4069619ead
Rename libremkey-hotp-verification module
2020-06-11 15:54:10 +02:00
fc8c7b0e64
Merge branch 'hotp-verification-update' into hotp-neutral
2020-06-11 15:44:53 +02:00
1ba73ac1d5
Rename CONFIG_LIBREMKEY to CONFIG_HOTPKEY
2020-06-11 15:29:51 +02:00
0e349c565e
Update hotp-verification
2020-06-09 18:42:55 +02:00
9090f1a1f9
libpng : moving archive download from sourceforge to github
...
Fixes #735
2020-06-03 16:51:18 -04:00
972c25de7d
upgrade gpg toolstack to latest versions
...
- Remove unrecognized configure options
- fixes gawk issue #668 by upgrading to libgpg-error 1.37 instead of patching 1.32 for regex change (fixed upstream)
- move patches so they match new versions for libassuan, gpg and libgcrypt (no change)
Version change:
- gpg 2.2.10 -> 2.2.20
- libassuan 2.5.1 -> 2.5.3
- libgcrypt 1.8.3 -> 1.8.5
- libgpg-error 1.32 -> 1.37
Size changes:
- gpg 886.5 -> 911.3 kB
- gpg-agent: 371.9 -> 376.0 kB
- scdaemon: 399.5 -> 407.8 kB
- libgpg-error.so.0 125.9 -> 130.0 kB
Unrecognized options on gpg2 toolstack:
- disable-nls and disable-asm disable-keyserver-helpers disable-hkp disable-finger disable-dns-srv disable-dns-cert and disable-wks-server
2020-05-22 15:13:06 -04:00
0cd1a0d04c
Revert "GPG toolstack upgrade to latest available versions (Fixes Gawk issue)"
2020-05-22 14:55:41 -04:00
69c7b207ba
Merge pull request #714 from tlaurion/gawk_test_over_latest_debian
...
GPG toolstack upgrade to latest available versions (Fixes Gawk issue)
2020-05-22 14:55:04 -04:00
2d50e01071
Make hotp-verification hashes same across two CIs
...
Move from CMake build system to GNU Make for hotp-verification
Change version to one supporting Makefile build
Fixes https://github.com/osresearch/heads/pull/724
Connected:
- https://github.com/Nitrokey/nitrokey-hotp-verification/issues/13
- https://github.com/osresearch/heads/pull/722
2020-05-22 15:17:04 +02:00
241b0bc680
upgrade gpg toolstack to latest versions
...
- Remove unrecognized configure options
- fixes gawk issue #668 by upgrading to libgpg-error 1.37 instead of patching 1.32 for regex change (fixed upstream)
- move patches so they match new versions for libassuan, gpg and libgcrypt (no change)
Version change:
- gpg 2.2.10 -> 2.2.20
- libassuan 2.5.1 -> 2.5.3
- libgcrypt 1.8.3 -> 1.8.5
- libgpg-error 1.32 -> 1.37
Size changes:
- gpg 886.5 -> 911.3 kB
- gpg-agent: 371.9 -> 376.0 kB
- scdaemon: 399.5 -> 407.8 kB
- libgpg-error.so.0 125.9 -> 130.0 kB
Unrecognized options on gpg2 toolstack:
- disable-nls and disable-asm disable-keyserver-helpers disable-hkp disable-finger disable-dns-srv disable-dns-cert and disable-wks-server
2020-05-20 13:19:51 -04:00
b29447ef8f
modules/flashrom: update to v1.2 release
...
- Update flashrom module to v1.2.
- Drop Thinkpad x220 patch as it's now properly supported.
- Drop 'laptop=force_I_want_a_brick' from board FLASHROM_OPTIONS
since it's no longer needed.
- Migrate kgpe-d16 patch.
The kgpe-d16 patch needed a complete overhaul when rebased against
flashrom v1.2, and needs close inspection/testing as a result.
