projects / systemd / .git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 2c8184a) | patch
pcrlock: log if we generate an "empty" policy
authorLennart Poettering <lennart@poettering.net>
Wed, 11 Sep 2024 09:44:02 +0000 (11:44 +0200)
committerMike Yuan <me@yhndnzj.com>
Wed, 11 Sep 2024 13:14:22 +0000 (15:14 +0200)
commitf9807539b034ae5995033a994588debbd8461067
treebf5a241220f49bf92e970acc829006901e73c920tree | snapshot
parent2c8184a8d21d28ac5f224eac13fc570214aa99e3commit | diff
pcrlock: log if we generate an "empty" policy

Such a policy won't provide any protection, but it's still entirely fine
to have it like this in various contexts, for example at OS install
time, to allocate the nvindex and reference it in enrollments. However,
it does deserve mention, hence log about it at LOG_NOTICE level.

This is based on a similar patch by Arnaud Patard
<arnaud.patard@collabora.com> proposed at #33663.
src/pcrlock/pcrlock.c diff | blob | history
https://github.com/systemd/systemd.git