Ecosyste.ms: OpenCollective
An open API service for software projects hosted on Open Collective.
github.com/tlaurion/heads-ci-fedora30
https://github.com/tlaurion/heads-ci-fedora30
cosmetic whiptail changes
919b46eaeeb52b3ad12a7425ccc95461cb1e803e authored over 5 years ago by Thierry Laurion <[email protected]>
919b46eaeeb52b3ad12a7425ccc95461cb1e803e authored over 5 years ago by Thierry Laurion <[email protected]>
gui-init: Hash validation happens in /boot. chdir to /
So that cryptsetup-reencryption works again. Else logs attempts to be created under /boot,
result...
OEM Reownership now validates signed hash integrity
+ gui-init: Respect accepted ordering in Configuration menu, while adding Reencyption option (and...
c5d07829e7a745c5744ebaead2b05231fd8d690c authored over 5 years ago by Thierry Laurion <[email protected]>
Cosmetic changes
2cd5c48d19031520e5e8143b0ec02aef09938bf3 authored over 5 years ago by Thierry Laurion <[email protected]>
2cd5c48d19031520e5e8143b0ec02aef09938bf3 authored over 5 years ago by Thierry Laurion <[email protected]>
qemu: reverting changes that were needed for testing OEM-Reownership
00fbd9cf6fdc2ee69cd91191f8b0ca399c504924 authored over 5 years ago by Thierry Laurion <[email protected]>
00fbd9cf6fdc2ee69cd91191f8b0ca399c504924 authored over 5 years ago by Thierry Laurion <[email protected]>
Merge branch 'Attended_OEM_ReownershipDiceware_master_merge' into oem_reownership-staging_rebase_master_PR
141d50a87f7b4fbacd405071cf7515903ab848c0 authored over 5 years ago by Thierry Laurion <[email protected]>
141d50a87f7b4fbacd405071cf7515903ab848c0 authored over 5 years ago by Thierry Laurion <[email protected]>
Merge branch 'master' of https://github.com/osresearch/heads into oem_reownership-staging_rebase_master_PR
abbb02fa204f70f859a8f68ba2906161ec0202cc authored over 5 years ago by Thierry Laurion <[email protected]>
abbb02fa204f70f859a8f68ba2906161ec0202cc authored over 5 years ago by Thierry Laurion <[email protected]>
kexec-save-default: fix luks device proposition by proposing existing ones prior to suggested ones.
faddca3f1cf1c4748c6bc0882f25a09615d1db76 authored over 5 years ago by Thierry Laurion <[email protected]>
faddca3f1cf1c4748c6bc0882f25a09615d1db76 authored over 5 years ago by Thierry Laurion <[email protected]>
reencrypt-luks: aesthetic fixes
ce799d14959ccc360e2fafa92dca4abdb726d59b authored over 5 years ago by Thierry Laurion <[email protected]>
ce799d14959ccc360e2fafa92dca4abdb726d59b authored over 5 years ago by Thierry Laurion <[email protected]>
oem-provisioning attended one-shot filling of required information
initrd/bin:
factory-reset-nitrokey-libremkey.sh: cosmetic whiptail changes
gui-init: Cosmetic ch...
mount-sdcard: copy cat of mount-usb for sdhci/mmc cards. Useful for OEM provisioning
fd9b145bc10ec4f46c7a2df8190de009b12fa118 authored over 5 years ago by Thierry Laurion <[email protected]>
fd9b145bc10ec4f46c7a2df8190de009b12fa118 authored over 5 years ago by Thierry Laurion <[email protected]>
modules/linux: addition of mmc and sdhci dependencies if CONFIG_LINUX_SDHCI is defined in board config.
4a5a718854478d30a277dc4abc17e527411fa68f authored over 5 years ago by Thierry Laurion <[email protected]>
4a5a718854478d30a277dc4abc17e527411fa68f authored over 5 years ago by Thierry Laurion <[email protected]>
initrd/media/oem-provisioning: was not supposed to be here.
