mirrors/meta-secure-core
1
0
Fork 0
mirror of https://github.com/jiazhang0/meta-secure-core.git synced 2026-01-12 01:00:15 +00:00
Code Issues Projects Releases Wiki Activity

Commit Graph

  • 8adff592ef create-user-key-store.sh: allow user to specify openssl x509 'days' param Corey Cothrum 2020-12-08 08:29:48 -06:00
  • d6ca3fa224 rpm: apply signatures to config files Yi Zhao 2020-12-04 16:41:35 +08:00
  • 628949305c meta-encrypted-storage: set CONFIG_HW_RANDOM_TPM to "y" Yongxin Liu 2020-11-11 13:26:03 +08:00
  • 2747958070 grub-efi: refresh patch Yi Zhao 2020-11-10 10:11:48 +08:00
  • a32ddd2b2a check_gpg_key: Fix gpg-agent.conf creation race condition Ovidiu Panait 2020-09-25 13:13:19 +03:00
  • 696ee1495c grub-efi-efi-secure-boot.inc: Adapt to potential psuedo changes Hongxu Jia 2020-10-14 01:17:37 -07:00
  • 0233437224 ima: Fix badly formatted CONFIG_IMA_NG_TEMPLATE Yongxin Liu 2020-09-27 13:41:50 +08:00
  • 4d59dc3037 trousers: fix build failure for gcc-10 Chen Qi 2020-09-01 18:45:20 -07:00
  • 6c64d71334 tpm2-abrmd: Remove obsolete setting regarding the Standard Output Mingli Yu 2020-09-23 02:57:56 +00:00
  • 070f7359b5 create-user-key-store.sh: replace weak des3 encryption with aes256 David Dunlap 2020-07-16 13:47:42 +00:00
  • 7ee985e53f trousers: update to latest git rev Yi Zhao 2020-08-31 11:26:05 +08:00
  • 960cffb107 tpm2-tools: upgrade 4.1.1 -> 4.1.3 Yi Zhao 2020-07-22 16:27:06 +08:00
  • 6830825188 tpm2-tss: upgrade 2.3.2 -> 2.3.3 Yi Zhao 2020-07-22 16:24:28 +08:00
  • d560bafc49 tpm2-abrmd: upgrade 2.3.0 -> 2.3.2 Yi Zhao 2020-07-22 16:23:33 +08:00
  • 0b1d3ee1d1 libsign: update to latest git revision Yi Zhao 2020-07-19 13:39:51 +08:00
  • ddbcb4722a cyrptfs-tpm2: set correct soname for libcryptfs-tpm2 Yi Zhao 2020-07-17 13:29:51 +08:00
  • 3801a7e716 tpm2-abrmd: rdepends on libtss2-tcti-device and libtss2-tcti-mssim Yi Zhao 2020-07-15 11:20:28 +08:00
  • c61b8157fb tpm2-tss: support usrmerge Changqing Li 2020-07-02 13:43:45 +08:00
  • 3590e302df update tpm2-tools_3.2.1 -> tpm2-tools_4.1.1.bb, tpm2-abrmd_2.0.3 -> tpm2-abrmd_2.3.0, tpm2-tss_2.2.3.bb -> tpm2-tss_2.3.2.bb richard 2020-06-16 12:59:13 +02:00
  • c39b30e99f key-store: fix rdepends with multilib Kai Kang 2020-06-12 11:05:20 +08:00
  • ac1ec689f2 conf/layer.conf: Add dunfell to LAYERSERIES_COMPAT Christophe Priouzeau 2020-05-26 16:41:19 +02:00
  • fc8969af8a user-key-store.bbclass: Kill gpg agent daemon after gpg sign De Huo 2020-04-27 11:21:05 +08:00
  • 33d90d92b0 create-user-key-store.sh: Fix defect about invalid option "--pinentry-mode=loopback" De Huo 2020-04-15 18:06:39 +08:00
  • 8834753407 Revert "Removed unneeded patch to fix compilation error in efi-tool's console.c" Hongxu Jia 2020-04-13 18:52:11 -07:00
