Two questions about IMA
Zhao, Shirley
shirley.zhao at intel.com
Tue Jun 16 14:41:33 UTC 2020
Hi, all,
This is Shirley from, I am a newer of IMA.
I have some questions. Can you help?
According to the guide: https://sourceforge.net/p/linux-ima/wiki/Home/#linux-extended-verification-module-evm.
1. How to calculate the template hash in /sys/kernel/security/ima/ascii_runtime_measurements? Like below:
PCR template-hash filedata-hash filename-hint
10 91f34b5c671d73504b274a919661cf80dab1e127 ima-ng sha1:1801e1be3e65ef1eaa5c16617bec8f1274eaf6b3 boot_aggregate
10 8b1683287f61f96e5448f40bdef6df32be86486a ima-ng sha256:efdd249edec97caf9328a4a01baa99b7d660d1afc2e118b69137081c9b689954 /init
2. Ubuntu 20.04 is installed on my machine, but ascii_bios_measurements can’t be found under /sys/kernel/security/tpm0/.
There is only binary_bios_measurements under tpm0/.
So where to find the bios measure list on Ubuntu 20.04?
Thanks.
- Shirley
More information about the Linux-security-module-archive
mailing list