Trammell Hudson
|
9fb998bef0
|
check PGP signatures on xen, kernel and initrd (partial fix for #43)
|
2016-11-03 16:45:50 -04:00 |
|
Trammell Hudson
|
e9e6d661d3
|
wrappers to seal/unseal drive encryption keys from the TPM
|
2016-10-28 04:59:51 -04:00 |
|
Trammell Hudson
|
eda28b5800
|
move start-xen so that it is in the path
|
2016-10-28 04:59:21 -04:00 |
|
Trammell Hudson
|
a281d6b8a5
|
fix default location for trusted keys
|
2016-10-28 04:58:57 -04:00 |
|
Trammell Hudson
|
5a5e7047c7
|
fix default location for trusted keys
|
2016-10-28 04:58:39 -04:00 |
|
Trammell Hudson
|
f65fe75823
|
simplify startup arguments for qubes r3.2
|
2016-10-28 04:57:11 -04:00 |
|
Trammell Hudson
|
9311428082
|
add /sbin paths
|
2016-10-26 15:11:12 -04:00 |
|
Trammell Hudson
|
16bad1abd4
|
enable aes-xts in Heads kernel (issue #44)
|
2016-10-26 15:10:53 -04:00 |
|
Trammell Hudson
|
279d384885
|
check signatures on kernel, initramfs and xen (issue #43)
|
2016-10-25 14:42:36 -04:00 |
|
Trammell Hudson
|
b818986cb2
|
ignore vdso fake library on fedora
|
2016-09-28 11:13:27 -04:00 |
|
Trammell Hudson
|
b30846379d
|
some frequently asked questions, with draft answers
|
2016-09-27 19:53:28 -04:00 |
|
Trammell Hudson
|
24ef1e1a0a
|
Created initrd/bin and initrd/lib directories (fix issue #33)
|
2016-09-26 14:55:48 -04:00 |
|
Trammell Hudson
|
2663fc464b
|
updated for receent merge of coreboot master
|
2016-09-26 14:10:32 -04:00 |
|
Trammell Hudson
|
4d20bc3e13
|
preload the recovery shell command line history
|
2016-09-26 13:51:10 -04:00 |
|
Trammell Hudson
|
c66167b9e5
|
remove unused binary sealtotp/unsealtotp programs
|
2016-09-11 00:07:56 -04:00 |
|
Trammell Hudson
|
4b2064f193
|
improve library/binary handling in building initrd (issue #21)
|
2016-09-10 17:36:36 -04:00 |
|
Trammell Hudson
|
ab5fb03475
|
enable unicode on vt so that qrenc works
|
2016-09-09 18:32:44 -04:00 |
|
Trammell Hudson
|
9a85bc22d9
|
use the new tpmtotp shell scripts
|
2016-09-09 17:24:52 -04:00 |
|
Trammell Hudson
|
0e16afe17a
|
update config after recent coreboot/coreboot merge
|
2016-09-09 13:27:20 -04:00 |
|
Trammell Hudson
|
05d1c66d8d
|
extreme compression
|
2016-09-09 13:26:52 -04:00 |
|
Trammell Hudson
|
e342aa3f18
|
checkout tpmtotp from github, install various tpm utilities
|
2016-08-19 17:25:44 -04:00 |
|
Trammell Hudson
|
a707cab403
|
correct path and patch for xen-4.6.3 files
|
2016-08-19 14:51:45 -04:00 |
|
Trammell Hudson
|
47ad314798
|
enable CONFIG_USE_BLOBS to checkout non-free binary blobs submodule
|
2016-08-19 14:41:32 -04:00 |
|
Trammell Hudson
|
4a8163bcf8
|
adjust file name so that patch -p1 works
|
2016-08-19 14:38:39 -04:00 |
|
Trammell Hudson
|
b228290ae1
|
checkout coreboot from github, rather than downloading release file
|
2016-08-19 11:31:07 -04:00 |
|
Trammell Hudson
|
18c9b2d808
|
cryptsetup for dm-verity support
|
2016-08-19 11:20:41 -04:00 |
|
Trammell Hudson
|
d857170e0f
|
Enable measured boot support
|
2016-08-16 17:44:51 -04:00 |
|
Trammell Hudson
|
c755b8431f
|
update for coreboot-git
|
2016-08-16 09:13:38 -04:00 |
|
Trammell Hudson
|
ed409cabbf
|
reset nlinks as well since /dev was changing due to serial adapter hotplug
|
2016-08-16 09:13:09 -04:00 |
|
Trammell Hudson
|
21268a4bb8
|
Updates for coreboot-git
|
2016-08-14 16:04:43 -04:00 |
|
Trammell Hudson
|
c84293ad62
|
4.7 is the new default kernel
|
2016-08-14 16:04:11 -04:00 |
|
Trammell Hudson
|
3ba3e2a939
|
use coreboot from git instead of downloading it, move blobs into this module file
|
2016-08-14 16:03:11 -04:00 |
|
Trammell Hudson
|
74e21567d4
|
use cpio-clean to make a reproducible makefile
|
2016-08-14 16:02:15 -04:00 |
|
Trammell Hudson
|
8a32fb4ac3
|
warn if there is no totp file
|
2016-08-14 16:00:34 -04:00 |
|
Trammell Hudson
|
0646b0bd41
|
make cpio files deterministic
|
2016-08-14 15:34:40 -04:00 |
|
Trammell Hudson
|
72f35dd151
|
rearrange notes
|
2016-08-14 12:57:54 -04:00 |
|
Trammell Hudson
|
9b405930de
|
read-only / thoughts
|
2016-08-07 13:50:06 -04:00 |
|
Trammell Hudson
|
8e4e37360f
|
mount /boot
|
2016-08-07 13:49:30 -04:00 |
|
Trammell Hudson
|
d3bbc22d54
|
signing details
|
2016-08-06 18:45:56 -04:00 |
|
Trammell Hudson
|
ec96a39d48
|
build library subdirectory only
|
2016-08-06 17:15:56 -04:00 |
|
Trammell Hudson
|
d85d72a0d7
|
enable a few more busybox tools
|
2016-08-06 17:14:56 -04:00 |
|
Trammell Hudson
|
785006d4a4
|
warn on missing libraries
|
2016-08-06 17:14:07 -04:00 |
|
Trammell Hudson
|
80b82fdfc4
|
extract and verify gpg signature on the boot script
|
2016-08-06 17:13:22 -04:00 |
|
Trammell Hudson
|
2438460503
|
shell script to setup dmverity device
|
2016-08-05 23:28:20 -04:00 |
|
Trammell Hudson
|
e5e16bd47f
|
convert veritysetup into a dmsetup table
|
2016-08-05 23:17:41 -04:00 |
|
Trammell Hudson
|
97a0c3662c
|
ignore generate script files
|
2016-08-05 12:26:35 -04:00 |
|
Trammell Hudson
|
015b5290cf
|
total hack patch to allow Linux 4.7 to boot with coreboot
|
2016-08-05 12:26:12 -04:00 |
|
Trammell Hudson
|
0c090c49ed
|
add no-real-mode to Xen parameters
|
2016-08-05 12:25:35 -04:00 |
|
Trammell Hudson
|
377cb1415b
|
Add cdroms to Linux config, support 4.7 kernels
|
2016-08-05 12:25:00 -04:00 |
|
Trammell Hudson
|
4a9c3e1ccb
|
allow linux 4.7 to be selected
|
2016-08-05 12:24:16 -04:00 |
|