  • 82c404fe33 ovmf_%.bbappend: tweak do_sign task order to avoid racing issue Hongxu Jia 2020-04-10 15:33:06 +08:00
  • a6c3d9fcd2 Removed unneeded patch to fix compilation error in efi-tool's console.c Abdelrahman Ibrahem 2020-01-23 17:39:22 +01:00
  • e8e80fb7c4 cryptfs-tpm2: convert the script to python3 Yi Zhao 2020-03-13 20:31:44 +08:00
  • f2d06cda8d meta-tpm2: add dependency on meta-python2 Yi Zhao 2020-02-11 14:42:58 +08:00
  • 6faa083706 tpm2-tools: only support python3 in test scripts Yi Zhao 2020-03-13 11:51:06 +08:00
  • b0d0273ae2 tpm2-tools: fix yaml.load warning in test scripts Yi Zhao 2020-03-13 11:48:42 +08:00
  • 7db0fc79df tpm2simulator-native: update to latest git revision Yi Zhao 2020-03-10 10:09:35 +08:00
  • 1989109180 tpm2-tools: upgrade 3.2.0 -> 3.2.1 Yi Zhao 2020-03-09 10:04:25 +08:00
  • 8f9f83a40a fixup! sign_rpm_ext: Use socket redirection to avoid GPG_PATH length limitation Ovidiu Panait 2020-03-02 20:44:50 +02:00
  • d496407fc1 modified grub-efi-efi-secure-boot.inc to install also the grub configuration files in the DEPLOYDIR richard 2020-02-04 09:01:22 +00:00
  • b003c7fcea Add additional *_KEYS_DIR to keys.conf Drew Moseley 2020-01-28 14:10:03 -05:00
  • b1dee36ce6 sign_rpm_ext: Use socket redirection to avoid GPG_PATH length limitation Ovidiu Panait 2020-02-29 20:49:49 +02:00
  • 8853e39b1e initramfs: adjust task order to aviod initrd symlink unavailable Liwei Song 2020-02-27 05:20:07 +00:00
  • c901ee5ff8 tpm-tools: inherit perlnative.bbclass Kai Kang 2020-02-12 16:34:45 +08:00
  • 8302e3c479 ima-inspect: upgrade 0.11 -> 0.13 Yi Zhao 2020-01-19 11:02:51 +08:00
  • 84ee95f92a linux-yocto: remove unused FILESEXTRAPATHS_prepend Sandra Tobajas 2020-01-15 14:41:36 -05:00
  • 561800fe3f grub-efi-efi-secure-boot.inc: append do_deploy instead overriding it Sandra Tobajas 2020-01-14 13:29:08 -05:00
  • b2eb24569b user-key-store.bbclass: let MOK_SB be overrided Sandra Tobajas 2020-01-14 13:18:22 -05:00
  • 44a12b93b1 grub-efi-efi-secure-boot.inc: let EFI_BOOT_PATH be overrided Sandra Tobajas 2020-01-14 13:11:02 -05:00
  • 8a518a2054 mokutil: fix typo Changqing Li 2019-12-30 18:04:30 +08:00
  • c0e7d60718 grub-efi-efi-secure-boot.inc: use task_prepend instead of prefuncs for do_sign Yi Zhao 2019-12-13 17:09:13 +08:00
  • f59b77b257 user-key-store.bbclass: Depend on gnupg-native to always use provided gpg Jason Wessel 2019-12-12 11:33:46 -08:00
  • e4e766aa40 rpm-integrity: Use _append for PACKAGECONFIG Ovidiu Panait 2019-12-12 14:25:45 +02:00
  • 4602842eed sign_rpm_ext.bbclass: check the length of GPG_PATH Liwei Song 2019-11-26 16:21:47 +08:00
  • a100ee126a sign_rpm_ext.bbclass: remove prefuncs for do_package_write_rpm and do_rootfs Changqing Li 2019-11-29 13:59:15 +08:00
