Skip to content
Commit c4405cdf authored by Maurizio Drocco's avatar Maurizio Drocco Committed by Greg Kroah-Hartman
Browse files

ima: extend boot_aggregate with kernel measurements 



[ Upstream commit 20c59ce0 ]

Registers 8-9 are used to store measurements of the kernel and its
command line (e.g., grub2 bootloader with tpm module enabled). IMA
should include them in the boot aggregate. Registers 8-9 should be
only included in non-SHA1 digests to avoid ambiguity.

Signed-off-by: default avatarMaurizio Drocco <maurizio.drocco@ibm.com>
Reviewed-by: default avatarBruno Meneguele <bmeneg@redhat.com>
Tested-by: Bruno Meneguele <bmeneg@redhat.com>  (TPM 1.2, TPM 2.0)
Signed-off-by: default avatarMimi Zohar <zohar@linux.ibm.com>
Signed-off-by: default avatarSasha Levin <sashal@kernel.org>
parent 733729d3
Hide whitespace changes
Inline Side-by-side
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment