diff --git a/specs/linux_tpm_pcr_registry.md b/specs/linux_tpm_pcr_registry.md index 0d414b91..ee571e32 100644 --- a/specs/linux_tpm_pcr_registry.md +++ b/specs/linux_tpm_pcr_registry.md @@ -95,6 +95,15 @@ In both cases it is important that data measured into the PCRs is carefully chos n/a + + + systemd-boot πŸš€ + UEFI Boot Component + Used loader.conf + UEFI TPM event log + n/a + +

7

Firmware πŸ’» @@ -131,6 +140,24 @@ In both cases it is important that data measured into the PCRs is carefully chos n/a + + + systemd-tpm2-setup.service πŸš€ + Userspace + State of each NvPCR after anchor measurement + /run/log/systemd/tpm2-measure.log + n/a + + + + + systemd-pcrnvdone.service πŸš€ + Userspace + NvPCR anchor measurement separator + /run/log/systemd/tpm2-measure.log + n/a + +

10

IMA πŸ“ @@ -154,7 +181,7 @@ In both cases it is important that data measured into the PCRs is carefully chos systemd-pcrphase πŸš€ Userspace Boot phase strings, indicating various milestones of the boot process - Journal (for now) + /run/log/systemd/tpm2-measure.log n/a @@ -162,7 +189,7 @@ In both cases it is important that data measured into the PCRs is carefully chos

12

systemd-stub πŸš€ UEFI Stub - Kernel command line, system credentials and system configuration images + Kernel command line, system credentials, system configuration images, initrd addons, Β΅code addons, devicetree addons UEFI TPM event log in EFI variable StubPcrKernelParameters @@ -171,7 +198,8 @@ In both cases it is important that data measured into the PCRs is carefully chos

13

systemd-stub πŸš€ UEFI Stub - All system extension images for the initrdUEFI TPM event log + All system extension images for the initrd + UEFI TPM event log in EFI variable StubPcrInitRDSysExts @@ -189,7 +217,7 @@ In both cases it is important that data measured into the PCRs is carefully chos systemd-cryptsetup@.service πŸš€ Userspace Root file system volume encryption key - Journal (for now) + /run/log/systemd/tpm2-measure.log n/a @@ -198,7 +226,7 @@ In both cases it is important that data measured into the PCRs is carefully chos systemd-pcrmachine.service πŸš€ Userspace Machine ID (/etc/machine-id) - Journal (for now) + /run/log/systemd/tpm2-measure.log n/a @@ -207,7 +235,7 @@ In both cases it is important that data measured into the PCRs is carefully chos systemd-pcrfs@.service πŸš€ Userspace File system mount point, UUID, label, partition UUID label of root file system and /var/ - Journal (for now) + /run/log/systemd/tpm2-measure.log n/a