slonk/dracut-sshd-tpm
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
TPM sealing of dracut-sshd host keys
8 commits 1 branch 0 tags 42 KiB
Find a file
Exact
slonkazoid 1c9e75aad2
 relaxed untarring
2025-10-03 05:11:51 +03:00
99seal-tpm relaxed untarring 2025-10-03 05:11:51 +03:00
config reslonk 2025-10-03 05:06:03 +03:00
dracut-seal-tpm.spec reslonk 2025-10-03 05:06:03 +03:00
README.md reslonk 2025-10-03 05:06:03 +03:00

README.md

dracut-sshd-tpm

TPM sealing of files in the initramfs. Originally intended for dracut-sshd's host keys.

Configuration

The default configuration is placed into /etc/default/dracut-seal-tpm. You will need to configure, at minimum, which registers to use while sealing the host keys (the tpm_pcrs value).

Building

dnf install rpkg git
git clone https://git.slonk.ing/slonk/dracut-sshd-tpm
cd dracut-sshd-tpm
rpkg local

The resulting package's path will be output to the console.