The following changes were made from the previous patch:
- dropped addition of 4-byte addressing (4BA), since now supported
- dropped addtiion of Macronix MX25L256 and MX66L512 chips,
since now supported
- added 4BA erase commands for Winbond W25Q256 chip
- dropped code to show progress indicator, since another PR already adds that
Signed-off-by: Matt DeVillier <matt.devillier@puri.sm >
2020-04-20 17:34:08 -05:00
f42b338de9
Merge pull request #478 from flammit/coreboot-kgpe-d16
...
Fix coreboot build for kgpe-d16
2020-02-22 14:17:07 -05:00
28fedf9a7e
modules/libremkey-hotp-verification: make reproducible
...
Modeled after modules/tpmtotp, use a specific git commit hash for
module libremkey-hotp-verification. Add hidapi as a submodule with
dummy/placeholder in modules (like coreboot-blobs), also specified
by git commit hash. Adjust libremkey-hotp-verification patch file
name so patch applied properly.
Addresses issue #640
Test: build Librem 13v4
Signed-off-by: Matt DeVillier <matt.devillier@puri.sm >
2020-02-19 13:37:41 -06:00
ad2395d3db
libremkey-hotp-verification: toolchain adjustments
...
Pass through new toolchain path via $(CROSS) so we can set the
c/c++ compiler paths correctly for CMake. Adjust patch to use
new paths, and fix compiler/linker paths to correct a libusb linking issue.
Signed-off-by: Matt DeVillier <matt.devillier@puri.sm >
2020-01-22 12:03:05 -06:00
ed3602f0ba
modules: maintain reproducibility by removing rpath
2020-01-16 09:36:42 -08:00
d63d5b4508
modules: update to use full commit id
...
The short commit id can cause the tar archive potentially cause
the root directory in the archive to be named with the short id
causing the verification to fail
2020-01-16 09:30:48 -08:00
23d0126407
kexec: update to 2.0.20
...
Fix issue with kexec failing to load the target kernel when
building with musl-cross-make
2020-01-16 09:30:15 -08:00
8e4b10922b
Merge pull request #653 from osresearch/musl-cross-make
...
Use musl cross make for Heads, Linux, coreboot and edk2
2020-01-15 13:15:19 -05:00
6962bfda10
lvm2: turn off buffering, which prevents segfault with new musl ( #651 )
...
Signed-off-by: Trammell hudson <hudson@trmm.net >
2020-01-09 13:27:09 +01:00
791d064397
musl-cross-make: replace all cross compilers with musl-cross-make
...
Signed-off-by: Trammell Hudson <hudson@trmm.net >
2020-01-08 17:08:15 +01:00
027ae39abe
modules: add module_tar_opt to allow different strip options
...
Signed-off-by: Trammell hudson <hudson@trmm.net >
2019-12-03 10:48:10 +01:00
7370b75945
update musl-cross to 1952975
...
this should fix issues with compressed ELF header sections.
2019-12-02 23:03:14 +00:00
2980eb0522
pin msrtools and tpmtotp to current git heads
...
Signed-off-by: Trammell hudson <hudson@trmm.net >
2019-10-29 13:36:04 +01:00
e5038e6adf
musl-cross: crossgcc binary changed names ( #617 )
...
Signed-off-by: Trammell hudson <hudson@trmm.net >
2019-10-29 13:26:23 +01:00
56aa508b8d
musl-cross: pin to a specific checkout ( #617 )
...
Add `--strip 1` to tar file extraction in the `Makefile`,
which ensures that the directory name in `build/` will
match the one listed in `$($(MODULE)_dir)`.
Signed-off-by: Trammell hudson <hudson@trmm.net >
2019-10-29 13:15:56 +01:00
a37e1f434d
add Intel msrtools commands
2019-07-30 15:36:57 +02:00
6080219d85
tabs required instead of spaces...
2019-04-27 13:40:12 -04:00
a15504b414
Fedora 30 fix for pinentry: remove gtk and gnome3 support. TODO: remove all unneeded config options for ALL modules
2019-04-27 13:36:05 -04:00
64c830e652
Merge branch 'master' into make-4.2.1
2019-04-22 21:53:43 -04:00
6612352a60
Merge pull request #496 from strugee/better-mirror-url
...
