Hello,
I am using version 1.9.5 and working my way through the documentation
in tboot-1.9.5/lcptools-v2/lcptools.txt.
I am hitting a snag trying to follow the instructions there, creating
a mle policy element.
The first step works fine:
linux:~$ lcp2_mlehash --create --cmdline "$TBOOT_CMDLINE" --alg sha1
/boot/tboot.gz > mle_hash
Creating the policy element fails:
linux:~$ lcp2_crtpolelt --create --type mle --ctrl 0x00 --minver 17 --alg
sha1 --out mle.elt mle_hash
Error: unknown option for mle type
Looking at the help I see that two different policy element plugins
are using the same type string "mle":
linux:~$ lcp2_crtpolelt --help
[snip]
types :
mle
[--alg <sha1|sha256|sha384|sha512>] hash alg of element
<FILE1> [FILE2] ... one or more files containing STM
hash(es); each file can contain
multiple hashes
[snip]
mle
[--minver <ver>] minimum version of SINIT
[--alg <sha1|sha256|sha384|sha512>] hash alg of element
<FILE1> [FILE2] ... one or more files containing MLE
hash(es); each file can contain
multiple hashes
Looking at the code I see that tboot-1.9.5/lcptools-v2/mle_elt.c and
tboot-1.9.5/lcptools-v2/stm_elt.c both define a plugin of type "mle".
That seems to be the problem.
Looking at version 1.9.6 has the same problem.
Am I missing something?
Cheers,
Curt
------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, Slashdot.org! http://sdm.link/slashdot
_______________________________________________
tboot-devel mailing list
tboot-devel@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/tboot-devel
