ExternalVendorCode/heads
1
0
Fork 0
mirror of https://github.com/linuxboot/heads.git synced 2025-02-03 09:40:45 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Commit Graph

  • 934f5c4d2e
         Merge d8bde03ba3d660ee560e64fe68f8bc62717c93cc into 89a9c1b276cf38ff70d73017e4ca69643db9fd90 #1606 optimist555 2025-02-01 05:09:33 +00:00
  • 000ababa6a
         Merge de5cc493662ed55b61c2e4de231589ca090528ff into 89a9c1b276cf38ff70d73017e4ca69643db9fd90 #1804 Thierry Laurion 2025-02-01 05:08:40 +00:00
  • 14cf493bee
         Merge 5d2a163ea7e278148cb1b97294bfb8dd93c30121 into 89a9c1b276cf38ff70d73017e4ca69643db9fd90 #1355 Marcin Cieślak 2025-02-01 05:08:32 +00:00
  • d8abd67481
         Merge ace2947f259e49db0049c0f808700c14253e7a7b into 89a9c1b276cf38ff70d73017e4ca69643db9fd90 #1019 Siproqu 2025-02-01 05:08:31 +00:00
  • 6997ed2f12
         Merge 15b5be6c9d28ac0a239d1ca6c912941b59b47258 into 89a9c1b276cf38ff70d73017e4ca69643db9fd90 #1191 Cody Ho 2025-02-01 05:08:02 +00:00
  • bd0b6895fc
         Merge 1d83f7bdce0261ebdebfb63a10b93fc8665167ba into 89a9c1b276cf38ff70d73017e4ca69643db9fd90 #521 Francis Lam 2025-02-01 05:07:13 +00:00
  • 88f4e38a6c
         Merge eee1d53b1b20ff9366c66529cf04c6088b5ded6c into 89a9c1b276cf38ff70d73017e4ca69643db9fd90 #1870 Thierry Laurion 2025-02-01 05:07:09 +00:00
  • 0faf5e5d6e
         Merge 7bf492e77735e003419edb516c8be9e43f8f9136 into 89a9c1b276cf38ff70d73017e4ca69643db9fd90 #1683 Thierry Laurion 2025-02-01 05:06:54 +00:00
  • 89a9c1b276
         Merge pull request #1899 from tlaurion/unify_nv41_with_other_novacustom_board_name_scheme master Thierry Laurion 2025-01-30 14:09:15 -05:00
  • b34534c35a
         Merge 9b9ebaa6af744fd2c0dc83b5b70d92015c958473 into 2ba5a0420b91e15f4c9663edbd723a6c704f54e9 #1888 JonathonHall-Purism 2025-01-29 08:36:26 -05:00
  • 8381ee3a86
         novacustom_nv4x_adl -> novacustom-nv4x_adl consistent NovaCustom board naming scheme from now on #1899 Thierry Laurion 2025-01-24 12:07:59 -05:00
  • 2ba5a0420b
         Merge pull request #1896 from tlaurion/nitropad_novacustom-point_to_dasharo_docs Thierry Laurion 2025-01-22 15:48:01 -05:00
  • fef0326f55
         nitropad/novacustom board configs: point to Dasharo docs for disassembly and recovery instructions #1896 Thierry Laurion 2025-01-22 15:14:22 -05:00
  • decb100288
         Merge pull request #1895 from tlaurion/board_testers_review Thierry Laurion 2025-01-21 13:46:15 -05:00
  • c62b0c93ec
         BOARD_TESTERS.md: add https://matrix.to/#/@rsabdpy:matrix.org per https://matrix.to/#/!pAlHOfxQNPXOgFGTmo:matrix.org/$pj1W6y6usxTnE0DnU1uhQKX2HfPVVgCcCeyAoOITmgk?via=matrix.org&via=nitro.chat&via=envs.net agreement for d16 and x230 fhd #1895 Thierry Laurion 2025-01-20 16:00:02 -05:00
  • f17cd908fb
         BOARD_TESTERS.md: remove @natterangell for t420 and x230i per https://github.com/linuxboot/heads/issues/692#issuecomment-2603162727 request) Thierry Laurion 2025-01-20 15:25:46 -05:00
  • 6ab23088dc
         BOARD_TESTERS.md: add @notgivenby on t420 and t430 Thierry Laurion 2025-01-20 15:20:45 -05:00
  • 36e30d0174
         Merge pull request #1875 from tlaurion/introduce_quiet_mode-diceware_STAGING Thierry Laurion 2025-01-20 14:53:29 -05:00
  • 836af32a42
         BUGFIX >2tb drives: replace all fdisk -l calls with stderr suppression (workaround) #1875 Thierry Laurion 2025-01-20 12:14:42 -05:00
  • 8a34af6ed7