9c357a5ca491a0fe1457b105423f6e91afc27e0f authored over 5 years ago by Thierry Laurion <[email protected]>
9c357a5ca491a0fe1457b105423f6e91afc27e0f authored over 5 years ago by Thierry Laurion <[email protected]>
functions:
enable_sdcard: copy cat of mount-usb for mmc/sdcard in memory card extension bay (really useful f...
feb5b4d05b00d65ce59148a34ad0e9a640832d04 authored over 5 years ago by Thierry Laurion <[email protected]>
mount-usb: removed legacy support for board config defined USB device.
TODO: I still think a mount-external would be nice, or a script detecting devices changes after a...
11e66daba4dad6ef4e1f3b45204e21c15dbec2ea authored over 5 years ago by Thierry Laurion <[email protected]>
OEM reownership: force to be on AC Power, else poweroff.
1258e294a88cd5e2b8052ee0070c5fe42930d0dd authored over 5 years ago by Thierry Laurion <[email protected]>
1258e294a88cd5e2b8052ee0070c5fe42930d0dd authored over 5 years ago by Thierry Laurion <[email protected]>
x230: add mmc and sdhci support. note: mount-usb is modified to only mount /media if not mounted so other scripts can work with calling mount-sdcard instead of mount-usb
bb2a9d35d180b65ef08e51f6adce4e47ff636a70 authored over 5 years ago by Thierry Laurion <[email protected]>
bb2a9d35d180b65ef08e51f6adce4e47ff636a70 authored over 5 years ago by Thierry Laurion <[email protected]>
OEM: testing duplicate problems and attempts to launch vi dynamically, premodifying the file first.
2e13cfc50dcae0646c515f8b6c36b12e38c06b33 authored over 5 years ago by Thierry Laurion <[email protected]>
2e13cfc50dcae0646c515f8b6c36b12e38c06b33 authored over 5 years ago by Thierry Laurion <[email protected]>
Merge branch 'master' of https://github.com/osresearch/heads into test_fucked
1a6b52c5c8429a680c3cf1961fab02e008b99875 authored over 5 years ago by Thierry Laurion <[email protected]>
1a6b52c5c8429a680c3cf1961fab02e008b99875 authored over 5 years ago by Thierry Laurion <[email protected]>
OEM ReOwnership now proposes to generate missing /media/oem-provisioning secrets
- Takes into consideration if TPM in BOARD config and if Disk Unlock Key is desired.
- uses shuf ...
add "clear" command availability through busybox config change
557d47cd761cf1ded2c6c88ce4b8cd5fb85b6315 authored over 5 years ago by Thierry Laurion <[email protected]>
557d47cd761cf1ded2c6c88ce4b8cd5fb85b6315 authored over 5 years ago by Thierry Laurion <[email protected]>
Attempt to remove HZ errors with nohz=on which cut user inputs in my tests
39140d1e05f5b273ee38c6203645de0732063bdd authored over 5 years ago by Thierry Laurion <[email protected]>
39140d1e05f5b273ee38c6203645de0732063bdd authored over 5 years ago by Thierry Laurion <[email protected]>
Merge pull request #576 from merge/power_off_gui
gui-init: reorder, simplify main menu entries and add Power Off entry
f4b5ea9d0481911b13237e25d6876574192c2dc0 authored over 5 years ago by Kyle Rankin <[email protected]>
gui-init: move Refresh TOTP/HOTP to the Main Boot Menu
also, rename the current menu entry to being smaller and simpler.
Closes #574
186895d414957011dc279b5a3c6f2150cc2c70b1 authored over 5 years ago by Martin Kepplinger <[email protected]>
gui-init: rename Advanced Settings to Settings
Since there are no other settings to choose from, there don't have to
be "advanced" ones.
gui-init: move Exit to Shell menu entry under Advanced Settings
Exiting the GUI to a shell is not expected to be part of our users'
everyday workflow, and thus ...
gui-init: add Power Off to the Main Boot Menu
Add a main boot menu entry to power off. This enables users to
only verify the firmware integrit...
