projects / systemd / .git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 9885c87) | patch
cryptsetup: add tpm2-measure-pcr= and tpm2-measure-bank= crypttab options
authorLennart Poettering <lennart@poettering.net>
Wed, 12 Oct 2022 07:56:32 +0000 (09:56 +0200)
committerLennart Poettering <lennart@poettering.net>
Tue, 17 Jan 2023 08:42:16 +0000 (09:42 +0100)
commit94c0c85e302d00923dc5bbf9d1b937875f1d0c66
tree9330d12bd3e2ff4c6ee98cbbb2cbb802f98326bdtree | snapshot
parent9885c8745d313588350325e8e2110887bf78c442commit | diff
cryptsetup: add tpm2-measure-pcr= and tpm2-measure-bank= crypttab options

These options allow measuring the volume key used for unlocking the
volume to a TPM2 PCR. This is ideally used for the volume key of the
root file system and can then be used to bind other resources to the
root file system volume in a secure way.

See: #24503
meson.build diff | blob | history
src/cryptsetup/cryptsetup.c diff | blob | history
src/fundamental/tpm-pcr.h diff | blob | history
https://github.com/systemd/systemd.git