dasharo/sbctl
0
0
Fork 0
mirror of https://github.com/Dasharo/sbctl.git synced 2026-03-06 15:04:14 -08:00
Code Issues Packages Projects Releases Wiki Activity

Commit Graph

  • a53a6ba59c Merge branch 'morten/fix-esp' master Morten Linderud 2024-08-16 22:17:27 +02:00
  • 32f8838905 Merge branch 'morten/fix-signing' Morten Linderud 2024-08-16 22:17:01 +02:00
  • a70e461849 sbctl: ensure output is correct before using saved entry Morten Linderud 2024-08-13 21:43:50 +02:00
  • 935d7f5011 keys: ensure we compare the input/output files Morten Linderud 2024-08-12 20:38:36 +02:00
  • 6eea63410c sbctl: always enroll files before we do signing operations Morten Linderud 2024-08-12 20:34:24 +02:00
  • 2669fe9855 Merge remote-tracking branch 'origin/pull/363' Morten Linderud 2024-08-16 22:15:03 +02:00
  • 076034f406 Update staticcheck Cornelius Hoffmann 2024-08-15 00:55:22 +02:00
  • 825edf20ef Allow exporting keys without efivars again Cornelius Hoffmann 2024-08-15 00:41:25 +02:00
  • 55ab027417 update staticcheck and fix gh upload Morten Linderud 2024-08-13 00:10:06 +02:00
  • 436750b6a4 fix esp detection with multiple mountpoints and failing udev info Morten Linderud 2024-08-11 15:45:24 +02:00
  • 237ac778b3 Merge remote-tracking branch 'origin/pull/350' Morten Linderud 2024-08-05 19:22:07 +02:00
  • bf194cbcc9 sbctl.8: fix typo in the man page Lena 2024-08-05 18:40:23 +02:00
  • 147d522bfe sbctl: fixup docs and some comments Morten Linderud 2024-08-05 15:26:08 +02:00
  • d5bbe94b4a Merge remote-tracking branch 'origin/pull/344' Morten Linderud 2024-08-05 14:50:29 +02:00
  • ff7daddd01 update go-uefi Morten Linderud 2024-08-05 14:50:13 +02:00
  • ff13e7c2cb sbctl: buble up error with sign-all Morten Linderud 2024-08-04 15:32:24 +02:00
  • 3aaf00178d Merge remote-tracking branch 'origin/pull/342' Morten Linderud 2024-08-02 22:01:31 +02:00
  • 625d396af1 Merge remote-tracking branch 'origin/pull/341' Morten Linderud 2024-08-02 22:01:28 +02:00
  • e200257969 bundles: disable landlock Morten Linderud 2024-08-02 22:00:23 +02:00
  • 0dcec78956 sign: ensure we are getting RW/RO access for the files Morten Linderud 2024-08-01 12:06:26 +02:00
  • 605f6fa0ef sbctl: Fix human readable output being printed when using --json Andrew Gunnerson 2024-08-01 11:07:08 -04:00
  • 34544d737d lsm: Implement TruncFile Morten Linderud 2024-08-01 12:52:41 +02:00
  • 884d848112 91-sbctl.install: Unconditionally remove file from database Andrew Gunnerson 2024-07-31 19:35:08 -04:00
  • 48a3109c7f sbctl: include db_additions inn config file Morten Linderud 2024-07-31 23:40:06 +02:00
  • de3aafc873 setup: gate setup and check for keydir Morten Linderud 2024-07-31 19:53:41 +02:00
  • b3ce9f79a4 lsm: move dmi to RODirs instead of RWDirs Morten Linderud 2024-07-31 16:50:42 +02:00
  • 086e24a609 lsm: ensure we can read dmi Morten Linderud 2024-07-31 16:49:22 +02:00
  • 61f918052d create-keys: ensure we have access to /var/lib Morten Linderud 2024-07-31 16:16:07 +02:00
  • 8c6cc100a2 setup: clean path and ensure we have RW on parent directory of the secureboot folder Morten Linderud 2024-07-31 15:58:50 +02:00
  • 33247c9fd1 setup: ensure we check the dir before setting landlock Morten Linderud 2024-07-31 15:10:03 +02:00
  • 80c451c8de setup: ensure we rename bundles db correctly and check that it exists Morten Linderud 2024-07-31 14:19:24 +02:00
