FS#53429 : [systemd] enable tpm measured boot

FS#53429 - [systemd] enable tpm measured boot

Attached to Project: Arch Linux
Opened by Max Resch (mxr) - Thursday, 23 March 2017, 12:46 GMT
Last edited by Dave Reisner (falconindy) - Friday, 22 December 2017, 12:47 GMT

Task Type	Feature Request
Category	Packages: Core
Status	Closed
Assigned To	Dave Reisner (falconindy)
Architecture	All
Severity	Very Low
Priority	Normal
Reported Version
Due in Version	Undecided
Due Date	Undecided
Percent Complete
Votes	5 David McAdoo (geecroof) (2017-07-27) Stefan (steinwanderer) (2017-05-27) Hugo (Citral) (2017-05-17) Octav Opaschi (ooctav) (2017-04-02) Max Resch (mxr) (2017-03-27)
Private	No

Details

systemd-boot provides a measured boot facility by hashing loader, kernel and kernel commandline in the TPM's PCR.

It would be nice if this optional feature would be enabled. systemd would have to be compiled with the configure flag --enable-tpm

I'm not sure if there is any other distribution that has this enable, nor does there seem to be any documentation on this systemd feature other than source code comments.

For reference there is a bug report [1] for Fedora, concerning this feature, which concluded in enabling it.

[1] https://bugzilla.redhat.com/show_bug.cgi?id=1411156

This task depends upon

Closed by Dave Reisner (falconindy)
Friday, 22 December 2017, 12:47 GMT
Reason for closing: Fixed
Additional comments about closing: This is enabled by default nowadays when building with EFI.

	Tasks related to this task (0)

Duplicate tasks of this task (0)

Arch Linux

FS#53429 - [systemd] enable tpm measured boot

Details

Loading...