Commit Graph

244 Commits

Author SHA1 Message Date
Trammell Hudson
4fbd6ca58b
Make coreboot building modular to support multiple boards.
This touches most of the module configurations since the
coreboot build process had to add a few new features.
The Linux kernel could make use of it as well if we need
separate x230/chell/qemu kernels, for instance.
2016-11-23 12:11:08 -05:00
Trammell Hudson
cc1c198810
ignore modified .config files 2016-11-23 12:10:40 -05:00
Trammell Hudson
638329709e
include find and compression tools 2016-11-23 10:47:04 -05:00
Trammell Hudson
3f444efe8c
formatting 2016-11-23 10:46:32 -05:00
Trammell Hudson
1414023e6e
include cryptsetup in build, will break 4M ROM images 2016-11-23 10:46:04 -05:00
Trammell Hudson
da2a6580ce
allow key file to be specified on command line 2016-11-23 10:45:39 -05:00
Trammell Hudson
9fb998bef0
check PGP signatures on xen, kernel and initrd (partial fix for #43) 2016-11-03 16:45:50 -04:00
Trammell Hudson
e9e6d661d3
wrappers to seal/unseal drive encryption keys from the TPM 2016-10-28 04:59:51 -04:00
Trammell Hudson
eda28b5800
move start-xen so that it is in the path 2016-10-28 04:59:21 -04:00
Trammell Hudson
a281d6b8a5
fix default location for trusted keys 2016-10-28 04:58:57 -04:00
Trammell Hudson
5a5e7047c7
fix default location for trusted keys 2016-10-28 04:58:39 -04:00
Trammell Hudson
f65fe75823
simplify startup arguments for qubes r3.2 2016-10-28 04:57:11 -04:00
Trammell Hudson
9311428082
add /sbin paths 2016-10-26 15:11:12 -04:00
Trammell Hudson
16bad1abd4
enable aes-xts in Heads kernel (issue #44) 2016-10-26 15:10:53 -04:00
Trammell Hudson
279d384885
check signatures on kernel, initramfs and xen (issue #43) 2016-10-25 14:42:36 -04:00
Trammell Hudson
b818986cb2
ignore vdso fake library on fedora 2016-09-28 11:13:27 -04:00
Trammell Hudson
b30846379d
some frequently asked questions, with draft answers 2016-09-27 19:53:28 -04:00
Trammell Hudson
24ef1e1a0a
Created initrd/bin and initrd/lib directories (fix issue #33) 2016-09-26 14:55:48 -04:00
Trammell Hudson
2663fc464b
updated for receent merge of coreboot master 2016-09-26 14:10:32 -04:00
Trammell Hudson
4d20bc3e13
preload the recovery shell command line history 2016-09-26 13:51:10 -04:00
Trammell Hudson
c66167b9e5
remove unused binary sealtotp/unsealtotp programs 2016-09-11 00:07:56 -04:00
Trammell Hudson
4b2064f193
improve library/binary handling in building initrd (issue #21) 2016-09-10 17:36:36 -04:00
Trammell Hudson
ab5fb03475
enable unicode on vt so that qrenc works 2016-09-09 18:32:44 -04:00
Trammell Hudson
9a85bc22d9
use the new tpmtotp shell scripts 2016-09-09 17:24:52 -04:00
Trammell Hudson
0e16afe17a
update config after recent coreboot/coreboot merge 2016-09-09 13:27:20 -04:00
Trammell Hudson
05d1c66d8d
extreme compression 2016-09-09 13:26:52 -04:00
Trammell Hudson
e342aa3f18
checkout tpmtotp from github, install various tpm utilities 2016-08-19 17:25:44 -04:00
Trammell Hudson
a707cab403
correct path and patch for xen-4.6.3 files 2016-08-19 14:51:45 -04:00
Trammell Hudson
47ad314798
enable CONFIG_USE_BLOBS to checkout non-free binary blobs submodule 2016-08-19 14:41:32 -04:00
Trammell Hudson
4a8163bcf8
adjust file name so that patch -p1 works 2016-08-19 14:38:39 -04:00
Trammell Hudson
b228290ae1
checkout coreboot from github, rather than downloading release file 2016-08-19 11:31:07 -04:00
Trammell Hudson
18c9b2d808
cryptsetup for dm-verity support 2016-08-19 11:20:41 -04:00
Trammell Hudson
d857170e0f
Enable measured boot support 2016-08-16 17:44:51 -04:00
Trammell Hudson
c755b8431f
update for coreboot-git 2016-08-16 09:13:38 -04:00
Trammell Hudson
ed409cabbf
reset nlinks as well since /dev was changing due to serial adapter hotplug 2016-08-16 09:13:09 -04:00
Trammell Hudson
21268a4bb8
Updates for coreboot-git 2016-08-14 16:04:43 -04:00
Trammell Hudson
c84293ad62
4.7 is the new default kernel 2016-08-14 16:04:11 -04:00
Trammell Hudson
3ba3e2a939
use coreboot from git instead of downloading it, move blobs into this module file 2016-08-14 16:03:11 -04:00
Trammell Hudson
74e21567d4
use cpio-clean to make a reproducible makefile 2016-08-14 16:02:15 -04:00
Trammell Hudson
8a32fb4ac3
warn if there is no totp file 2016-08-14 16:00:34 -04:00
Trammell Hudson
0646b0bd41
make cpio files deterministic 2016-08-14 15:34:40 -04:00
Trammell Hudson
72f35dd151
rearrange notes 2016-08-14 12:57:54 -04:00
Trammell Hudson
9b405930de
read-only / thoughts 2016-08-07 13:50:06 -04:00
Trammell Hudson
8e4e37360f
mount /boot 2016-08-07 13:49:30 -04:00
Trammell Hudson
d3bbc22d54
signing details 2016-08-06 18:45:56 -04:00
Trammell Hudson
ec96a39d48
build library subdirectory only 2016-08-06 17:15:56 -04:00
Trammell Hudson
d85d72a0d7
enable a few more busybox tools 2016-08-06 17:14:56 -04:00
Trammell Hudson
785006d4a4
warn on missing libraries 2016-08-06 17:14:07 -04:00
Trammell Hudson
80b82fdfc4
extract and verify gpg signature on the boot script 2016-08-06 17:13:22 -04:00
Trammell Hudson
2438460503
shell script to setup dmverity device 2016-08-05 23:28:20 -04:00