  • bfdefcfddc setup: create the directory before we set landlock rules Morten Linderud 2024-07-31 13:36:35 +02:00
  • 12b3f72608 setup: ensure the new path is included in landlock Morten Linderud 2024-07-31 13:25:01 +02:00
  • 37c0ce9c1f debug: include version information in the tarball Morten Linderud 2024-07-31 12:39:17 +02:00
  • fff86bf4dd sbctl: implement a hidden version command Morten Linderud 2024-07-31 12:32:45 +02:00
  • f1e8535986 Deprecation notice for bundles Morten Linderud 2024-07-31 12:03:29 +02:00
  • 30c30b70ee Merge branch 'morten/tpm' Morten Linderud 2024-07-31 12:01:34 +02:00
  • bdf2c637d5 Implement support for TPM key files Morten Linderud 2024-07-30 23:31:39 +02:00
  • 73a077051b sbctl: ensure we are passing state to KeyHierarchy Morten Linderud 2024-07-30 23:37:13 +02:00
  • a2a859f08d setup: disable landlock in test Morten Linderud 2024-07-31 00:09:30 +02:00
  • 24b94b2602 setup: config is a null string. Lets no add it into landlock Morten Linderud 2024-07-30 23:40:24 +02:00
  • 89dd1a2376 database: ensure we landlock files with O_TRUNC permissions Morten Linderud 2024-07-30 23:30:43 +02:00
  • e8a1c11342 Merge branch 'morten/debug' Morten Linderud 2024-07-30 21:07:53 +02:00
  • e4905d48ed Implment sbctl debug command Morten Linderud 2024-07-30 13:10:54 +02:00
  • 5c869e6f84 Merge branch 'morten/landlock' Morten Linderud 2024-07-29 22:37:35 +02:00
  • fbc6156d19 keys: clarify error message Morten Linderud 2024-07-29 22:37:12 +02:00
  • dadbfcf0c4 README: fix the flag commands and update readme Morten Linderud 2024-07-29 22:36:58 +02:00
  • b969902d44 sbctl: setup debug logging Morten Linderud 2024-07-29 22:14:44 +02:00
  • a1d56bf6df rotate-keys: ensure we use the correct hierarchy Morten Linderud 2024-07-29 20:31:57 +02:00
  • c9d25391a9 sbctl: implement landlock sandboxing Morten Linderud 2024-07-28 20:40:43 +02:00
  • 1454913555 Merge branch 'morten/setup' Morten Linderud 2024-07-28 14:39:20 +02:00
  • 2403f4f724 Merge remote-tracking branch 'origin/pull/328' Morten Linderud 2024-07-28 14:21:05 +02:00
  • c666f43a1e ensure we always set output path to the file path Morten Linderud 2024-07-28 14:20:06 +02:00
  • d0b4c59cc1 sbctl: add check and unset immutable Morten Linderud 2024-07-28 14:19:44 +02:00
  • 8aafaf40f9 remove print Morten Linderud 2024-07-28 14:19:26 +02:00
  • 10204e8716 sbctl.8: add config file and mention the new paths Morten Linderud 2024-07-28 13:21:21 +02:00
  • 19f201f90c sbctl.8: mention the new --setup switch Morten Linderud 2024-07-28 13:21:10 +02:00
  • c7ffaf0c63 sbctl.8: fix some typesetting issues Morten Linderud 2024-07-28 13:19:49 +02:00
  • 58e3248d35 Implement sbctl setup Morten Linderud 2024-07-27 00:30:21 +02:00
  • d3de647457 enroll-key: separate runE from the invocation Morten Linderud 2024-07-27 00:30:01 +02:00
  • 79ba5c1317 create-keys: separate RunE from the function invocation Morten Linderud 2024-07-27 00:29:31 +02:00
  • 80d3b50d26 sbctl: read SetupMode from state.Efivarfs Morten Linderud 2024-07-27 00:28:29 +02:00
  • 917c1639fa backend: ensure keyhierarchy reads from afero.Fs Morten Linderud 2024-07-27 00:26:29 +02:00
  • ef2c0813cf contrib: support trailing commas in sbctl setup output Jörg Behrmann 2024-07-25 11:39:28 +02:00
  • 4f31817e14 Merge branch 'morten/config' Morten Linderud 2024-07-24 22:44:47 +02:00
