ExternalVendorCode/heads
1
0
Fork 0
mirror of https://github.com/linuxboot/heads.git synced 2025-02-13 22:21:55 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
2,919 Commits 28 Branches 6 Tags
Commit Graph

2919 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Thierry Laurion
b1690ce473
Merge remote-tracking branch 'osresearch/master' into introduce_quiet_mode-diceware_STAGING 2025-01-15 15:35:53 -05:00
Thierry Laurion
49e0849d98
Merge pull request #1846 from Dasharo/add_novacustom_v540tu 
Add NovaCustom V560TU board
 2025-01-15 15:21:43 -05:00
Thierry Laurion
eee5039cb3
Move ns50 to UNTESTED 
Move https://github.com/linuxboot/heads/pull/1846 forward.

Signed-off-by: Thierry Laurion <insurgo@riseup.net>
 2025-01-15 19:29:05 +01:00
Michał Kopeć
b59c0e2e33
Remove leftover Linux 6.11.9 patches 
Signed-off-by: Michał Kopeć <michal.kopec@3mdeb.com>
 2025-01-15 17:36:09 +01:00
Michał Kopeć
de79d2a853
boards/novacustom-v540tu: remove board 
Support for V54 series is not added at this time.

Signed-off-by: Michał Kopeć <michal.kopec@3mdeb.com>
 2025-01-15 15:13:57 +01:00
Michał Kopeć
a80d6da99b
modules/coreboot: bump Dasharo fork for GOP single display fix 
Signed-off-by: Michał Kopeć <michal.kopec@3mdeb.com>
 2025-01-15 15:09:38 +01:00
Michał Kopeć
75f0fd12d7
config/coreboot-novacustom-v5.0tu: Set correct IOE PCR base addr 
As per coreboot commit 8adaae026dc055fa8b445fbe32e5146576d56c28

Signed-off-by: Michał Kopeć <michal.kopec@3mdeb.com>
 2025-01-15 12:42:26 +01:00
Michał Kopeć
2148e64aa3
coreboot-dasharo: move patches from Heads into Dasharo coreboot fork 
Patch 0003-CONFIG_RESOURCE_ALLOCATION_TOP_DOWN-CONFIG_DOMAIN_RESOURCE_32BIT_LIMIT.patch
is removed because it is no longer required.

Signed-off-by: Michał Kopeć <michal.kopec@3mdeb.com>
 2025-01-15 12:20:25 +01:00
Thierry Laurion
930d3e6114
BUGFIX: replace direct calls from LOG to INFO, so that only DO_WITH_DEBUG uses LOG. INFO manages console output to log or console 
Quiet mode introduced output reduction to console to limit technical info provided to end users.
Previous informational output (previous default) now outputs this now considered additional information through INFO() calls, which either outputs to console, or debug.log
Only DO_WITH_DEBUG should call LOG directly, so that stderr+stdout output is prepended with LOG into debug.log

This fixes previous implementation which called LOG in DO_WITH_DEBUG calls and modified expected output to files, which was observed by @3hhh in output of GRUB entries when selecting boot option.

Signed-off-by: Thierry Laurion <insurgo@riseup.net>
 2025-01-13 11:00:14 -05:00
Thierry Laurion
8f7b1c4128
Revert "functions: remove DO_WITH_DEBUG call for kexec-parse-boot which redirects output to file used to show boot options in GUI" 
This reverts commit 618ff26d28edd55faf498563d293842f41124c71.

This is not the proper way.

Signed-off-by: Thierry Laurion <insurgo@riseup.net>
 2025-01-13 10:50:42 -05:00
Thierry Laurion
b8cb467dd3
novacustom boards: rename linux-nittropad-x.config -> linux-novacustom-common.config, switch back to kernel 6.1.8, save config in oldconfig 
Input for https://github.com/linuxboot/heads/pull/1846

Signed-off-by: Thierry Laurion <insurgo@riseup.net>
 2025-01-13 13:27:05 +01:00
Thierry Laurion
3687dcbb5a
config/coreboot-novacustom-v560tu.config: switch CONFIG_USE_PC_CMOS_ALTCENTURY=y to CONFIG_USE_PC_CMOS_ALTCENTURY=n otherwise in year 2070 after initial external flashing 
Signed-off-by: Thierry Laurion <insurgo@riseup.net>
 2025-01-13 13:26:59 +01:00
Michał Kopeć
e2237a6e73
modules/coreboot: bump Dasharo fork for 96GB boot time fix 
Signed-off-by: Michał Kopeć <michal.kopec@3mdeb.com>
 2025-01-10 15:26:56 +01:00
Thierry Laurion
618ff26d28
functions: remove DO_WITH_DEBUG call for kexec-parse-boot which redirects output to file used to show boot options in GUI 
Thanks @3hhh for bug in PR bug report at https://github.com/linuxboot/heads/pull/1875#issuecomment-2580660074
This bug is present for all DO_WITH_DEBUG calls to functions redirecting output to file.