         Merge 4b4ac60240d096504605a3105145f649807a5be0 into 6b73d6d7cd7eb22b4623b4ebd1ecfffe34d63c31 #1850 Thierry Laurion 2025-01-20 12:06:59 -05:00
  • 985ed2bd9d
         Merge 3501314aa57cf0110eabbf496d2b895111c9240b into 6b73d6d7cd7eb22b4623b4ebd1ecfffe34d63c31 #1884 Thierry Laurion 2025-01-20 12:06:59 -05:00
  • 2d19fa9470
         Merge remote-tracking branch 'osresearch/master' into introduce_quiet_mode-diceware_STAGING Thierry Laurion 2025-01-17 18:36:37 -05:00
  • 6b73d6d7cd
         Merge pull request #1892 from tlaurion/revert_coreboot_bump_dasharo Thierry Laurion 2025-01-17 18:35:55 -05:00
  • a37c4e4264
         Revert "modules/coreboot: set Dasharo coreboot fork rev to the main dasharo branch" #1892 Thierry Laurion 2025-01-17 18:32:11 -05:00
  • a39c6dae85
         Revert "modules/coreboot: set Dasharo coreboot fork rev to the main dasharo branch" #1891 revert-1889-dasharo_coreboot_main_branch Thierry Laurion 2025-01-17 18:22:42 -05:00
  • 0cdd4414cf
         Merge remote-tracking branch 'osresearch/master' into introduce_quiet_mode-diceware_STAGING Thierry Laurion 2025-01-17 16:38:51 -05:00
  • 8c3fb0394d
         Merge pull request #1889 from Dasharo/dasharo_coreboot_main_branch Thierry Laurion 2025-01-17 16:38:24 -05:00
  • 61e6cf6129
         Merge remote-tracking branch 'osresearch/master' into introduce_quiet_mode-diceware_STAGING Thierry Laurion 2025-01-17 16:25:04 -05:00
  • 05ad469fcb
         Merge pull request #1890 from tlaurion/v560tu_remove_debug Thierry Laurion 2025-01-17 16:24:23 -05:00
  • 0cb5f2faa8
         BUGFIX: v560tu: unify board config, remove debug cmdline passed from coreboot to linux kernel #1890 Thierry Laurion 2025-01-16 10:57:03 -05:00
  • 13f8cce1bf
         modules/coreboot: set Dasharo coreboot fork rev to the main dasharo branch #1889 Michał Kopeć 2025-01-17 13:24:11 +01:00
  • 22a86e6d48
         oem-factory-reset: Only badger user to record passphrases if generated Jonathon Hall 2025-01-16 09:55:16 -05:00
  • 2872f44621
         v560tu: unify board config, remove debug cmdline passed from coreboot to linux kernel Thierry Laurion 2025-01-16 10:57:03 -05:00
  • 9b9ebaa6af
         doc: Start documenting Heads logging and configuration variables #1888 Jonathon Hall 2025-01-16 09:26:25 -05:00
  • 392d4561f3
         typo: s01x -> s0ix Thierry Laurion 2025-01-15 21:58:30 -05:00
  • bab46bc97b
         novacustom-v560tu board config: set board to have quiet mode enabled by default Thierry Laurion 2025-01-15 15:41:22 -05:00
  • 69037fc0bb
         BOARD_TESTERS.md: revise board names, add v560tu, add testers expected to answer testing calls Thierry Laurion 2025-01-15 15:38:58 -05:00
  • b1690ce473
         Merge remote-tracking branch 'osresearch/master' into introduce_quiet_mode-diceware_STAGING Thierry Laurion 2025-01-15 15:35:53 -05:00
  • 49e0849d98
         Merge pull request #1846 from Dasharo/add_novacustom_v540tu Thierry Laurion 2025-01-15 15:21:43 -05:00
  • eee5039cb3
         Move ns50 to UNTESTED #1846 Thierry Laurion 2025-01-15 13:07:21 -05:00
  • b59c0e2e33
         Remove leftover Linux 6.11.9 patches Michał Kopeć 2025-01-15 16:00:19 +01:00
  • de79d2a853
         boards/novacustom-v540tu: remove board Michał Kopeć 2025-01-15 15:13:38 +01:00
  • a80d6da99b
         modules/coreboot: bump Dasharo fork for GOP single display fix Michał Kopeć 2025-01-15 15:09:38 +01:00
  • 75f0fd12d7
         config/coreboot-novacustom-v5.0tu: Set correct IOE PCR base addr Michał Kopeć 2025-01-15 12:42:18 +01:00