Merge pull request #573 from merge/x230-flash-command-fix
initrd: x230-flash: fix commandline instructions for flashing
eb31354085d0ab5f6aa959e51ba4955d2c84d49b authored over 5 years ago by tlaurion <[email protected]>
Merge branch 'master' of https://github.com/osresearch/heads into HEAD
eb15108e28d10760ce4b670233f3fe07ab8debc4 authored over 5 years ago by Thierry Laurion <[email protected]>
eb15108e28d10760ce4b670233f3fe07ab8debc4 authored over 5 years ago by Thierry Laurion <[email protected]>
initrd: x230-flash: fix commandline instructions for flashing
flashrom-x230.sh is now flash.sh
00bf4740e3c08feb1870f4c7b4dd7823681bf22c authored over 5 years ago by Martin Kepplinger <[email protected]>
Merge branch 'oem_reownership-staging_rebase_master_PR2' of github.com:tlaurion/heads into HEAD
891d8230780879dbd4eaccd9ab0204bb2552533e authored over 5 years ago by Thierry Laurion <[email protected]>
891d8230780879dbd4eaccd9ab0204bb2552533e authored over 5 years ago by Thierry Laurion <[email protected]>
Merge pull request #567 from merge/git_submodule_checkout
Makefile: add submodule checkout after git cloning coreboot
26b9c4ce59df65a3bfe3bd8de2dbfbeaa60eb88d authored over 5 years ago by tlaurion <[email protected]>
Merge pull request #570 from merge/x220_build_instruction_fix
blobs/x220: fix build instruction
33bc7202367dc2313c4efd23366bf5d4ff437f6b authored over 5 years ago by tlaurion <[email protected]>
blobs/x220: fix build instruction
6a28462794b12975bbbc9b07463495a6b92517a0 authored over 5 years ago by Martin Kepplinger <[email protected]>
6a28462794b12975bbbc9b07463495a6b92517a0 authored over 5 years ago by Martin Kepplinger <[email protected]>
Merge pull request #565 from merge/linux_remove_debug
config/linux-x230: remove debug symbols
cccb846a4cdabd2a163bc0db3e707cc456e7f77b authored over 5 years ago by tlaurion <[email protected]>
Strip README.md of outdated instructions
- dm-verity related instruction stripped (see https://github.com/osresearch/heads-wiki/issues/26...
e6cfe38797409633ae8466baddbeabad4f94071e authored over 5 years ago by tlaurion <[email protected]>
Makefile: add submodule checkout after git cloning coreboot
Right now all git submodules are left behind on a git clone. Add
git submodule update --init --c...
config/linux-x230: remove debug symbols
Remove debug symbols and dynamic debug support from Linux. This reduces
our resulting bzImage by...
WIP
36d51b74c641642b01cad77aa909c996f1b0bce6 authored over 5 years ago by Thierry Laurion <[email protected]>
36d51b74c641642b01cad77aa909c996f1b0bce6 authored over 5 years ago by Thierry Laurion <[email protected]>
WIP
1a55239507cb40c80be6f8075e3e280981d884f1 authored over 5 years ago by Thierry Laurion <[email protected]>
1a55239507cb40c80be6f8075e3e280981d884f1 authored over 5 years ago by Thierry Laurion <[email protected]>
initrd/bin/mount-usb: revert changes implying non-usb block devices
ac1f518efee5a0afad69f876ba38f01c6e9d769c authored over 5 years ago by Thierry Laurion <[email protected]>
ac1f518efee5a0afad69f876ba38f01c6e9d769c authored over 5 years ago by Thierry Laurion <[email protected]>
initrd/etc/functions: reading of /media/oem-provisioning takes into consideration only variables starting lines.
d50cfa4a706e4b304a17a3f864e1ca620421515f authored over 5 years ago by Thierry Laurion <[email protected]>
d50cfa4a706e4b304a17a3f864e1ca620421515f authored over 5 years ago by Thierry Laurion <[email protected]>
Uniformize and limit unrequired changes to master.
17273a7af08d923586b9339913750cf9bb6e8880 authored over 5 years ago by Thierry Laurion <[email protected]>
17273a7af08d923586b9339913750cf9bb6e8880 authored over 5 years ago by Thierry Laurion <[email protected]>
initrd/.ash_history: Take into consideration current state of other commands to be one-liners to be easily modified from history
b7ddcdbd8c800d934db3321a1ca37d7b24d976b3 authored over 5 years ago by Thierry Laurion <[email protected]>
b7ddcdbd8c800d934db3321a1ca37d7b24d976b3 authored over 5 years ago by Thierry Laurion <[email protected]>
Replace mount_usb calls by making mount-usb check if a device is mounted
- affects initrd/bin/factory-reset-nitrokey-libremkey.sh initrd/bin/flash-gui.sh initrd/bin/gpg...