Signed-off-by: Thierry Laurion <insurgo@riseup.net>
 2025-01-09 13:49:14 -05:00
Thierry Laurion
af59704bc5
TODOs: remove no more relevant ones code per review 
Signed-off-by: Thierry Laurion <insurgo@riseup.net>
 2024-12-21 15:06:27 -05:00
Thierry Laurion
94dd788249
seal-hotpkey: change warning when default GPG Admin PIN/Secrets app PIN is detected 
Additional 0.5h for applying changes linked to code review under https://github.com/linuxboot/heads/pull/1875
Linked to Nitrokey unacknowledged RfP https://github.com/linuxboot/heads/issues/1866 that continues to grow past the 40h (now near 42... but unpaid because 'unplanned'... As if this was planned on my side.)

Signed-off-by: Thierry Laurion <insurgo@riseup.net>
 2024-12-21 14:14:58 -05:00
Thierry Laurion
696ecf54cd
initrd/bin/seal-hotpkey: fix regression of hotp_verification 1.7+ version bump output parsing for <nk3 
As tested working with old librem key fw 0.10: works
Log entry of additioanl 30 minutes for https://github.com/linuxboot/heads/pull/1875 (I cannot not fix with my time @jans23 https://github.com/linuxboot/heads/issues/1866, since nk3 is not the only dongle support by Heads)

Signed-off-by: Thierry Laurion <insurgo@riseup.net>
 2024-12-21 13:22:38 -05:00
Thierry Laurion
d2b84597bf
tpmr: check for CONFIG_TPM2_CAPTURE_PCAP=y to export TPM comms under /tmp/tpm0.pcap (not just check for existence of CONFIG_TPM2_CAPTURE_PCAP under env) 
So that export CONFIG_TPM2_CAPTURE_PCAP=n across all boards doesn't break and so that its easy for auditors to just toggle on in board configs

Signed-off-by: Thierry Laurion <insurgo@riseup.net>
 2024-12-21 13:22:32 -05:00
Thierry Laurion
ff94d78c03
all maintained boards: add debug(n)+tracing(n)+pcap(n)+quiet(y) just prior of bootscript to unify to all boards 
with exception of
- qemu boards not being *quiet: quiet=n
- qemu boards not being *prod* having pcap=y
- qemy boards not being *prod* have debug+tracing=y
- qemu tpm1 boards have '#pcap=n'

Signed-off-by: Thierry Laurion <insurgo@riseup.net>
 2024-12-21 13:22:27 -05:00
Thierry Laurion
27b3e3a0a0
qemu-*-prod_quiet board configs: move debug(n)+tracing(n)+pcap(n)+quiet(y) just prior of gui-init to attempt to unify to all boards 
Signed-off-by: Thierry Laurion <insurgo@riseup.net>
 2024-12-21 13:22:21 -05:00
Thierry Laurion
574cd97a2f
Revert "TO REVERT BEFORE MERGE: enable quiet mode in all boards and revert for qemu so only prod_quiet boards have quiet upon revert" 
This reverts commit 65d6fc48ee4f9e8b61bd59f102b60cd01f7a3a39.

Signed-off-by: Thierry Laurion <insurgo@riseup.net>
 2024-12-21 13:22:15 -05:00
Thierry Laurion
89309f0523
init: clarify origin of quiet mode once more after merge conflict resolution 
Signed-off-by: Thierry Laurion <insurgo@riseup.net>
 2024-12-21 13:22:09 -05:00
Jonathon Hall
0825b57e29
config-gui.sh: Combine quiet mode / debug output to one output setting 
These two settings are exclusive, so they would disable each other if
enabled.  Present them as one setting with three output levels.

Signed-off-by: Jonathon Hall <jonathon.hall@puri.sm>
Signed-off-by: Thierry Laurion <insurgo@riseup.net>
 2024-12-21 13:22:03 -05:00
Jonathon Hall
8e630e0e4d
seal-totp: Print plain secret instead of URL for manual entry 
Don't print the URL and then explain how to get the secret out of it,
just print the secret.

