implemented multiboot measurement

Rohde-Schwarz / TrustedGRUB2

DEPRECATED TPM enabled GRUB2 Bootloader

GNU General Public License v3.0

193 stars 77 forks source link

implemented multiboot measurement #37

Closed neusdan closed 8 years ago

neusdan commented 8 years ago

Loader measurements for multiboot and module commands

Unfortunately the multiboot measurement uses the deprecated measure_file method which does not protect against malicious storage devices ( GH #9 ). I've tried to implement the measure_buffer method but it's a lot more work and maybe even requires grub2 api changes.

In any case i think it's really hard to exploit. But pull requests are welcome. I'll create an issue for that.

Closes #35

neusdan commented 8 years ago

Reminder: add changelog entry and adjust readme

neusdan commented 8 years ago

if your module file is compressed specify "--nounzip" to get measuremens of the compressed file.