Minor change, to adjust mode of /tmp/passphrase and /tmp/password test files to
avoid repeated warning logs that each file "...has 0644 mode that is too
permissive, please adjust the ownership and access mode."
Add function to calculate the hash digest for a provided pin, and also verify
that the final byte in the digest is not 0. This is required because the TPM
will always remove all trailing 0's from an auth value before using it.
Fixes: #27716
Currently translated at 100.0% (227 of 227 strings)
po: Translated using Weblate (Georgian)
Currently translated at 97.3% (221 of 227 strings)
po: Translated using Weblate (Georgian)
Currently translated at 94.2% (214 of 227 strings)
po: Translated using Weblate (Georgian)
Currently translated at 90.3% (205 of 227 strings)
po: Translated using Weblate (Georgian)
Currently translated at 88.9% (202 of 227 strings)
Co-authored-by: Temuri Doghonadze <temuri.doghonadze@gmail.com>
Translate-URL: https://translate.fedoraproject.org/projects/systemd/master/ka/
Translation: systemd/main
Currently translated at 94.2% (214 of 227 strings)
po: Translated using Weblate (Georgian)
Currently translated at 90.3% (205 of 227 strings)
po: Translated using Weblate (Georgian)
Currently translated at 88.9% (202 of 227 strings)
Co-authored-by: Temuri Doghonadze <temuri.doghonadze@gmail.com>
Translate-URL: https://translate.fedoraproject.org/projects/systemd/master/ka/
Translation: systemd/main
Older code did not save the pcr bank (i.e. pcr hash algorithm), and instead let
tpm2_unseal() find the best pcr bank to use. In commit
2cd9d57548 we changed tpm2_unseal() to no longer
handle an unset pcr bank. This adds back in the handling of an unset pcr_bank
so older sealed data should continue to work.
This test loops through masks, but is a relatively long test due to the
increment size between loops; this slightly increases the increment size (from
3->5) which greatly speeds up the test.