Signed-off-by: Jonathon Hall <jonathon.hall@puri.sm>
Signed-off-by: Thierry Laurion <insurgo@riseup.net>
 2024-12-21 13:21:57 -05:00
Jonathon Hall
a06ead69bc
tpmr: Don't continue blindly if a TPM reset step fails 
If a TPM reset step fails, don't blindly continue onto the other
steps.  Use DO_WITH_DEBUG to trace failures, so they're visible in the
log but we still exit due to set -e.

Signed-off-by: Jonathon Hall <jonathon.hall@puri.sm>
Signed-off-by: Thierry Laurion <insurgo@riseup.net>
 2024-12-21 13:21:51 -05:00
Jonathon Hall
c4bb4107ab
tpmr: Use SINK_LOG rather than temp file, avoid doubled log output 
Use SINK_LOG to capture tpm2 unseal rather than a temp file.

Don't double up output from tpm "$@" to log; DO_WITH_DEBUG already
captures it.

Signed-off-by: Jonathon Hall <jonathon.hall@puri.sm>
Signed-off-by: Thierry Laurion <insurgo@riseup.net>
 2024-12-21 13:21:45 -05:00
Jonathon Hall
516f7b6924
etc/functions: Fix SINK_LOG blank lines, add more dev doc 
Add examples for capturing stderr or both stdout+stderr.

Trace blank lines with LOG like non-blank lines.

Signed-off-by: Jonathon Hall <jonathon.hall@puri.sm>
Signed-off-by: Thierry Laurion <insurgo@riseup.net>
 2024-12-21 13:21:40 -05:00
Jonathon Hall
283553956f
initrd/init: Delete outdated comment about ash 
Signed-off-by: Jonathon Hall <jonathon.hall@puri.sm>
Signed-off-by: Thierry Laurion <insurgo@riseup.net>
 2024-12-21 13:21:34 -05:00
Thierry Laurion
e1a263ce3b
init: warn user that if CONFIG_QUIET_MODE was enabled in board config at build time but disabled through Configuration Settings applied override, early measurement output got suppressed 
Also tell user that those early suppressed messages can be seen under /tmp/debug.txt

Signed-off-by: Thierry Laurion <insurgo@riseup.net>
 2024-12-21 13:21:28 -05:00
Thierry Laurion
07218df9cb
initrd/bin/kexec-select-boot: clarify that TPM2 primary handle HASH is created upon setting default boot (was not clear) 
Signed-off-by: Thierry Laurion <insurgo@riseup.net>
 2024-12-21 13:21:22 -05:00
Thierry Laurion
eb63d4d46a
oem-factory-reset: remove duplicate output 'Checking for USB Security dongle...' 
Signed-off-by: Thierry Laurion <insurgo@riseup.net>
 2024-12-21 13:21:16 -05:00
Thierry Laurion
97121ab86e
global: finalize switch from ash to bash shell, including recovery shell access 
Signed-off-by: Thierry Laurion <insurgo@riseup.net>
 2024-12-21 13:21:10 -05:00
Thierry Laurion
bcd364c280
TO REVERT BEFORE MERGE: enable quiet mode in all boards and revert for qemu so only prod_quiet boards have quiet upon revert 
repro
user@localhost:~/heads$ sed -i 's|export CONFIG_BOOTSCRIPT=/bin/gui-init|#Enable quiet mode: technical information logged under /tmp/debug.log\nexport CONFIG_QUIET_MODE=y\nexport CONFIG_BOOTSCRIPT=/bin/gui-init|' boards/*/*.config
user@localhost:~/heads$ git restore boards/*qemu*/*.config