e6acde46314651845c14d2cb72fb25b3641fed59 authored over 5 years ago by Thierry Laurion <[email protected]>
initrd/bin/reencrypt-luks: homogenize whiptail messages.
ff81d35cc7f76ffb038563cbca63acb80ecff5ed authored over 5 years ago by Thierry Laurion <[email protected]>
ff81d35cc7f76ffb038563cbca63acb80ecff5ed authored over 5 years ago by Thierry Laurion <[email protected]>
initrd/bin/mount-usb: add error handling when mounting
initrd/bin/factory-reset-nitrokey-libremkey.sh: use mount-usb according to kyle's change.
c1d26d8c947ac08c767e59b3c9f34c0c0b727ae6 authored over 5 years ago by Thierry Laurion <[email protected]>
initrd/bin/mount-usb: add board CONFIG_USB_BOOT_DEV defined device in proposed list only if not USB.
a9b2ec58043f4437dbdc68b2904c9ce7f2c7fb73 authored over 5 years ago by Thierry Laurion <[email protected]>
a9b2ec58043f4437dbdc68b2904c9ce7f2c7fb73 authored over 5 years ago by Thierry Laurion <[email protected]>
initrd/bin/mount-usb: Support for LUKS encrypted devices added.
- Will attempt to mount board configured USB device first and fail silently
- Will search for usb...
.gitlab-ci.yml: Trying to get rid of .git cache warnings
86e1c14840f4a4653afa7fe6a5771af8c94d0405 authored over 5 years ago by Thierry Laurion <[email protected]>
86e1c14840f4a4653afa7fe6a5771af8c94d0405 authored over 5 years ago by Thierry Laurion <[email protected]>
initrd/bin/reencrypt-luks remove static cipher that was put in place when debugging oem-provisioning provided secrets "-h sha256"
e4e8cb610157d73acbc537aa66a0c99cd854277c authored over 5 years ago by Thierry Laurion <[email protected]>
e4e8cb610157d73acbc537aa66a0c99cd854277c authored over 5 years ago by Thierry Laurion <[email protected]>
Merge branch 'oem_reownership-staging_rebase_master_PR' of github.com:tlaurion/heads into oem_reownership-staging_rebase_master_PR
ae6c22c0edf69067b797f598b2e56dd42297b18d authored over 5 years ago by Thierry Laurion <[email protected]>
ae6c22c0edf69067b797f598b2e56dd42297b18d authored over 5 years ago by Thierry Laurion <[email protected]>
initrd/bin/reencrypt-luks: correct logic
- Validated that unprovisioned worked (Didnt)
- Validated the oem-privisioning works
Merge branch 'master' into oem_reownership-staging_rebase_master_PR
02e9e24ea10bac088555ff7102b50b1b599da37e authored over 5 years ago by tlaurion <[email protected]>
02e9e24ea10bac088555ff7102b50b1b599da37e authored over 5 years ago by tlaurion <[email protected]>
initrd/bin/tpm-reset: removal of whitespace
a937a752c8ff072166a44a46dd1f59589fffbf5f authored over 5 years ago by Thierry Laurion <[email protected]>
a937a752c8ff072166a44a46dd1f59589fffbf5f authored over 5 years ago by Thierry Laurion <[email protected]>
initrd/etc/functions: pcrs to be shown are intended to be 0-8 as in master
initrd/bin/kexec-insert-key: typo fix
boards/librem13v2/librem13v2.config: remove duplicate of ex...
Merge pull request #559 from heads105/fc30kexec2
Parse grub config files for Fedora 29/30
08ad2d4d2085222e4cbda1f246844844ab8e2335 authored over 5 years ago by tlaurion <[email protected]>
Merge remote-tracking branch 'heads105/fc30kexec2' into oem_reownership-staging_rebase_master_PR
00eaff92b13290742fed6c475b260310e8048d71 authored over 5 years ago by Thierry Laurion <[email protected]>
00eaff92b13290742fed6c475b260310e8048d71 authored over 5 years ago by Thierry Laurion <[email protected]>
Reverting .gitlab-ci.yml and Makefile to output on both build log and artifact, without changing the filename, since it could break other CIs.
