Performs a verified launch using Intel(R) TXT
http://sourceforge.net/projects/tboot/
Trusted Boot (tboot) is an open source, pre-kernel/VMM module that uses
Intel(R) Trusted Execution Technology (Intel(R) TXT) to perform a measured
and verified launch of an OS kernel/VMM.
- Developed at security
- Sources inherited from project openSUSE:Factory
-
3
derived packages
- Download package
-
Checkout Package
osc -A https://api.opensuse.org checkout openSUSE:Leap:15.1:Staging:FactoryCandidates/tboot && cd $_
- Create Badge
Refresh
Refresh
Source Files
Filename | Size | Changed |
---|---|---|
tboot-1.9.7.tar.gz | 0000662608 647 KB | |
tboot-distributor.patch | 0000000962 962 Bytes | |
tboot-grub2-fix-menu-in-xen-host-server.patch | 0000004047 3.95 KB | |
tboot-grub2-fix-xen-submenu-name.patch | 0000000822 822 Bytes | |
tboot.changes | 0000018520 18.1 KB | |
tboot.spec | 0000003348 3.27 KB |
Revision 33 (latest revision is 50)
Dominique Leuenberger (dimstar_suse)
accepted
request 632523
from
Matthias Gerstner (mgerstner)
(revision 33)
- update to upstream version 1.9.7. This in mainly a bugfix release: Fix a lot of issues in tools reported by klocwork scan. Fix a lot of issues in tboot module reported by klocwork scan. Remove a redundant tboot option Fix indent in heap.c Fix 4 issues along with extpol=agile option Mitigations for tpm interposer attacks Add an option in tboot to force SINIT to use the legacy TPM2 log format. Add support for appending to a TPM2 TCG style event log. Ensure tboot log is available even when measured launch is skipped. Add centos7 instructions for Use in EFI boot mode. Fix memory leak and invalid reads and writes issues. Fix TPM 1.2 locality selection issue. Fix a null pointer dereference bug when Intel TXT is disabled. Optimize tboot docs installation. Fix security vulnerabilities rooted in tpm_if structure and g_tpm variable. The size field of the MB2 tag is the size of the tag header + the size Fix openssl-1.0.2 double frees Make policy element stm_elt use unique type name lcptools-v2 utilities fixes port to openssl-1.1.0 Reset debug PCR16 to zero. Fix a logical error in function bool evtlog_append(...). - removed tboot-CVE-2017-16837.patch: now contained in tarball - removed tboot-openssl-1-1-0.patch: now contained in tarball - removed tboot-signature-segfault.patch: now contained in tarball - removed tboot-ssl-broken.patch: now contained in tarball
Comments 0