Linux ABI for RTMR
Background
RTMR Event Log
Replacement for the digest based ABI
Provide an RTMR events log to verifiers
Opens:
Option #1
Simplified TCG_PCR_EVENT2 (a.k.a. crypto agile)
write() to config/tsm/rtmrs/rtmrN/event:
RTMR Index
Event Type
Event Data
Single Digest
Event Size
RTMR Index
Event Type
Event Data
Single Digest
Event Size
RTMR Index
Event Type
Event Data
Single Digest
Event Size
TCG Event
TCG Compatible Event Log
TCG Event Type
Event Data pointer
Event Size
Input
hash
read() from config/tsm/rtmrs/event_log
RTMR
RTMR
RTMR
RTMR
extend
Kernel
Output
Option #1
Option #2 - TCG Canonical Event Log
Option #2
Raw Event - Native, application specific format
write() to config/tsm/rtmrs/rtmrN/event:
TCG CEL Record
(CELR)
TCG Canonical Event Log
(CEL)
Event Data pointer
Event Size
hash
read() from config/tsm/rtmrs/event_log
RTMR
RTMR
RTMR
RTMR
extend
Kernel
Record Number
RTMR Index
Single Digest
LinuxTSM
L
Event
Record Number
RTMR Index
Single Digest
LinuxTSM
Event
Record Number
RTMR Index
Single Digest
LinuxTSM
Event
Input
Output
Same content type for all CELRs
Option #2
Glossary
Event: Executable, data or action that may affect the system’s trust state.
Measurement: A deterministic representation of an Event, typically a hash/digest.
Attester: The entity that generates measurements and eventually sends an attestation evidence, together with the Event log. Typically an application
TPM PCR: Platform Configuration Register, an integrity protected register on the TPM. Measurements are extended into PCRs.
RTMR: Runtime Measurement Register, similar to a PCR.
CEL: Canonical Event Log. A TCG specification.