summaryrefslogtreecommitdiffstats
path: root/src/partition/repart.c
diff options
context:
space:
mode:
authorLennart Poettering <lennart@poettering.net>2022-08-17 17:29:44 +0200
committerLennart Poettering <lennart@poettering.net>2022-09-08 16:34:27 +0200
commitf0f4fcaeb77c30df2dc716db15350b5ab49f45e2 (patch)
tree0b495cbf5d349d0a3d2cf72fc7ab25ed140ad97c /src/partition/repart.c
parentcreds-tool: expose new signed PCR policies in creds tool, too (diff)
downloadsystemd-f0f4fcaeb77c30df2dc716db15350b5ab49f45e2.tar.xz
systemd-f0f4fcaeb77c30df2dc716db15350b5ab49f45e2.zip
cryptenroll: hook up new TPM2 signed policies with cryptenroll
Diffstat (limited to 'src/partition/repart.c')
-rw-r--r--src/partition/repart.c12
1 files changed, 11 insertions, 1 deletions
diff --git a/src/partition/repart.c b/src/partition/repart.c
index af7a830377..aec04a836c 100644
--- a/src/partition/repart.c
+++ b/src/partition/repart.c
@@ -2950,7 +2950,17 @@ static int partition_encrypt(
if (keyslot < 0)
return log_error_errno(keyslot, "Failed to add new TPM2 key to %s: %m", node);
- r = tpm2_make_luks2_json(keyslot, arg_tpm2_pcr_mask, pcr_bank, primary_alg, blob, blob_size, hash, hash_size, 0, &v);
+ r = tpm2_make_luks2_json(
+ keyslot,
+ arg_tpm2_pcr_mask,
+ pcr_bank,
+ /* pubkey= */ NULL, /* pubkey_size= */ 0,
+ /* pubkey_pcr_mask= */ 0,
+ primary_alg,
+ blob, blob_size,
+ hash, hash_size,
+ 0,
+ &v);
if (r < 0)
return log_error_errno(r, "Failed to prepare TPM2 JSON token object: %m");
generated by cgit v1.2.3 (git 2.39.1) at 2024-12-04 14:14:30 +0100