  • 2148e64aa3
         coreboot-dasharo: move patches from Heads into Dasharo coreboot fork Michał Kopeć 2025-01-15 12:20:20 +01:00
  • 930d3e6114
         BUGFIX: replace direct calls from LOG to INFO, so that only DO_WITH_DEBUG uses LOG. INFO manages console output to log or console Thierry Laurion 2025-01-13 10:57:34 -05:00
  • 8f7b1c4128
         Revert "functions: remove DO_WITH_DEBUG call for kexec-parse-boot which redirects output to file used to show boot options in GUI" Thierry Laurion 2025-01-13 10:50:42 -05:00
  • b8cb467dd3
         novacustom boards: rename linux-nittropad-x.config -> linux-novacustom-common.config, switch back to kernel 6.1.8, save config in oldconfig Thierry Laurion 2025-01-08 09:59:16 -05:00
  • 3687dcbb5a
         config/coreboot-novacustom-v560tu.config: switch CONFIG_USE_PC_CMOS_ALTCENTURY=y to CONFIG_USE_PC_CMOS_ALTCENTURY=n otherwise in year 2070 after initial external flashing Thierry Laurion 2024-12-19 13:47:29 -05:00
  • e2237a6e73
         modules/coreboot: bump Dasharo fork for 96GB boot time fix Michał Kopeć 2025-01-10 15:26:56 +01:00
  • 618ff26d28
         functions: remove DO_WITH_DEBUG call for kexec-parse-boot which redirects output to file used to show boot options in GUI Thierry Laurion 2025-01-09 13:46:44 -05:00
  • 3501314aa5
         bugfix: make sure busybox's fdisk output parsing is not positional, support qemu and fix debug output #1884 Thierry Laurion 2025-01-06 10:38:48 -05:00
  • af59704bc5
         TODOs: remove no more relevant ones code per review Thierry Laurion 2024-12-21 15:05:46 -05:00
  • 94dd788249
         seal-hotpkey: change warning when default GPG Admin PIN/Secrets app PIN is detected Thierry Laurion 2024-12-21 13:51:44 -05:00
  • 696ecf54cd
         initrd/bin/seal-hotpkey: fix regression of hotp_verification 1.7+ version bump output parsing for <nk3 Thierry Laurion 2024-12-21 12:32:45 -05:00
  • d2b84597bf
         tpmr: check for CONFIG_TPM2_CAPTURE_PCAP=y to export TPM comms under /tmp/tpm0.pcap (not just check for existence of CONFIG_TPM2_CAPTURE_PCAP under env) Thierry Laurion 2024-12-21 11:19:01 -05:00
  • ff94d78c03
         all maintained boards: add debug(n)+tracing(n)+pcap(n)+quiet(y) just prior of bootscript to unify to all boards Thierry Laurion 2024-12-21 10:45:58 -05:00
  • 27b3e3a0a0
         qemu-*-prod_quiet board configs: move debug(n)+tracing(n)+pcap(n)+quiet(y) just prior of gui-init to attempt to unify to all boards Thierry Laurion 2024-12-21 10:11:43 -05:00
  • 574cd97a2f
         Revert "TO REVERT BEFORE MERGE: enable quiet mode in all boards and revert for qemu so only prod_quiet boards have quiet upon revert" Thierry Laurion 2024-12-21 10:05:03 -05:00
  • 89309f0523
         init: clarify origin of quiet mode once more after merge conflict resolution Thierry Laurion 2024-12-20 19:53:45 -05:00
  • 0825b57e29
         config-gui.sh: Combine quiet mode / debug output to one output setting Jonathon Hall 2024-12-20 16:58:45 -05:00
  • 8e630e0e4d
         seal-totp: Print plain secret instead of URL for manual entry Jonathon Hall 2024-12-20 16:58:16 -05:00
  • a06ead69bc
         tpmr: Don't continue blindly if a TPM reset step fails Jonathon Hall 2024-12-20 16:56:46 -05:00
  • c4bb4107ab
         tpmr: Use SINK_LOG rather than temp file, avoid doubled log output Jonathon Hall 2024-12-20 16:55:29 -05:00
  • 516f7b6924