  • 08c3f81a5f efitools: do not do_sign if GRUB_SIGN_VERIFY not enabled Hongxu Jia 2019-11-19 00:47:48 -08:00
  • 73602a5eea efitools-native: Fix compilation problem with latest /usr/include/efi Hongxu Jia 2019-11-18 23:56:52 -08:00
  • b2bb64d9e6 sbsigntool-native: specify TMPDIR Joe Slater 2018-05-25 13:37:24 -07:00
  • 9e63c16057 cryptsetup_%.bbappend: Fix for native Robert Yang 2019-09-25 16:05:25 +08:00
  • 691252f79f kernel-initramfs-efi-secure-boot.inc: Copy .sig files and .p7b Jason Wessel 2019-11-13 10:15:10 -08:00
  • ca003d11bb lvm2: Fix hanging dmcrypt volumes on boot Jason Wessel 2019-10-29 12:44:46 -07:00
  • d63b6d273b layer.conf gpg boot key sample: Add the gpg boot key sample files Jason Wessel 2019-10-25 13:42:13 -07:00
  • 31d2105b7a secure boot: Make SELoader optional and copy sig files when GRUB_SIGN_VERIFY=1 Jason Wessel 2019-10-24 14:14:55 -07:00
  • 59a1f79ad8 packagegroup-luks.inc: Addlvm2-udevrules Jason Wessel 2019-10-24 14:12:33 -07:00
  • c0b514f1ac create-user-key-store.sh: Update for OSTree and ease of use Jason Wessel 2019-08-13 14:50:45 -07:00
  • 01f67e4c7e grub: Make SELoader optional and add gpg verify support Jason Wessel 2019-10-24 14:00:42 -07:00
  • e19748f11e cryptfs-tpm2: Add support for QEMU swtpm tpm2 Jason Wessel 2019-10-24 12:22:32 -07:00
  • 4a7afb4477 sign_rpm_ext.bbclass, user-key-store.bbclass: Add boot loader signing Jason Wessel 2019-10-23 07:29:44 -07:00
  • 363c7a606a secure-core-image: Remove packagegroup-core-lsb Jason Wessel 2019-11-04 11:05:17 -08:00
  • 382ffa19cf efitools: Fix compilation problem with latest /usr/include/efi Jason Wessel 2019-11-04 13:18:05 -08:00
  • fab7b8d93d shim: Fix compilation problem with latest /usr/include/efi Jason Wessel 2019-11-04 13:17:00 -08:00
  • 1473c05286 efitools: Uprev to fix LockDown.efi for UEFI built after 2018 Jason Wessel 2019-10-02 04:00:05 -07:00
  • 393b80fa35 sign_rpm_ext.bbclass: fix check_rpm_public_key failed while host not install gpg (#124) Sandy 2019-11-07 17:31:03 +08:00
  • 99760f4771 sign_rpm_ext.bbclass: fix compile fail since missing gpg (#123) Sandy 2019-11-06 15:35:51 +08:00
  • 5698bb8529 grub-efi/boot-menu.inc: remove invalid menuentry (#122) Zhao Yi 2019-11-01 18:21:09 +08:00
  • e3678e964c conf/layer.conf: Add zeus to LAYERSERIES_COMPAT (#121) muvarov 2019-11-01 03:39:17 +03:00
  • 701cbaf3c3 lib-evm-utils: using the correct algo for v2 signature (#120) Yunguo Wei 2019-10-10 18:10:52 +08:00
  • 69117bef3a linux-yocto-integrity.inc: fix 'uks_modsign_keys_dir' is not defined (#119) Hongxu Jia 2019-10-07 11:51:32 +08:00
  • 2d8b45a3d8 Merge pull request #118 from lumag/drop-privkeys Jia Zhang 2019-10-01 09:29:24 +08:00
  • f2db9e0de6 meta-integrity: fix documentation Dmitry Eremin-Solenikov 2019-09-30 17:10:15 +03:00
