When efi.quickboot is enabled on VMWare (which is the default for
hardware release 16 and later), it may happen that not all EFI devices
are connected.
Due to this, browsing the devices in make_devices() just fails to find
devices, in particular partitions for a given disk.
This typically happ
When using 'search' on EFI systems, we sometimes want to exclude devices
that are not EFI disks (e.g. md, lvm).
This is typically used when wanting to chainload when having a software
raid (md) for EFI partition:
with no option, 'search --file /EFI/redhat/shimx64.efi' sets root envvar
to 'md/b
The TPM2 key protector is a module that enables the automatic retrieval of a
fully-encrypted disk's unlocking key from a TPM 2.0.
The theory of operation is such that the module accepts various arguments, most
of which are optional and therefore possess reasonable defaults. One of these
arguments
To utilize the key protectors framework, there must be a way to protect
full-disk encryption keys in the first place. The grub-protect tool includes
support for the TPM2 key protector but other protectors that require setup ahead
of time can be supported in the future.
For the TPM2 key protector,
A key protector encapsulates functionality to retrieve an unlocking key for a
fully-encrypted disk from a specific source. A key protector module registers
itself with the key protectors framework when it is loaded and unregisters when
unloaded. Additionally, a key protector may accept parameters t
Add a new parameter to cryptomount to support the key protectors framework: -k.
The parameter is used to automatically retrieve a key from specified key
protectors. The parameter may be repeated to specify any number of key
protectors. These are tried in order until one provides a usable key for an
Updates since v1:
1. One key can unlock multiple disks:
It is now possible to use key protectors with cryptomount's -a and -b
options.
2. No passphrase prompt on error if key protector(s) specified:
cryptomount no longer prompts for a passphrase if key protectors are
specified but fai
--- Original Message ---
On Monday, January 31st, 2022 at 23:40, Glenn Washburn
wrote:
> On Sun, 30 Jan 2022 19:40:37 +
>
> Maxim Fomin ma...@fomin.one wrote:
>
> > This patch adds support for plain encryption mode (plain dm-crypt) via new
> >
> > module/command named 'plainmount'.
On Thu, 27 Jan 2022 14:39:56 -0500
Robbie Harwood wrote:
> Changes in this version:
> - Make the version of bootstrap match what it's supposed to
> - Restore fix-width.patch at dkiper's request
>
> Be well,
> --Robbie
I presume this has been build tested, right?
I'm getting the following compi
On Tue, 01 Feb 2022 15:48:01 +
Maxim Fomin wrote:
> --- Original Message ---
>
> On Monday, January 31st, 2022 at 23:40, Glenn Washburn
> wrote:
>
> > On Sun, 30 Jan 2022 19:40:37 +
> >
> > Maxim Fomin ma...@fomin.one wrote:
> >
> > > This patch adds support for plain encrypti
Hi Vitaly,
Now that GRUB is out of a feature freeze, there's a chance this can
make it in.
On Thu, 15 Apr 2021 16:59:07 +0300
Vitaly Kuzmichev via Grub-devel wrote:
> Improve 'search' grub-shell command with functionality to search for
> a partition by PARTUUID string. This is useful on systems
Hi,
pardon me to top post just once, the answer below was sent in reply to v1 but
seems not to have made through as I do not find it in the archives, and it is
about the proposal in general.
Here goes (initially posted on Tue, 25 Jan 2022):
Sorry for a newbie question (I plan to allow installing
12 matches
Mail list logo
