staff3203's comments

staff3203 · 2025-01-17T05:22:26 1737091346

On my system, I used `tpm2-measure-pcr=yes` in `/etc/crypttab.initramfs`, then used `--tpm2-pcrs=0+2+7+15:sha256=0000000000000000000000000000000000000000000000000000000000000000` with `systemd-cryptenroll`.

As soon as a volume is decrypted, initrd will write `volume-key` to PCR 15, so any further executables can no longer access the data stored in the TPM.

usr1106 · 2025-01-17T09:03:46 1737104626

Yes, that seems a good extra level of defense. Allow unsealing only once. We extend a PCR with random data.

dist-epoch · 2025-01-17T10:46:22 1737110782

This is what Bitlocker does. There was a recent article about it.

oddlama · 2025-01-17T12:20:31 1737116431

This is great if you only have a single disk, but if you have multiple encrypted disks that are unlocked in the initrd this way, then if you can gain control flow by faking data on the last decrypted disk you can still gain access to all the previously unlocked partitions.

Of course you cannot unseal the secret from the TPM anymore.

bean-weevil · 2025-01-17T14:19:04 1737123544

If you have tpm encryption on your boot disk, then you can simply store decryption keys for your otyer disks on it.

staff3203 · 2025-01-17T19:36:31 1737142591

What to do for a single root fs spanned over 2 encrypted partitions on 2 separate disks?