summaryrefslogtreecommitdiffstats
path: root/src/cryptenroll/cryptenroll-tpm2.c (follow)
Commit message (Expand)AuthorAgeFilesLines
* cryptenroll: Remove faulty assert()Daan De Meyer2024-10-211-2/+0
* cryptenroll: don't try to get PCR bank if we know the device keyLennart Poettering2024-09-111-1/+2
* cryptenroll/cryptsetup: allow combined signed TPM2 PCR policy + pcrlock policyLennart Poettering2024-09-061-33/+122
* crypenroll: make slot wiping on pin change a bit more explicitLennart Poettering2024-08-301-1/+1
* cryptenroll: don't return slot 0 when we have no policy to search forLennart Poettering2024-08-301-1/+1
* cryptenroll: iovec'ify a few more thingsLennart Poettering2024-08-301-12/+9
* treewide: use sd_json_variant_un{hex|base64}() pervasivelyLennart Poettering2024-08-301-4/+3
* libsystemd: turn json.[ch] into a public APILennart Poettering2024-06-121-7/+8
* cryptenroll: upgrade log level of critical failureYu Watanabe2024-05-251-1/+1
* cryptenroll: do not pass an empty pcrlock policyYu Watanabe2024-05-251-0/+2
* cryptenroll: explicitly pick PCR bank if literal PCR binding is off, but sign...Lennart Poettering2024-05-231-0/+13
* cryptenroll: do not combine pcrlock and signed PCR policies in TPM modeLennart Poettering2024-05-061-6/+10
* cryptenroll: disable loading public key if --tpm2-public-key= is emptySam Leonard2024-05-021-17/+20
* tpm2-util: add generic wrapper tpm2_context_new_or_warn() that wrpas tpm2_con...Lennart Poettering2024-04-221-2/+2
* cryptsetup: drop "headless" bool, make it a flag in AskPasswordFlags insteadLennart Poettering2024-02-201-1/+0
* cryptenroll,cryptsetup: clean up unlock credential for TPM2 + FIDO2Lennart Poettering2024-02-201-1/+2
* cryptenroll: use a different credential for new new PINLennart Poettering2024-02-201-1/+1
* cryptenroll: fix type confusion on acquire_tpm2_key() parameterLennart Poettering2024-02-201-1/+1
* ask-password: rework how we pass request meta info when asking passwordsLennart Poettering2024-02-201-13/+14
* cryptenroll: Support rotating PIN on an existing TPM2 enrollmentGabríel Arthúr Pétursson2024-02-011-3/+11
* cryptenroll: Add support for unlocking through TPM2 enrollmentsGabríel Arthúr Pétursson2024-02-011-0/+111
* pcrlock: when unlocking try to pick up pcrlock policy from system credentialsLennart Poettering2024-01-221-0/+1
* hexdecoct: make unbase64mem and unhexmem always use SIZE_MAXMike Yuan2024-01-081-1/+1
* tpm2-util: more iovec'ificationLennart Poettering2024-01-051-30/+26
* tree-wide: drop space between variable and an increment/decrementYu Watanabe2023-12-241-1/+1
* cryptenroll: slightly reorder thingsLennart Poettering2023-11-091-13/+13
* tpm2-util: move loading of TPM2B_PUBLIC from disk into tpm2-util.cLennart Poettering2023-11-091-25/+2
* cryptenroll: add support for calculated TPM2 enrollmentDan Streetman2023-11-071-18/+67
* tree-wide: hook everything up with pcrlock policyLennart Poettering2023-11-031-3/+13
* pcrlock: add new pcrlock toolLennart Poettering2023-11-031-0/+2
* cryptenroll: use erase_and_free() at two more placesLennart Poettering2023-11-011-2/+2
* cryptenroll: fix bind default TPM2 signed policy to PCR 11Antonio Alvarez Feijoo2023-10-261-1/+1
* cryptenroll: allow specifying handle index of key to use for sealingDan Streetman2023-10-101-0/+2
* tpm2: change tpm2_unseal() to accept Tpm2Context instead of device stringDan Streetman2023-10-031-1/+1
* tpm2: downgrade most log functions from error to debugDan Streetman2023-10-031-4/+4
* tpm2: add tpm2_pcr_values_has_(any|all)_values() functionsDan Streetman2023-08-241-6/+1
* tpm2: lowercase TPM2_PCR_VALUE[S]_VALID functionsDan Streetman2023-08-241-1/+1
* tpm2: move policy calculation out of tpm2_seal()Dan Streetman2023-08-041-20/+66
* tpm2: fix nits from PR #26185William Roberts2023-04-041-1/+1
* tpm2: add support for a trusted SRKWilliam Roberts2023-04-031-2/+7
* tree-wide: fix typo and comment style updateYu Watanabe2023-02-151-1/+1
* cryptenroll: drop deadcodeYu Watanabe2023-02-101-6/+2
* cryptenroll: do not implicitly verify with default tpm policy signatureLuca Boccassi2023-02-081-2/+3
* tpm2: add salt to pinWilliam Roberts2023-01-181-0/+28
* tree-wide: fix return value handling of base64mem()Lennart Poettering2023-01-111-4/+5
* cryptenroll: hook up new TPM2 signed policies with cryptenrollLennart Poettering2022-09-081-24/+63
* tpm2-util: extend TPM2 policies to optionally check PCR values against signed...Lennart Poettering2022-09-081-5/+24
* tpm2-util: add TPM2_PCR_MASK_VALID() helperLennart Poettering2022-08-191-1/+1
* cryptenroll: add support for TPM2 pinGrigori Goronzy2022-03-151-4/+81
* tpm2: support policies with PINGrigori Goronzy2022-03-151-2/+2