Performs a verified launch using Intel(R) TXT
Trusted Boot (tboot) is an open source, pre-kernel/VMM module that uses
Intel(R) Trusted Execution Technology (Intel(R) TXT) to perform a measured
and verified launch of an OS kernel/VMM.
- Sources inherited from project SUSE:SLE-12-SP4:GA
- Download package
-
Checkout Package
osc -A https://api.opensuse.org checkout SUSE:SLE-12-SP4:Update/tboot && cd $_
- Create Badge
Refresh
Refresh
Source Files
Filename | Size | Changed |
---|---|---|
tboot-1.9.7.tar.gz | 0000662668 647 KB | |
tboot-distributor.patch | 0000000962 962 Bytes | |
tboot-grub2-fix-menu-in-xen-host-server.patch | 0000004047 3.95 KB | |
tboot-grub2-fix-xen-submenu-name.patch | 0000000822 822 Bytes | |
tboot.changes | 0000014817 14.5 KB | |
tboot.spec | 0000003348 3.27 KB |
Latest Revision
Frederic Crozat (fcrozat)
committed
(revision 2)
rebase changelog based on sles-12-sp2 - update to tboot-1.9.7 (FATE#325138, FATE#324718). This is mainly a bugfix release: - Fix a lot of issues in tools reported by klocwork scan. - Fix a lot of issues in tboot module reported by klocwork scan. - Remove a redundant tboot option - Fix indent in heap.c - Fix 4 issues along with extpol=agile option - Mitigations for tpm interposer attacks - Add an option in tboot to force SINIT to use the legacy TPM2 log format. - Add support for appending to a TPM2 TCG style event log. - Ensure tboot log is available even when measured launch is skipped. - Add centos7 instructions for Use in EFI boot mode. - Fix memory leak and invalid reads and writes issues. - Fix TPM 1.2 locality selection issue. - Fix a null pointer dereference bug when Intel TXT is disabled. - Optimize tboot docs installation. - Fix security vulnerabilities rooted in tpm_if structure and g_tpm variable. - The size field of the MB2 tag is the size of the tag header + the size - Fix openssl-1.0.2 double frees - Make policy element stm_elt use unique type name - lcptools-v2 utilities fixes - port to openssl-1.1.0 - Reset debug PCR16 to zero. - Fix a logical error in function bool evtlog_append(...). - removed tboot-CVE-2017-16837.patch: now contained in tarball - removed tboot-apic.patch: now contained in tarball - removed tboot-grub2-suse.patch: now contained in tarball - added tboot-distributor.patch: don't add GNU/Linux to grub menu entries. SUSE's grub2 itself doesn't do it as well. (bnc#1078262)
Comments 0