meta-measured
meta-measured is a collection of recipes and configurations that enable software measurement in Linux distros based on OE. Currently this includes the open source TCG TSS, related TPM tools, and tools enabling the use of Intels TXT. Reference images are also provided as a reference for the use of these tools in minimal builds. My goals for this layer include: 1) extending the measurement scheme to arbitrary software components (not just boot modules & fs images) at boot and runtime 2) enabling measured launch for arbitrary system images 3) supporting non-Intel platforms with hardware support for boot time measurements and the TPM.
Git repository
https://github.com/flihp/meta-measured.git web repo
Last commit: 5 years, 3 months ago (sumo branch)
Maintainer
- Philip Tricca email
| Recipe name | Version | Description |
|---|---|---|
| 3rd-gen-i5-i7-sinit | 67 | ACM for Intel Ivy Bridge (IVB) machines |
| 4th-gen-i5-i7-sinit | 75 | ACM for Intel Haswell (HSW) machines |
| 5th-gen-i5-i7-sinit | 79 | ACM for Intel Broadwell machines |
| core-image-tpm | 1.0 | Image with TPM support. |
| core-image-tpm-initramfs | 1.0 | Small image capable of booting a device. Trousers daemon and tpm-tools are included for measured launch of root files sytem. |
| core-image-txt | 1.0 | Image with TXT stuff and the TPM utils. |
| initramfs-boot-tpm | 1.0 | A live image init script with support for the TPM |
| measured-image-bootimg | 1.0 | |
| packagegroup-tboot | 1.0 | Basic packagegroup for tboot & ACMs. |
| packagegroup-tpm | 1.0 | Support for TPM 1.2 device. |
| packagegroup-tpm2 | 1.0 | Packagegroup for TPM2 TCG TSS userspace and utilities. |
| packagegroup-tpm2-crb | 1.0 | Support for TPM 2.0 device exposed using CRB interface. |
| packagegroup-tpm2-tis | 1.0 | Support for TPM 2.0 device exposed using TIS interface. |
| packagegroup-txt-utils | 1.0 | Utilities for interacting with TXT. |
| pcr-calc | git | Tools necessary to calculate PCR values. |
| pcr-extend | 0.1 | |
| pyelftools | git | Python library and tools for doing stuff with EFL files. |
| tboot | 1.9.6 | Multi-boot module to perform measured / verified launch using Intel (R) Trusted Execution Technology (Intel(R) TXT). |
| tpm-quote-tools | 1.0.1 | The TPM Quote Tools is a collection of programs that provide support for TPM based attestation using the TPM quote mechanism. |
| tpm-tools | 1.3.8 | The tpm-tools package contains commands to allow the platform administrator the ability to manage and diagnose the platform's TPM. |
| tpm2-abrmd | git.X | TPM2 Access Broker & Resource Manager |
| tpm2-abrmd | 1.3.1 | TPM2 Access Broker & Resource Manager |
| tpm2-tools | git.X | Tools for TPM2 |
| tpm2-tools | 3.0.4 | Tools for TPM2 |
| tpm2-tss | git.X | The TCG TPM2 Software Stack |
| tpm2-tss | 1.4.0 | The TCG TPM2 Software Stack |
| trousers | 0.3.14 | TrouSerS - An open-source TCG Software Stack implementation, created and released by IBM. |
| qemux86-64-tpm | Machine adding TPM TIS support to the base qemux86-64 machine. |
| qemux86-64-tpm2 | Machine adding TPM2 support to the base qemux86-64 machine. |