         etc/functions: Fix SINK_LOG blank lines, add more dev doc Jonathon Hall 2024-12-20 16:54:06 -05:00
  • 283553956f
         initrd/init: Delete outdated comment about ash Jonathon Hall 2024-12-20 16:53:48 -05:00
  • e1a263ce3b
         init: warn user that if CONFIG_QUIET_MODE was enabled in board config at build time but disabled through Configuration Settings applied override, early measurement output got suppressed Thierry Laurion 2024-12-20 14:51:19 -05:00
  • 07218df9cb
         initrd/bin/kexec-select-boot: clarify that TPM2 primary handle HASH is created upon setting default boot (was not clear) Thierry Laurion 2024-12-20 14:37:00 -05:00
  • eb63d4d46a
         oem-factory-reset: remove duplicate output 'Checking for USB Security dongle...' Thierry Laurion 2024-12-19 15:10:54 -05:00
  • 97121ab86e
         global: finalize switch from ash to bash shell, including recovery shell access Thierry Laurion 2024-12-19 13:54:44 -05:00
  • bcd364c280
         TO REVERT BEFORE MERGE: enable quiet mode in all boards and revert for qemu so only prod_quiet boards have quiet upon revert Thierry Laurion 2024-12-18 16:27:31 -05:00
  • 494ba09270
         novacustom-nv4x board config: revert quiet mode enablement Thierry Laurion 2024-12-18 16:26:34 -05:00
  • 02d8ce8d0d
         kexec-save-default kexec-select-boot: fix primary handle once more. Can't wait we get rid of this... file must exist and not be empty, and hash output to console must not be silenced Thierry Laurion 2024-12-18 14:57:48 -05:00
  • 1e6079620a
         TPM2 primary handle debugging once more. Can't wait we get rid of this... Thierry Laurion 2024-12-17 16:10:48 -05:00
  • 71d4260045
         novacustom_nv4x_adl/novacustom_nv4x_adl.config : add quiet mode for real hardware recording in PR, will comment and generalize in next commit to all maintained boards, leaving this to be overriden by branding downstream for downstream releases exercice and choice Thierry Laurion 2024-12-17 14:39:54 -05:00
  • f981ef971c
         init: Quiet mode enablement output string modified; tell users having enabled it through Configuration Settings that earlier suppression requires enabling through board config Thierry Laurion 2024-12-17 13:40:44 -05:00
  • 885af7d39f
         kexec-select-boot+kexec-save-default: Quiet mode; remove last rollback counters printed to console Thierry Laurion 2024-12-16 17:47:25 -05:00
  • 91299fd89b
         seal-totp: contextualize qr code output for manual input of those without qr scanner app in mobile phone Thierry Laurion 2024-12-16 16:47:06 -05:00
  • ef4cdfa77e
         init: some more comments in code per review Thierry Laurion 2024-12-16 16:39:12 -05:00
  • 60ba06dab2
         DEBUG: inform that output will be both in dmesg and on console from where that measure is enforced in code Thierry Laurion 2024-12-16 16:27:49 -05:00
  • b5c24f2447
         init+cbfs-init: refactor and explain why quiet mode cannot suppress measurements of cbfs-init extracted+measured TPM stuff if not in board config Thierry Laurion 2024-12-16 13:28:34 -05:00
  • 08f52af033
         Deprecate ash in favor of bash shell; /etc/ash_functions: move /etc/ash_functions under /etc/functions, replace TRACE calls by TRACE_FUNC, remove xx30-flash.init Thierry Laurion 2024-12-16 11:46:37 -05:00
  • 4354cd4c22
         config-gui.sh: Add quiet mode toggle, which turns off debug+tracing if enabled, and where enabling debug+tracing disables Quiet mode Thierry Laurion 2024-12-15 20:41:08 -05:00