  • f5ca0f86ce sbctl: implement sbctl setup Morten Linderud 2024-07-24 21:24:18 +02:00
  • c4d803a9d3 contrib: check if sbctl is installed before signing files Morten Linderud 2024-07-24 21:19:14 +02:00
  • ddfa5c4ab3 sbctl: add manpage for sbctl.conf Morten Linderud 2024-07-24 20:51:18 +02:00
  • c5f64e5309 sbctl: read and parse /etc/sbctl/sbctl.conf on startup Morten Linderud 2024-07-24 20:49:03 +02:00
  • e9a83307df sbctl: move to a type for the state lookup Morten Linderud 2024-07-22 21:31:29 +02:00
  • 0d6c24d89b fix: don't check immutable files in efivarfs Morten Linderud 2024-07-22 21:11:08 +02:00
  • 3057717fdd fix dependencies Morten Linderud 2024-07-22 20:47:40 +02:00
  • 71024417a3 Rework sbctl backend Morten Linderud 2024-07-18 22:57:49 +02:00
  • 5f3a5db252 Merge remote-tracking branch 'origin/pull/315' Morten Linderud 2024-07-24 20:52:51 +02:00
  • 352d4e0cee Merge remote-tracking branch 'origin/pull/313' Morten Linderud 2024-07-24 20:52:47 +02:00
  • 64e649b31c keys: Ignore ErrNoValidSignatures when attempting to sign Morten Linderud 2024-05-26 18:32:17 +02:00
  • cf09d00709 [mkinitcpio] do not add to database Bernhard Seibold 2024-05-20 22:34:47 +02:00
  • 1a6b822968 fix: close file guangwu 2024-05-20 15:33:49 +08:00
  • c779ee38cf Merge remote-tracking branch 'origin/pull/312' Morten Linderud 2024-05-19 00:28:24 +02:00
  • bc64a6b7f8 Merge remote-tracking branch 'origin/pull/310' Morten Linderud 2024-05-19 00:28:14 +02:00
  • 663fe9097c Move to new signing library from go-uefi Morten Linderud 2024-05-19 00:11:21 +02:00
  • 16cdfea0b2 [mkinitcpio] return 0 when no keys are found punoko 2024-05-12 14:18:33 +02:00
  • e6468fd509 [mkinitcpio] fix typo punoko 2024-05-12 13:58:57 +02:00
  • 1167500b9d nit(91-sbctl.install): consistent syntax for tests MithicSpirit 2024-05-10 17:51:59 -04:00
  • b7e1302c44 readme updates Morten Linderud 2024-05-08 22:48:06 +02:00
  • 78476facea docs: Add man page for new command Morten Linderud 2024-05-08 22:46:23 +02:00
  • 7d1c13a353 github/workflow: remove environment Morten Linderud 2024-05-07 20:02:15 +02:00
  • 71fa775743 Merge remote-tracking branch 'origin/pull/303' Morten Linderud 2024-05-07 20:01:51 +02:00
  • b120bf2a37 Merge remote-tracking branch 'origin/pull/305' Morten Linderud 2024-05-07 20:00:41 +02:00
  • a97104c539 Add export-enrolled-keys command Dimitris Karakasilis 2024-04-25 15:50:48 +03:00
  • 0667569a00 Update README.md Han Boetes 2024-04-28 06:25:12 +02:00
  • ea6fa4106d Merge remote-tracking branch 'origin/pull/302' Morten Linderud 2024-04-27 15:06:55 +02:00
  • e0cb9ea4da Merge remote-tracking branch 'origin/pull/300' Morten Linderud 2024-04-27 15:06:25 +02:00
  • de2bd3c75a Run integration tests in CI Dimitris Karakasilis 2024-04-25 11:11:31 +03:00
  • 84cc72897e Migrate tests to u-root based ones Dimitris Karakasilis 2024-04-25 11:11:16 +03:00
  • 127bf28e23 Add Option ROM warning to Usage section of the manpage cd CreepArghhh_ 2024-04-24 06:30:30 +00:00
  • 0ef7b8f04c Added man page for list-enrolled-keys Morten Linderud 2024-04-22 20:00:00 +02:00
  • 8a86eb6347 Merge remote-tracking branch 'origin/pull/296' Morten Linderud 2024-04-22 19:57:36 +02:00
  • 01fcf884f2 Merge remote-tracking branch 'origin/pull/294' Morten Linderud 2024-04-22 19:57:19 +02:00
  • cdedae416a Merge remote-tracking branch 'origin/pull/288' Morten Linderud 2024-04-22 19:57:12 +02:00