ExternalVendorCode/heads
1
0
Fork 0
mirror of https://github.com/linuxboot/heads.git synced 2025-04-10 12:50:09 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

also shred LUKS sealed secret when done instead of rm it

Browse Source
This commit is contained in:
Thierry Laurion 2019-02-22 10:52:35 -05:00
parent b3a6c285c8
commit 8310a3d62e
No known key found for this signature in database
GPG Key ID: 79C78E6659DB658F
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
initrd/bin/kexec-seal-key
View File

@ -150,5 +150,5 @@ if ! tpm nv_writevalue \
|| die "Unable to write sealed secret to NVRAM"
fi
rm "$TPM_SEALED" \
shred -n 10 -z -u "$TPM_SEALED" 2> /dev/null \
|| warn "Failed to delete the sealed secret - continuing"