327b12a041683167088a18a8f22c903a2bb634ec authored over 5 years ago by Thierry Laurion <[email protected]>
327b12a041683167088a18a8f22c903a2bb634ec authored over 5 years ago by Thierry Laurion <[email protected]>
.gitlab-ci.yml: forgot to rename the files to be outputed to build log accordingly
7a24dae3497d5e9cd59a9c78662543846130a598 authored over 5 years ago by Thierry Laurion <[email protected]>
7a24dae3497d5e9cd59a9c78662543846130a598 authored over 5 years ago by Thierry Laurion <[email protected]>
Parse grub config files for Fedora 29/30
73c6f3fcc0e50b658621f296ad3d8fbe15b8e2ad authored over 5 years ago by paul <[email protected]>
73c6f3fcc0e50b658621f296ad3d8fbe15b8e2ad authored over 5 years ago by paul <[email protected]>
.gitlab-ci.yml: Remove .git uncaching
2e99b749436453b650674ccf789d445eceeb669e authored over 5 years ago by Thierry Laurion <[email protected]>
2e99b749436453b650674ccf789d445eceeb669e authored over 5 years ago by Thierry Laurion <[email protected]>
Makefile: Required change to have distinct hash files for each board.
Todo: Can't figure out to make coreboot.rom -> $(BOARD).rom
.gitlab-ci.yml: Hashes are outputted...
ce2d41479f2e878a8e97a1f35efc3fa4e750ec59 authored over 5 years ago by Thierry Laurion <[email protected]>
.gitlab-ci.yaml: Actually, having the content of the rom hashes both on the build log and inside of the artifact makes more sense
460186cf8b32e671f88fcec2dec291bd1c55a6b9 authored over 5 years ago by Thierry Laurion <[email protected]>
460186cf8b32e671f88fcec2dec291bd1c55a6b9 authored over 5 years ago by Thierry Laurion <[email protected]>
Add hash files related to roms put in artifact.zip and remove from build output
2fc2cc474d13357bbb7630c7b43345527bfb0a3f authored over 5 years ago by Thierry Laurion <[email protected]>
2fc2cc474d13357bbb7630c7b43345527bfb0a3f authored over 5 years ago by Thierry Laurion <[email protected]>
initrd/bin/kexec-save-default:
Regression fix.
81594fde61b017e914de56217ccfa8c214d0c7bf authored over 5 years ago by Thierry Laurion <[email protected]>
Merge remote-tracking branch 'osresearch/master' into oem_reownership-staging_rebase_master_PR
5a7711453ba7190e26fcaae81f037ebdc998bf12 authored over 5 years ago by Thierry Laurion <[email protected]>
5a7711453ba7190e26fcaae81f037ebdc998bf12 authored over 5 years ago by Thierry Laurion <[email protected]>
Revert "Support Fedora 30 boot configuration"
This reverts commit bc5343c626fed8dd43b512f2a2cedcfddfcfe7c8.
49405939bd18d2bfc7120fa16880fd75ee86ae55 authored over 5 years ago by Thierry Laurion <[email protected]>
Merge pull request #558 from tlaurion/reverse_fedora_30_breaks_qubes
Revert "Support Fedora 30 boot configuration"
124ae916f40a65a47094c2609340f33be19e03bf authored over 5 years ago by tlaurion <[email protected]>
Revert "Support Fedora 30 boot configuration"
This reverts commit bc5343c626fed8dd43b512f2a2cedcfddfcfe7c8.
260507cafd2d88bc8c25196f7b6d58a73791a66c authored over 5 years ago by Thierry Laurion <[email protected]>
initrd/bin/reencrypt-luks:
- logic was invalid on checking into checking result of cryptsetup calls.
- Cleaning OEM parts wh...
Merge remote-tracking branch 'osresearch/master' into oem_reownership-staging_rebase_master_PR
initrd/bin/gpg-gui.sh:
-Remove file_selector since now present in /etc/functions
-Add Factory res...
