mirror of
https://github.com/linuxboot/heads.git
synced 2024-12-23 14:52:27 +00:00
fe34aba719
The HOTP counter isn't a secret but is just used to prevent replay attacks (the time-based counter in TOTP isn't a secret either) so it doesn't need to be protected in the TPM and storing it as a TPM monotonic counter was causing conflicts with the Heads configuration counter as TPM 1.2 can only increment one counter per reboot. This change moves the HOTP counter into the file in /boot that was previously keeping track of the TPM counter id. |
||
---|---|---|
.. | ||
bin | ||
etc | ||
sbin | ||
.ash_history | ||
init | ||
mount-boot |