system/systemd
system/systemd
1
0
Fork 0
mirror of https://github.com/systemd/systemd synced 2024-10-02 22:37:25 +00:00
Code Issues Packages Projects Releases Wiki Activity

docs: document that in future we'll do EV_EVENT_TAG only, no EV_IPL

Browse source
This commit is contained in:
Lennart Poettering 2023-10-10 15:51:38 +02:00 committed by Luca Boccassi
parent e533dad10f
commit 22d7fb6646
1 changed files with 10 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

10
docs/TPM2_PCR_MEASUREMENTS.md
View file

@ -29,6 +29,16 @@ Currently, four components will issue TPM2 PCR measurements:
A userspace measurement event log in a format close to TCG CEL-JSON is
maintained in `/run/log/systemd/tpm2-measure.log`.
## Measurements Added in Future
We expect that we'll add further PCR extensions in future (both in firmware and
user mode), which also will be documented here. When executed from firmware
mode future additions are expected to be recorded as `EV_EVENT_TAG`
measurements in the event log, in order to make them robustly
recognizable. Measurements currently recorded as `EV_IPL` will continue to be
recorded as `EV_IPL`, for compatibility reasons. However, `EV_IPL` will not be
used for new, additional measurements.
## PCR Measurements Made by `systemd-boot` (UEFI)
### PCS 5, `EV_EVENT_TAG`, "loader.conf"