Merge pull request #546 from kylerankin/add_gpg_sc_keygen
Add GPG smartcard keygen feature
ca067385bd9c072c7aee052e8e24fe22e4618d1b authored over 5 years ago by tlaurion <[email protected]>
Merge pull request #557 from heads105/fc30kexec
kexec-select-boot not compatible with Fedora 30
fe9807cb1fb1e16430cb40ef2e5ef3dfee3df5cd authored over 5 years ago by tlaurion <[email protected]>
Support Fedora 30 boot configuration
bc5343c626fed8dd43b512f2a2cedcfddfcfe7c8 authored over 5 years ago by paul <[email protected]>
bc5343c626fed8dd43b512f2a2cedcfddfcfe7c8 authored over 5 years ago by paul <[email protected]>
mount-usb: readd support of mounting second device wihtout new usb detection logic first, so that docking station device can be used to boot through boot from usb, which depends on mount-usb
f89fca5e2e1c2591d8358aa4525c122fd806486c authored over 5 years ago by Thierry Laurion <[email protected]>
f89fca5e2e1c2591d8358aa4525c122fd806486c authored over 5 years ago by Thierry Laurion <[email protected]>
kexec-save-default: corrections to properly support unencrypted installation. Tested on Fedrora-30
ab28f31ce04c4afbf58e39a9ceca6a91003c3c74 authored over 5 years ago by Thierry Laurion <[email protected]>
ab28f31ce04c4afbf58e39a9ceca6a91003c3c74 authored over 5 years ago by Thierry Laurion <[email protected]>
Enable busybox loadkmap command
9c18962f41b62a72249daabaf1dd7c85f9ebe098 authored over 5 years ago by paul <[email protected]>
9c18962f41b62a72249daabaf1dd7c85f9ebe098 authored over 5 years ago by paul <[email protected]>
Merge remote-tracking branch 'osresearch/master' into oem_reownership-staging_rebase_master_PR
Fix ofr fedora-29 pinentry build, supressing gtk and gnome3 support
733fc9b61812fb03f7538fe43ecfd505642130e3 authored over 5 years ago by Thierry Laurion <[email protected]>
Merge pull request #554 from tlaurion/pinentry_remove_gtk_gnome3
Fedora 30 fix for pinentry: remove gtk and gnome3 support.
Tested on fedora-29 clean build a...
cd92b2d585b966390ebdaa5c0f4409cbc056cb33 authored over 5 years ago by tlaurion <[email protected]>
tabs required instead of spaces...
6080219d85daeda7319a9d98da01f18b4386b29d authored over 5 years ago by tlaurion <[email protected]>
6080219d85daeda7319a9d98da01f18b4386b29d authored over 5 years ago by tlaurion <[email protected]>
Fedora 30 fix for pinentry: remove gtk and gnome3 support. TODO: remove all unneeded config options for ALL modules
a15504b41463ba4ba484b5be008452199c27e306 authored over 5 years ago by Thierry Laurion <[email protected]>
a15504b41463ba4ba484b5be008452199c27e306 authored over 5 years ago by Thierry Laurion <[email protected]>
gpg-gui: Factory Reset Nitrokey Pro v2/Librem Key GPG Card -> Factory Reset Librem Key/Nitrokey Pro v2 GPG Card + keygen + flash
49d264140c3c449a24d929a9f9265fde40aa304f authored over 5 years ago by Thierry Laurion <[email protected]>
49d264140c3c449a24d929a9f9265fde40aa304f authored over 5 years ago by Thierry Laurion <[email protected]>
.gitlab-ci.yml ./.git ignore
2c475b588527978de50e5088527b2ffebb251616 authored over 5 years ago by Thierry Laurion <[email protected]>
2c475b588527978de50e5088527b2ffebb251616 authored over 5 years ago by Thierry Laurion <[email protected]>
Fix regression that broke support for unencrypted partitions. UNTESTED. The default code path should still works if no encrypted partition is found
677f81047551e6ad72333d436dca560b5550b9f2 authored over 5 years ago by Thierry Laurion <[email protected]>
677f81047551e6ad72333d436dca560b5550b9f2 authored over 5 years ago by Thierry Laurion <[email protected]>
Modified gitlab-ci.yaml so that the cache is shared only on the same branch to protect them from being corrupted between boards.
a5624f054cf9a9c4d10aaa7338cd768676b7342b authored over 5 years ago by Thierry Laurion <[email protected]>
a5624f054cf9a9c4d10aaa7338cd768676b7342b authored over 5 years ago by Thierry Laurion <[email protected]>
Setting proper defaults for boards specifying CONFIG_TPM=y in regard of CONFIG_OFFER_TPM_LUKS_DISK_UNLOCK_KEY
The librem boards defaults to CONFIG_OFFER_TPM_LUKS_DISK_UNLOCK_KEY=n since they rely on LUKS be...
