xCAT/confluent
2
0
Fork 0
mirror of https://github.com/xcat2/confluent.git synced 2024-11-22 09:32:21 +00:00
Code Issues Projects Releases Wiki Activity
e6dc383d25
confluent/confluent_osdeploy/ubuntu22.04/profiles/default
History
Jarrod Johnson 329f2b4485 Amend cryptboot implementation for Ubuntu 22/24, EL8/EL9 
Provide mechanism for administrator to place a custom
key for potential interactive recovery into
/var/lib/confluent/private/os/<profile>/pending/luks.key

If not provided, generate a unique one for each install.

Either way, persist the key in /etc/confluent/luks.key, to
facilitate later resealing if the user wants (clevis nor systemd
prior to 256 supports unlock via TPM2, so keyfile is required
for now).

Migrating to otherwise escrowed passphrases and/or sealing to
specific TPMs will be left to operators and/or third parties.
2024-07-29 10:17:14 -04:00
..
ansible Revamp and add missing bits to scripted ubuntu install 2023-09-18 10:30:52 -04:00
autoinstall Rework Ubuntu addcrypt support 2024-07-26 11:33:01 -04:00
scripts Amend cryptboot implementation for Ubuntu 22/24, EL8/EL9 2024-07-29 10:17:14 -04:00
initprofile.sh Correct syntax error in ubuntu arm profile init 2024-03-18 12:45:25 -04:00
profile.yaml Add ubuntu22.04 profile 2022-05-04 09:25:49 -04:00