  • a54a4b8afa
         hot-verification: bump to 1.7+ unrelease patchset https://github.com/Nitrokey/nitrokey-hotp-verification/pull/51 Thierry Laurion 2024-12-13 17:20:52 -05:00
  • 53156c3917
         WiP: staging changes, refusing to fight against tools helping me, formatting changed. sign after tpm-reset now to work around primary handle issue. Thierry Laurion 2024-12-13 16:56:05 -05:00
  • 0d3964274e
         WiP: staging changes, warn loud and clear of weak security posture by using weak OEM defaults provisioned secrets Thierry Laurion 2024-12-13 15:50:05 -05:00
  • d768e80de6
         WiP: staging changes, no more tpm output. Next warn /boot changed because htop counter and primary handle until removed outside of this PR Thierry Laurion 2024-12-13 14:50:24 -05:00
  • c7ab861325
         Turn some info on default boot into LOGged info, LOG might go out forever if not pertinent to most? Thierry Laurion 2024-12-12 18:44:51 -05:00
  • eca4e34176
         WiP: staging changes Thierry Laurion 2024-12-12 17:03:47 -05:00
  • f68df1ccf0
         Bump hotp-verification to version 1.7, remove patches: contains info fixes and reset fixes so that oem-factory-reset can reset secrets app PIN Thierry Laurion 2024-12-12 16:34:21 -05:00
  • 94b77e8704
         WiP: staging changes Thierry Laurion 2024-12-10 17:12:47 -05:00
  • 19fd98df2d
         WiP: staging changes (TPM1 regression fixes for LOG/DEBUG on quiet mode) Thierry Laurion 2024-12-10 14:50:52 -05:00
  • abc97fe1be
         WiP: staging changes including https://github.com/linuxboot/heads/pull/1850 https://github.com/Nitrokey/nitrokey-hotp-verification/pull/43 and https://github.com/Nitrokey/nitrokey-hotp-verification/pull/46 Thierry Laurion 2024-12-09 12:48:16 -05:00
  • 4ba7cc5495
         patches/hotp-verification-*/46.patch : readd https://github.com/Nitrokey/nitrokey-hotp-verification/pull/46 so that this PR can be tested and reviewed from OEM Factory Reset/User Re-Ownership perspective (PR 43 not in which fixes hotp_verification info, needed to reuse default PINs under seal-hotp if pubkey age <1 month and if Secret app PIN/GPG Admin PIN count >=3 ) Thierry Laurion 2024-12-07 11:12:38 -05:00
  • 54baa37d4a
         oem-factory-reset: Stop adding leading blank lines in 'passphrases' msg Jonathon Hall 2024-12-06 16:26:41 -05:00
  • be49517a0d
         functions: Simplify dictionary word selection Jonathon Hall 2024-12-06 16:24:20 -05:00
  • 98e20544ef
         functions: Fix spelling of 'dictionaries' Jonathon Hall 2024-12-06 16:22:52 -05:00
  • 27ab17377d
         hotp-verification: removed patches/hotp-verification-e9050e0c914e7a8ffef5d1c82a014e0e2bf79346 directory: waiting for https://github.com/Nitrokey/nitrokey-hotp-verification/pull/43 and https://github.com/Nitrokey/nitrokey-hotp-verification/pull/46 to be merged to change modules/hotp-verification commit Thierry Laurion 2024-12-06 11:36:50 -05:00
  • ebf4d1d221
         oem-factory-reset+seal-hotp nk3 hotp-verification info adaptations Thierry Laurion 2024-12-06 09:48:28 -05:00
  • 4fd710696e
         hotp-verification patches: Use https://github.com/Nitrokey/nitrokey-hotp-verification/pull/43 instead of https://github.com/Nitrokey/nitrokey-hotp-verification/pull/46 for hotp-verification info parsing and validation of oem-factory-reset and seal-hotp Thierry Laurion 2024-12-06 10:50:59 -05:00