Improve mirror URLs
2019-02-28 16:12:25 -05:00
695993b593
Merge branch 'master' into gpg2
2019-02-08 13:29:02 -05:00
8dd1082808
module/pinentry: disable-pinentry-qt instead of qt5
...
else:
make[4]: Entering directory '/home/user/heads/build/pinentry-1.1.0/qt'
g++ -DHAVE_CONFIG_H -I. -I.. -I//include -I//include -I.. -I../secmem -I../pinentry -Wall -I/home/user/heads/install/usr/include -I/home/user/heads/install/usr/include/QtCore -I/home/user/heads/install/usr/include/QtGui -DQT_SHARED -g -O2 -MT pinentrydialog.o -MD -MP -MF .deps/pinentrydialog.Tpo -c -o pinentrydialog.o pinentrydialog.cpp
In file included from pinentrydialog.cpp:24:
pinentrydialog.h:27:10: fatal error: QDialog: No such file or directory
2019-01-29 11:18:14 -05:00
3bc79495bb
Disabled libsecret support in the pinentry module
2019-01-29 11:16:26 -05:00
44d566a72a
pinentry-tty path needs to be known from gpg-agent
2019-01-26 11:51:59 -05:00
e5a739e54c
use /bin for libexecdir and disable curses pinentry
2019-01-26 11:51:54 -05:00
8ba3c33402
required changes to apply on top of osresearch/gpg2 for gpg2 to actually work, tools and libs updated to latest versions
2019-01-26 11:51:51 -05:00
c261907ee6
gpg2 pinentry program is required for passwords or PINs
2019-01-26 11:51:41 -05:00
49269f2bb4
gpg2 library fixes
2019-01-26 11:51:17 -05:00
b1736d7cb3
use full version names on output libraries
2019-01-26 11:48:26 -05:00
c1c615e677
copy gpg2 executables and pass in the libusb include path
2019-01-26 11:47:16 -05:00
7f1288b89c
Preliminary support for GnuPG2
2019-01-26 11:45:00 -05:00
8b28e49459
Switch popt mirror to Launchpad
...
Launchpad offers HTTPS downloads, whereas other more obvious mirrors
(like the one used originally, as well as rpm5.org) do not.
Note: it is unclear to whether Launchpad's tarballs will always match
the checksum from upstream tarballs. However, at least for 1.16, this
condition does indeed seem to hold true. Homebrew, FWIW, lists OpenBSD
as a mirror:
https://github.com/Homebrew/homebrew-core/blob/master/Formula/popt.rb
2018-12-13 16:39:07 -05:00
6303fbcacc
Download most resource from HTTPS
...
As much as possible.
2018-12-13 16:21:21 -05:00
b38e720440
Use a better GNU mirror URL
...
The new URL automatically redirects to a nearby, current GNU mirror.
Also, the fact that it's HTTPS helps with restrictive outbound
firewall policies that disallow plaintext traffic (for example,
using Qubes' firewall functionality).
2018-12-13 01:32:37 -05:00
c559d71725
cairo: restore reproducibility
...
libtool needs to be patched to not write rpath to targets
2018-11-24 09:18:32 -08:00
25113cb8c2
Fix coreboot build for kgpe-d16
2018-11-10 13:41:01 -08:00
d8a3be47af
Merge branch 'coreboot-4.8' of https://github.com/flammit/heads
2018-11-07 17:04:23 -05:00
7f83a0a028
Merge branch 'fbwhiptail_url' of https://github.com/merge/heads
2018-11-07 16:41:28 -05:00
8fec61f6e8
Merge branch 'cryptsetup-reencrypt' of https://github.com/tlaurion/heads
2018-11-07 16:38:12 -05:00
3f53cfe05b
Merge branch 'add_librem_key_support' of https://github.com/kylerankin/heads
2018-11-07 16:37:01 -05:00
