third-party-mirrors/tzpfms
1
0
Fork 0
mirror of https://git.sr.ht/~nabijaczleweli/tzpfms synced 2025-04-11 09:30:02 +03:00
Code Issues Actions Packages Projects Releases Wiki Activity
176 Commits 2 Branches 9 Tags
Commit Graph

176 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
наб
b8b856870c
Commit to signing tarballs 2023-11-25 22:07:26 +01:00
наб
1f0d78963e
Handle SOURCE_DATE_EPOCH (https://reproducible-builds.org/docs/source-date-epoch/) 2023-11-25 21:35:35 +01:00
наб
31dbb443af
Do build translations on CI 2023-11-25 18:36:26 +01:00
наб
6b3cc6971d
Don't free() allocated statics 2023-11-25 18:11:01 +01:00
наб
286180b138
https://git.sr.ht/~nabijaczleweli/groff-1.23-unfucking 2023-11-25 17:45:29 +01:00
наб
c651450b5d
Axe unused fd.cpp:read_exact() 2023-11-25 17:44:40 +01:00
наб
1ae0e258a7
Correctly echo intr instead of hard ^C 2023-11-25 17:44:39 +01:00
наб
47cd20aa32
Translate to Polish 2023-11-25 17:40:59 +01:00
наб
e78ba80bc9
-MD. bookworm manpages.d.o link 2023-11-25 15:34:38 +01:00
наб
8e02233ad5
Simplify Makefile, make it correcter and more canonical 2023-11-25 15:13:16 +01:00
наб
c727114dce
REUSEify licence layout. SPDXify final two in-line licence headers 2023-11-25 14:52:57 +01:00
наб
aa1c21fc27
Twitter link pivot 2023-07-16 19:02:10 +02:00
наб
1345229369
New OAuth release token v0.3.3 2023-06-12 19:48:14 +02:00
наб
d51d8a3c86
bookworm tcsd wants /etc/tcsd.conf root:tss 2023-06-12 19:30:50 +02:00
наб
39c3201f63
Fix individual links to zfs-tpm{2,1x}-change-key in README 
Reported-in: https://old.reddit.com/r/zfs/comments/ppo9rl/zfs_encryption_and_tpm/j42mvyx/?context=3
 2023-01-12 20:35:06 +01:00
наб
6a8d97e43a
licen{s => c}e for noun, natch 2022-12-12 21:06:31 +01:00
наб
f403ffebad
Size mdoc(7) lists correctly v0.3.2 2022-12-04 02:51:05 +01:00
наб
d2dcf95b0f
Just use pipe to read passphrase from helper instead of memfd weirdness 2022-12-04 02:26:10 +01:00
наб
720a0103a7
Fix ^Ding out of the new passphrase prompt 2022-12-04 01:37:56 +01:00
наб
b5ff262534
Sell-out moment 2022-12-04 00:58:08 +01:00
наб
0f2642ba92
Provide blank Esys_Create{Primary,}() metadata 
This was yielding
  Couldn't create primary encryption key: tpm:parameter(3):structure is the wrong size
errors on ASRock X670E Pro RS + AMD Ryzen 5 7600X: just kill it;
it's unclear if it's remotely useful besides adding some needless salt

Reported and validated by Lars Strojny:
  https://twitter.com/lstrojny/status/1599182208752766976
 2022-12-04 00:57:36 +01:00
наб
d950de0ae4
Actually copy in the CreatePrimary parameters to the right slots 
This mimicks tpm2-tools; I don't think it matters any, since I'm pretty
sure these are just unused for our application, but
 2022-12-04 00:32:44 +01:00
наб
b811862e0a
swtpm is in Debian now :) 2022-12-03 22:15:22 +01:00
наб
02195933bc
Use SHA256 as the default name algorithm for the TPM2 primary key 
This mirrors an analogous change in tpm2-tools
  5900ed818f
and brings us back in line with the internally-documented equivalent
line-up; quoth the above:
> Using SHA1 as the default was a poor choice,
> as the whole point of TPM2.0 was SHA256+ algorithm support.

