ExternalVendorCode/heads
1
0
Fork 0
mirror of https://github.com/linuxboot/heads.git synced 2024-12-18 20:47:55 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
0a35ef912f
heads/initrd
History
Jonathon Hall 0a35ef912f
Use 160 bits of ROM hash for TPM-less HOTP secret (up from 80) 
HOTP/TOTP secrets don't have to be printable.  Use binary data to
include 160 bits of entropy instead of just 80.

The secret is still limited to 20 bytes.  Most keys now support up to
40 bytes, but tpmtotp is still limited to 20 bytes.

Move the truncation to 20 bytes a bit later, for future improvements to
detect the key's actual limit.

Signed-off-by: Jonathon Hall <jonathon.hall@puri.sm>
2023-07-05 10:18:06 -04:00
..
.gnupg instruct gpg to use gpg-agent. 2019-01-29 11:16:13 -05:00
bin Use 160 bits of ROM hash for TPM-less HOTP secret (up from 80) 2023-07-05 10:18:06 -04:00
etc Use 160 bits of ROM hash for TPM-less HOTP secret (up from 80) 2023-07-05 10:18:06 -04:00
run/cryptsetup [WIP] cross build json-c and cryptsetup 2020-10-28 15:28:05 +02:00
sbin Add dual support for real bash and busybox's bash(ash) 2023-03-08 12:45:44 -05:00
.ash_history GPG2 required changes for key and trustdb generation and inclusion in rom 2019-01-29 11:18:11 -05:00
init Rename CONFIG_PUREBOOT_BASIC to CONFIG_BASIC 2023-06-21 14:42:46 -04:00
mount-boot Add dual support for real bash and busybox's bash(ash) 2023-03-08 12:45:44 -05:00