ext4 labels can be up to 16 characters long. That leaves only two chars
after "anti-evil-maid", ...

lsblk hex ecapes some characters (e.g. spaces) with(!) -r but not
without -r, and other characte...

When tpm_unsealdata exits prematurely (for example no input file), `tee`
would not write anything.

Otherwise padding may be misinterpreted by scripts.

basic.target is soon enough (before the GUI or any of the Qubes stuff
starts, e.g. the USB VM) b...

Move 'dracut --regenerate-all --force', 'grub2-mkconfig', and
chmod -x /etc/grub.d/20_linux_*tbo...

If unsealing fails, and the user chooses to continue the boot process
anyway (so we know they st...

Set the ordering properly using cryptsetup-pre.target, depend on
systemd >= 208-19 to get it.

U...

With so many changes, it's probably a good idea to switch
anti-evil-maid-unseal to 'set -e -o pi...

These different conventions were such a drag. Now the only remaining
instances of the antievilma...

For the exotic case of a completely missing LUKS device, use the
standard systemd timeout (90 se...

Always invoke 'clear' to hide the secret, because Plymouth can be active
and yet display the con...

- Common variables

- Plymouth detection

- The waitfor function (which replaces all the "wait f...

Automatically decide if the user should remove an AEM partition's
device, by applying the follow...

Remove the last of the $GRUB_CMDLINE_AEM_FLAGS by automatically
detecting SRK passwords.

So code can easily be shared between them without a very messy
dependency situation, especially ...

Naming convention: AEM devices' labels *begin with* antievilmaid but can
have an optional suffix...

Install antievilmaid_install to /usr/sbin
Install README to /usr/share/doc/antievilmaid

If secret.png.sealed exists and Plymouth is active, then show the image.
Otherwise, use secret.t...

This wrapper package moves the trousers data files from /var/lib/tpm to
/var/lib/tpms/<hex(sha25...

Neither the rpm spec nor dracut's inst_script made the file executable,
so anti-evil-maid-check-...

Otherwise attacker could provide similar (in terms of filesystem UUID,
LVM volume group etc) une...

Add detection of LUKS header modifications by extending PCR 13 with its
hash. Only volumes liste...

Also, use <ENTER> instead of <SPACE> to continue in the case of
dontforcestickremoval: It's easi...

tpm_unsealdata has its own password prompt when in console mode, don't
wrap another one around i...

Clear the secret etc. even in the dontforcestickremoval case (when it makes sense)
More precise ...

* qubesos/pr/3:
Document GRUB_CMDLINE_TBOOT in README
Add GRUB_CMDLINE_TBOOT grub variable

* qubesos/pr/2:
Avoid storing secrets in the shell history
Note about '-z' vs. SRK passwords...

* qubesos/pr/1:
(3/3) Do the right thing when installing to the internal boot partition
(2/3...

This commit only indents the code that will be treated conditionally in
the next commit. 'git lo...

This commit only adds the code to detect internal/external installation
mode, but does not use i...

The user instructions (and the script's logic) are complicated by the
implementation detail that...

Implemented using an array, so put bash in the shebang. There's a
preexisting bashism in this sc...

http://thread.gmane.org/gmane.comp.boot-loaders.tboot.devel/610/focus=611