On Thu, 2020-10-08 at 13:45 +0200, Petr Vorel wrote: > Hi, > > > Create sysfs per hash groups with 24 PCR files in them one group, > > named pcr-<hash>, for each agile hash of the TPM. The files are > > plugged in to a PCR read function which is TPM version agnostic, so > > this works also for TPM 1.2 but the hash is only sha1 in that case. > > Note: the macros used to create the hashes emit spurious checkpatch > > warnings. Do not try to "fix" them as checkpatch recommends, > > otherwise > > they'll break. > > Signed-off-by: James Bottomley < > > James.Bottomley@xxxxxxxxxxxxxxxxxxxxx> > > Reviewed-by: Jerry Snitselaar <jsnitsel@xxxxxxxxxx> > > Tested-by: Thiago Jung Bauermann <bauerman@xxxxxxxxxxxxx> > > Reviewed-by: Petr Vorel <pvorel@xxxxxxx> > Tested-by: Petr Vorel <pvorel@xxxxxxx> > On both TPM 1.2 and TPM 2.0. > /sys/class/tpm/tpm0/pcr-sha*/* is exporting well on both. > James, thanks for implementing nice API! You're welcome > BTW are all of these just TPM 1.2 specific? > /sys/class/tpm/tpm0/device/enabled > /sys/class/tpm/tpm0/device/pcrs These two are > /sys/kernel/security/tpm0/binary_bios_measurements But this one isn't ... although the format is different from 1.2 to 2.0 and the 2.0 version didn't appear until around 4.16. James
