·
190 commits
to master
since this release
09da63b
This commit was signed with the committer’s verified signature.
The key has expired.
osresearch
Trammell Hudson
Lots of improved features:
- Added signed PCRs (#58)
- Predict PCR4 and PCR2 based on
sbsign --hash-only - Added TPM counters for rollback protection (#62)
- TPM unsealing PINs (#5 )
- safeboot.conf is now included in the initrd, fewer params on command line (#13 )
- Recovery boot can now sign and hash root filesystem (#65)
- Helpers for recovery boot to unlock cryptdisk, mount filesystems, etc (#56)
- No more perl in /sbin/safeboot (#56)