54a067c82efe51aaec9259fbe0388988fd7ccafa authored over 5 years ago by Thierry Laurion <[email protected]>
Modify kexec-save-default to propose LUKS sealing of Disk Unlock Key only when board "CONFIG_OFFER_TPM_LUKS_DISK_UNLOCK_KEY=y" is defined
f5271913c76bc7886fc6d7b722115c1fa6587317 authored over 5 years ago by Thierry Laurion <[email protected]>
f5271913c76bc7886fc6d7b722115c1fa6587317 authored over 5 years ago by Thierry Laurion <[email protected]>
Typo correction
99148c8768c91c8edfed4e539e965c1223b1fc71 authored over 5 years ago by Thierry Laurion <[email protected]>
99148c8768c91c8edfed4e539e965c1223b1fc71 authored over 5 years ago by Thierry Laurion <[email protected]>
Code cleanup. Removal of file_selector function, since it now exists under etc/functions and sourced by those scripts
330a54f3227b20b3ef58c7ef42c47525ccfdb6a9 authored over 5 years ago by Thierry Laurion <[email protected]>
330a54f3227b20b3ef58c7ef42c47525ccfdb6a9 authored over 5 years ago by Thierry Laurion <[email protected]>
Removing useless dies in gui scripts
b49d9cd1c5e9d2a6c3ecd8e320c58e68830f861b authored over 5 years ago by Thierry Laurion <[email protected]>
b49d9cd1c5e9d2a6c3ecd8e320c58e68830f861b authored over 5 years ago by Thierry Laurion <[email protected]>
oem-reownership/oem.example : explain the usage of /boot/oem and when and why /media/oem-provisioning values are used in each stage
20b0fbf37d59f82b55bd85a7de2553d27e342d2f authored over 5 years ago by Thierry Laurion <[email protected]>
20b0fbf37d59f82b55bd85a7de2553d27e342d2f authored over 5 years ago by Thierry Laurion <[email protected]>
functions: rm -> rm -f on /boot/reset_disk_unlock_key to suppress error on console when not existing
3318f67343f28766bab1cc3963bff90b49bd0169 authored over 5 years ago by Thierry Laurion <[email protected]>
3318f67343f28766bab1cc3963bff90b49bd0169 authored over 5 years ago by Thierry Laurion <[email protected]>
kexec-save-default:
- fix regression : putting back possibility to set a default boot option without having to seal i...
ecbc01e4943191525b7df867eb6a0f649a90a2eb authored over 5 years ago by Thierry Laurion <[email protected]>
Small fixes following PR comments
-remove die calls in whiptail reported cases which are handled anyway
-move oem functions into et...
Corrections in numbering of OEM onboarding menu.
d0efe53e5b164a206e4b5838f88132115aa25a26 authored over 5 years ago by Thierry Laurion <[email protected]>
d0efe53e5b164a206e4b5838f88132115aa25a26 authored over 5 years ago by Thierry Laurion <[email protected]>
LibremKey -> Librem Key
b7b11a6070090dd8dcd5ff5e099011273032c01e authored over 5 years ago by Thierry Laurion <[email protected]>
b7b11a6070090dd8dcd5ff5e099011273032c01e authored over 5 years ago by Thierry Laurion <[email protected]>
LibremKey -> Librem Key
79b33901fdeeea77b507243c99a7a26013372230 authored over 5 years ago by Thierry Laurion <[email protected]>
79b33901fdeeea77b507243c99a7a26013372230 authored over 5 years ago by Thierry Laurion <[email protected]>
- OEM mode is enforced on HOTP/TOTP sealed clean hardware.
- OEM is enforced by touching /boot/oem
- OEM can be provisioned automatically if /media/oem-prov...
- OEM mode is enforced on HOTP/TOTP sealed clean hardware.
- OEM is enforced by touching /boot/oem
- OEM can be provisioned automatically if /media/oem-prov...