talos-petitboot/lib/pb-protocol, branch master

ui/ncurses: Add preboot check option in the config screen

2020-01-25T03:54:27+00:00

Petitboot might run some checks to validate the kernel images before call the kexec load. This patch adds both 'preboot check' option in the config UI screen and a NVRAM variable 'petitboot,preboot-check' to make the user choice persistent. The 'preboot check' is enabled by default. The 'petitboot,preboot-check' is created on NVRAM only when 'preboot check' is disabled by the user. NVRAM property changed to preboot-check, small label changes and help text added by Jeremy Kerr . Signed-off-by: Maxiwell S. Garcia Signed-off-by: Jeremy Kerr

protocol,types: Add secure & trusted boot state to system info

2020-01-23T01:02:43+00:00

Add state of secure & trusted boot to struct system_info: - fw_measurement: whether the firmware has been measured - fw_enforcing: whether the firmware has been authenticated - os_enforcing: whether the boot payload will be authenticated Signed-off-by: Jeremy Kerr

lib/pb-protocol: fix ordering of system info length calculation

2020-01-23T01:02:43+00:00

... to match the definition of struct system_info. Signed-off-by: Jeremy Kerr

Various fixups and checks to make scan-build happy

2019-05-30T05:23:15+00:00

Signed-off-by: Samuel Mendoza-Jonas

lib: Add AUTH_MSG_DECRYPT

2019-03-05T20:54:10+00:00

Extend the auth_message struct to support the AUTH_MSG_DECRYPT operation, allowing the existing authentications methods to be used for passing a disk password from the UI to pb-discover. In addition add DEVICE_TYPE_LUKS to identify encrypted disk devices. Signed-off-by: Samuel Mendoza-Jonas

ui/ncurses: Add option to clear IPMI boot mailbox

2018-12-13T00:26:17+00:00

If there is an IPMI boot mailbox configuration present display a message in the System Configuration screen and provide the option to clear the mailbox. Signed-off-by: Samuel Mendoza-Jonas

ui/ncurses: Keep track of the default boot option

2018-12-03T03:48:41+00:00

Keep track of the default boot option, and prefix its display name with a '(*)' to point it out to the user. This avoids having to authenticate with pb-discover even if only booting the default option. Signed-off-by: Samuel Mendoza-Jonas

lib/pb-protocol: Add PB_PROTOCOL_ACTION_AUTHENTICATE

2018-12-03T03:39:57+00:00

Add a new "authenticate" action. Depending on the 'op' field this is either a) an authentication request, b) a response indicating the result, or c) a request to change the password. Signed-off-by: Samuel Mendoza-Jonas

ui/ncurses: Reset console options on boot

2018-11-16T02:55:29+00:00

The ncurses UI sets a few console options at startup that are needed for ncurses to work properly. These aren't reset however and can lead to quirks like the cursor being invisible after kexecing to the next kernel. The UI process doesn't have time to reset these when it is killed by kexec, so instead add a 'boot_active' field to status updates. This is set by boot.c's update handler so the UI can assume it is about to boot if it receives a status update with this field, and resets the console options. If the boot is cancelled for any reason the status update will reflect that and the console options are restored. Signed-off-by: Samuel Mendoza-Jonas

lib/log: Switch to pb_log_fn

2018-08-07T01:30:36+00:00

The only functional change should be an additional '/n' to a few log messagees that seemed to be missing it. Signed-off-by: Geoff Levand Signed-off-by: Samuel Mendoza-Jonas