And the change to the code we butchered from tpm2-tss:
  3c1e7173b3
> Due to the fact that sha1 is outdated and the integration tests are
> often used as an example for developers, the integration tests that
> still use sha1 have been converted to sha256.
 2022-12-03 21:32:50 +01:00
наб
023ffc98ae
0..23 -> [0, 23] 2022-12-03 21:19:40 +01:00
наб
af6835d586
Recommend new Debian repo signing 2022-11-04 00:01:00 +01:00
наб
005ee41545
sort | uniq -> LC_ALL=C sort -u v0.3.1 2022-10-29 22:52:43 +02:00
наб
29c58cfe9b
awk -> cut 2022-10-29 22:50:57 +02:00
наб
62e896642b
Silence SHA256_*() OpenSSL API deprecation warnings for now 2022-09-30 21:07:12 +02:00
наб
aef018ba1e
Fix builds with less header-leaky libstdc++es 2022-09-30 20:08:27 +02:00
наб
d26a07511f
Correct tilda in manuals 2022-09-30 20:00:07 +02:00
наб
fa91ff6c67
-P-pa4 2022-06-17 23:16:11 +02:00
наб
3651105e0f
Accept TZPFMS_{VERSION,DATE} from environment in Makefile v0.3.0 2021-12-20 20:23:14 +01:00
наб
b45a331747
Add out/systemd to release bundle. Spin auth token 2021-12-20 20:21:46 +01:00
наб
af6928d525
Add zfs-mount-generator integration 
Funny moment: https://twitter.com/nabijaczleweli/status/1472986504272261124
 2021-12-20 19:28:13 +01:00
наб
ce3560b797
Fix -[yu] typo in z-t-list.8 OPTIONS 2021-12-20 17:34:39 +01:00
наб
00703a1517
Upcast time_t to i64 v0.2.0 2021-11-29 16:20:40 +01:00
наб
32da9f7c81
Fix TZPFMS_VERSION injexion into manuals 2021-11-28 20:02:22 +01:00
наб
1937610e54
struct timespec::tv_nsec is the syscall long, not actual long! 2021-11-28 18:17:00 +01:00
наб
5d7ebf3d19
Fix -flto[=full] -Wl,--as-needed not working on sid anymore(?) 2021-11-28 18:06:37 +01:00
наб
503ac72235
Proof zfs-tpm1x-change-key.8 2021-11-28 17:13:15 +01:00
наб
e0b0de31b9
Don't force POSIXLY_CORRECT. Reject extraneous argument 2021-11-28 01:40:23 +01:00
наб
49f0a05c33
Add PCR binding. password => passphrase in manuals 
All logically distinct modes are now:
  TPM1.X: passphraseless, PCRs, passphrase, passphrase & PCRs
  TPM2:   passphraseless, PCRs, passphrase, passphrase | PCRs

TPM2 sees a backward-incompatible ";pcr list" addition to its handle

Cf. https://twitter.com/nabijaczleweli/status/1463707170793562117
 2021-11-28 01:33:58 +01:00
наб
de9b591546
Include tpm2_dictionarylockout like tpm_resetdalock 2021-11-27 22:46:40 +01:00
наб
c9cd46ab95
Build with -g by default. Don't strip 2021-11-25 22:49:47 +01:00
наб
303ea58c2f
Import parse_uint() from voreutils. Summarise all .sos. Fix systemd integration in README to match. Flatten hV adding 2021-11-25 16:33:26 +01:00
наб
09748712fb
Note libzfs 2.1 works 2021-11-24 18:55:55 +01:00
наб
2757a01c92
Remove SEE ALSOs that were just the git.sr.ht link 2021-11-24 13:37:04 +01:00
наб
a4cc3cd7e0
Use actual dataset names instead of owo/uwu/awa/&c. in zfs-tpm-list.8 2021-11-24 13:35:09 +01:00
наб
98bd432a50
Final-proof passphrase.h 2021-11-24 13:23:22 +01:00