog: Modify -p argument behavior 2020-04-29 13:18:53 -05:00
meson.build trivial: add some better descriptions for man pages 2020-02-20 09:34:10 -06:00
README.md trivial: Document the use of vendor-id in each plugin 2019-12-11 18:10:44 +00:00

README.md

TPM Event Log Support

Introduction

The TPM Event Log records which events are registered for the PCR0 hash, which may help in explaining why PCR0 values are differing for some firmware.

The device exposed is not upgradable in any way and is just for debugging. The created device will be a child device of the system TPM device, which may or may not be upgradable.

Vendor ID Security

The device is not upgradable and thus requires no vendor ID set.