  • b41010c80c linux-yocto-integrity: fix modsign key path Dmitry Eremin-Solenikov 2019-09-16 16:00:09 +03:00
  • 24d27e9f97 packagegroup-ima: RRECOMMEND certificates rather than private keys Dmitry Eremin-Solenikov 2019-09-16 14:07:11 +03:00
  • 51b2da4a41 key-store: drop private keys packages Dmitry Eremin-Solenikov 2019-09-16 14:06:06 +03:00
  • 809a4774a0 Merge pull request #117 from 2005songliwei/master Jia Zhang 2019-09-12 17:56:30 +08:00
  • 56dbf2a67a secure-core:allow other layer overwrite INITRAMFS_IMAGE Jiang Lu 2019-03-17 12:01:42 +08:00
  • 0cea6e869f Merge pull request #116 from lumag/master Jia Zhang 2019-09-04 22:20:29 +08:00
  • 883be5aff5 seloader: use pkcs7 drivers from OVMF Dmitry Eremin-Solenikov 2019-09-04 16:39:59 +03:00
  • b0dfb596da ovmf: package PKCS7 verification drivers Dmitry Eremin-Solenikov 2019-09-04 16:32:05 +03:00
  • df51a87b5a Merge pull request #115 from lumag/master Jia Zhang 2019-09-04 20:01:13 +08:00
  • 6d1bd0da1f ima-inspect: add patch to fix compilation with newer ima-evm-utils Dmitry Eremin-Solenikov 2019-09-04 11:43:48 +03:00
  • d139491c9a ima-evm-utils: update to release 1.2.1 Dmitry Eremin-Solenikov 2019-09-04 10:25:09 +03:00
  • 26ced755f5 grub-efi: support mok2 verify in multiboot2 protocol Dmitry Eremin-Solenikov 2019-09-04 10:23:51 +03:00
  • 99ec1bedbb meta-tpm2: tpm2-tools: update to version 3.2.0 Dmitry Eremin-Solenikov 2019-09-04 10:23:21 +03:00
  • fe4f5b1122 meta-tpm2: tpm2-tss: update to version 2.2.3 Dmitry Eremin-Solenikov 2019-09-04 10:22:57 +03:00
  • 127542429b Merge pull request #113 from 2005songliwei/master Jia Zhang 2019-08-27 11:36:23 +08:00
  • c624ea2843 grub-efi: fix uid contamination by host QA warning Liwei Song 2019-08-21 04:27:13 -04:00
  • 51b5089a60 Merge pull request #112 from yizhao1/fix2 Jia Zhang 2019-08-19 17:20:59 +08:00
  • 729916e322 fixup! meta-secure-core: use bb.fatal instead of bb.build.FuncFailed Yi Zhao 2019-08-19 15:09:34 +08:00
  • 0ae8bf25f1 meta-signing-key/conf/layer.conf: use weak assignment for RPM_GPG_NAME and RPM_GPG_PASSPHRASE Yi Zhao 2019-08-19 15:41:58 +08:00
  • 1be79730bf meta-secure-core: use bb.fatal instead of bb.build.FuncFailed Yi Zhao 2019-08-19 11:39:08 +08:00
  • 8d1b7c2a29 meta-secure-core: add linux-yocto-dev bbappend Yi Zhao 2018-08-02 14:26:30 +08:00
  • b0a4ae0fe3 linux-yocto: upgrade bbappend from 4.% to 5.% Yi Zhao 2019-08-13 15:06:58 +08:00
  • ed0de6b295 meta-efi-secure-boot: only apply if efi-secure-boot distro flag set Mark Hatle 2017-09-04 21:23:42 -05:00
  • 70e22755a6 grub-efi: update bbappend and refresh patches Yi Zhao 2019-08-13 09:47:44 +08:00
  • 73bc9f68f9 keyutils: remove it Changqing Li 2019-08-02 11:10:09 +08:00
  • a32ad2f61d tpm2-abrmd: fix do_compile error Mingli Yu 2019-07-24 09:47:27 +08:00