xCAT/confluent
2
0
Fork 0
mirror of https://github.com/xcat2/confluent.git synced 2025-01-28 20:07:48 +00:00
Code Issues Projects Releases Wiki Activity
3,615 Commits 39 Branches 65 Tags
Commit Graph

6 Commits

Author SHA1 Message Date
Jarrod Johnson
c92b3aea9d Mitigate error output from extraneous handles 
Unrelated handles in use will no longer result in misleading console
output.
 2021-06-24 11:41:34 -04:00
Jarrod Johnson
3c41c52d77 Rework TPM usage in SUSE diskless 
For one, need to detect stale
TPM value and clear them.

For another, seal to PCR 15 and extend after unlock, so that the booted
system is unable to retrieve
the data from the TPM (e.g.
a plain user by default is allowed
to unseal data if there's no
policy, so use a policy and
extend the state away before boot)
 2021-06-24 11:09:37 -04:00
Jarrod Johnson
feb418ac59 Store TPM unsealed apikey in usual location 2021-06-23 17:22:18 -04:00
Jarrod Johnson
b30fabd55d Enable TPM2 on SUSE diskless for apikey 
Rather than remote sealed copy, store it in the TPM2

Will convert genesis and EL diskless for this to be the new preferred
mechanism.
 2021-06-23 17:01:27 -04:00
Jarrod Johnson
172bb12885 Modify Suse diskless for suse networking 
Suse doesn't use network manager, populate sysconfig
instead.
 2021-06-23 12:07:13 -04:00
Jarrod Johnson
76f3537a79 Further advance SUSE15 diskless support 2021-06-22 16:18:32 -04:00