Some additional pins for clevis
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
Trinity Pointard b2b1494dff fix missing quotes 1 month ago
.gitignore add pkgbuild and mkinitcpio hook 2 months ago
LICENSE add licence 3 months ago
PKGBUILD fix missing quotes 1 month ago
README.md add licence 3 months ago
clevis-decrypt-chain fix missing quotes 1 month ago
clevis-decrypt-tpm2counter can't use xxd in initramfs 1 month ago
clevis-encrypt-chain add workaround for luks bind bad behavior 1 month ago
clevis-encrypt-tpm2counter can't use xxd in initramfs 1 month ago
hook_clevis add required files for curl to work properly in initramfs 2 months ago
install_clevis add required files for curl to work properly in initramfs 2 months ago

README.md

clevis-more

This project add some more pins for clevis

clevis-*-chain

Chain multiple pins. Contrary to sss, it hide what pin(s) are inside next layer

clevis-*-tpm2clock

Use tpm2 clock and counters as a pin. Allow for instance to authorize a policy for a single reboot This can be useful in case of an upgrade that would change pcr values, to have a single boot allowed with this policy until the pcr based policy is fixed

Code is heavilly borrowed from clevis pins, and is released under the same license