Signed-off-by: Thierry Laurion <insurgo@riseup.net>
 2024-12-21 13:21:04 -05:00
Thierry Laurion
494ba09270
novacustom-nv4x board config: revert quiet mode enablement 
Signed-off-by: Thierry Laurion <insurgo@riseup.net>
 2024-12-21 13:20:58 -05:00
Thierry Laurion
02d8ce8d0d
kexec-save-default kexec-select-boot: fix primary handle once more. Can't wait we get rid of this... file must exist and not be empty, and hash output to console must not be silenced 
Signed-off-by: Thierry Laurion <insurgo@riseup.net>
 2024-12-21 13:20:53 -05:00
Thierry Laurion
1e6079620a
TPM2 primary handle debugging once more. Can't wait we get rid of this... 
Signed-off-by: Thierry Laurion <insurgo@riseup.net>
 2024-12-21 13:20:47 -05:00
Thierry Laurion
71d4260045
novacustom_nv4x_adl/novacustom_nv4x_adl.config : add quiet mode for real hardware recording in PR, will comment and generalize in next commit to all maintained boards, leaving this to be overriden by branding downstream for downstream releases exercice and choice 
Signed-off-by: Thierry Laurion <insurgo@riseup.net>
 2024-12-21 13:20:41 -05:00
Thierry Laurion
f981ef971c
init: Quiet mode enablement output string modified; tell users having enabled it through Configuration Settings that earlier suppression requires enabling through board config 
Signed-off-by: Thierry Laurion <insurgo@riseup.net>
 2024-12-21 13:20:35 -05:00
Thierry Laurion
885af7d39f
kexec-select-boot+kexec-save-default: Quiet mode; remove last rollback counters printed to console 
Signed-off-by: Thierry Laurion <insurgo@riseup.net>
 2024-12-21 13:20:29 -05:00
Thierry Laurion
91299fd89b
seal-totp: contextualize qr code output for manual input of those without qr scanner app in mobile phone 
Signed-off-by: Thierry Laurion <insurgo@riseup.net>
 2024-12-21 13:20:23 -05:00
Thierry Laurion
ef4cdfa77e
init: some more comments in code per review 
Signed-off-by: Thierry Laurion <insurgo@riseup.net>
 2024-12-21 13:20:17 -05:00
Thierry Laurion
60ba06dab2
DEBUG: inform that output will be both in dmesg and on console from where that measure is enforced in code 
This is equivalent of passing debug on kernel command line from coreboot config, even is enabled through config options and saved back in CBFS.

Signed-off-by: Thierry Laurion <insurgo@riseup.net>
 2024-12-21 13:20:11 -05:00
Thierry Laurion
b5c24f2447
init+cbfs-init: refactor and explain why quiet mode cannot suppress measurements of cbfs-init extracted+measured TPM stuff if not in board config 
Signed-off-by: Thierry Laurion <insurgo@riseup.net>
 2024-12-21 13:20:06 -05:00
Thierry Laurion
08f52af033
Deprecate ash in favor of bash shell; /etc/ash_functions: move /etc/ash_functions under /etc/functions, replace TRACE calls by TRACE_FUNC, remove xx30-flash.init 
Signed-off-by: Thierry Laurion <insurgo@riseup.net>
 2024-12-21 13:20:00 -05:00
Thierry Laurion
4354cd4c22
config-gui.sh: Add quiet mode toggle, which turns off debug+tracing if enabled, and where enabling debug+tracing disables Quiet mode 
Signed-off-by: Thierry Laurion <insurgo@riseup.net>
 2024-12-21 13:19:54 -05:00
Thierry Laurion
a54a4b8afa
hot-verification: bump to 1.7+ unrelease patchset https://github.com/Nitrokey/nitrokey-hotp-verification/pull/51 
I give up trying to make Nitrokey do the right thing. They will propose PR to Heads next to fix their own fixes for their own caused regressions and security vulns.
I just stopped caring for sanity reasons, i'm making quiet+eom/user-reownership fixes for feature freeze. If nitrokey pays, there is gonna be future collaboration, if they don't, they will do Heads related stuff themselves.

Signed-off-by: Thierry Laurion <insurgo@riseup.net>
 2024-12-21 13:19:48 -05:00
Thierry Laurion
53156c3917
WiP: staging changes, refusing to fight against tools helping me, formatting changed. sign after tpm-reset now to work around primary handle issue. 
Signed-off-by: Thierry Laurion <insurgo@riseup.net>
 2024-12-21 13:19:42 -05:00
Thierry Laurion
0d3964274e
WiP: staging changes, warn loud and clear of weak security posture by using weak OEM defaults provisioned secrets 
Signed-off-by: Thierry Laurion <insurgo@riseup.net>
 2024-12-21 13:19:36 -05:00
Thierry Laurion
d768e80de6
WiP: staging changes, no more tpm output. Next warn /boot changed because htop counter and primary handle until removed outside of this PR 
Signed-off-by: Thierry Laurion <insurgo@riseup.net>
 2024-12-21 13:19:30 -05:00
Thierry Laurion
c7ab861325
Turn some info on default boot into LOGged info, LOG might go out forever if not pertinent to most? 
Signed-off-by: Thierry Laurion <insurgo@riseup.net>
 2024-12-21 13:19:25 -05:00