├── .github └── CODEOWNERS ├── COPYING.MIT ├── MAINTAINERS ├── README ├── README.md ├── meta-efi-secure-boot ├── README.md ├── conf │ └── layer.conf ├── recipes-base │ └── packagegroups │ │ └── packagegroup-efi-secure-boot.bb ├── recipes-bsp │ ├── efitools │ │ ├── efitools-native_git.bb │ │ ├── efitools.inc │ │ ├── efitools │ │ │ ├── 0001-console.c-Fix-compilation-against-latest-usr-include.patch │ │ │ ├── Add-static-keyword-for-IsValidVariableHeader.patch │ │ │ ├── Allow-to-override-tools-for-target-build.patch │ │ │ ├── Build-DBX-by-default.patch │ │ │ ├── Don-t-build-PreLoader.efi.patch │ │ │ ├── Dynamically-load-openssl.cnf-for-openssl-1.0.x-1.1.x.patch │ │ │ ├── Fix-for-the-cross-compilation.patch │ │ │ ├── Fix-help2man-error.patch │ │ │ ├── Fix-help2man-failure.patch │ │ │ ├── Fix-the-wrong-dependency-for-blacklist.esl.patch │ │ │ ├── Kill-all-the-build-warning-caused-by-implicit-declar.patch │ │ │ ├── LockDown-disable-the-entrance-into-BIOS-setup-to-re-.patch │ │ │ ├── LockDown-enable-the-enrollment-for-DBX.patch │ │ │ ├── LockDown-run-system-warm-reset-after-the-key-provisi.patch │ │ │ ├── LockDown-show-the-error-message-with-3-sec-timeout.patch │ │ │ ├── Makefile-do-not-build-signed-efi-image.patch │ │ │ └── Reuse-xxdi.pl.patch │ │ └── efitools_git.bb │ ├── gnu-efi │ │ └── gnu-efi_%.bbappend │ ├── grub │ │ ├── grub-efi-efi-secure-boot.inc │ │ ├── grub-efi │ │ │ ├── 0001-grub-verify-Add-strict_security-variable.patch │ │ │ ├── 0001-kern-efi-init.c-disable-inside-lockdown-and-shim_loc.patch │ │ │ ├── 0001-pe32.h-add-header-structures-for-TE-and-DOS-executab.patch │ │ │ ├── 0002-shim-add-needed-data-structures.patch │ │ │ ├── 0003-efi-chainloader-implement-an-UEFI-Exit-service-for-s.patch │ │ │ ├── 0004-efi-chainloader-port-shim-to-grub.patch │ │ │ ├── 0005-efi-chainloader-use-shim-to-load-and-verify-an-image.patch │ │ │ ├── 0006-efi-chainloader-boot-the-image-using-shim.patch │ │ │ ├── 0007-efi-chainloader-take-care-of-unload-undershim.patch │ │ │ ├── Grub-get-and-set-efi-variables.patch │ │ │ ├── boot-menu.inc │ │ │ ├── chainloader-Actually-find-the-relocations-correctly-.patch │ │ │ ├── chainloader-Don-t-check-empty-section-in-file-like-..patch │ │ │ ├── chainloader-handle-the-unauthenticated-image-by-shim.patch │ │ │ ├── efi-chainloader-implemented-for-32-bit.patch │ │ │ ├── efi-secure-boot.inc │ │ │ ├── grub-efi.cfg │ │ │ ├── mok2verify-multiboot.patch │ │ │ ├── mok2verify-support-to-verify-non-PE-file-with-PKCS-7.patch │ │ │ ├── password.inc │ │ │ ├── uefi_verify.patch │ │ │ └── verify-all-buffiles.patch │ │ └── grub-efi_%.bbappend │ ├── seloader │ │ └── seloader_git.bb │ └── shim │ │ ├── shim │ │ ├── 0001-MokManager-Use-CompareMem-on-MokListNode.Type-instea.patch │ │ ├── 0001-console.c-Fix-compilation-against-latest-usr-include.patch │ │ ├── 0001-shim-allow-to-verify-sha1-digest-for-Authenticode.patch │ │ ├── 0005-Fix-signing-failure-due-to-not-finding-certificate.patch │ │ ├── 0006-Prevent-from-removing-intermediate-.efi.patch │ │ ├── 0008-Fix-the-world-build-failure-due-to-the-missing-rule-.patch │ │ ├── 0011-Update-verification_method-if-the-loaded-image-is-si.patch │ │ ├── 0012-netboot-replace-the-depreciated-EFI_PXE_BASE_CODE.patch │ │ ├── CVE-2022-28737-0001.patch │ │ ├── CVE-2022-28737-0002.patch │ │ └── LICENSE │ │ └── shim_git.bb ├── recipes-core │ ├── images │ │ ├── kernel-initramfs-efi-secure-boot.inc │ │ └── kernel-initramfs.bbappend │ ├── ovmf │ │ ├── ovmf-efi-secure-boot.inc │ │ └── ovmf_%.bbappend │ └── systemd │ │ ├── systemd-efi-secure-boot.inc │ │ └── systemd_%.bbappend ├── recipes-extended │ └── mokutil │ │ ├── files │ │ └── 0001-mokutil.c-fix-typo-enrollement-enrollment.patch │ │ └── mokutil_git.bb └── recipes-kernel │ └── linux │ ├── linux-yocto-dev.bbappend │ ├── linux-yocto-efi-secure-boot.inc │ ├── linux-yocto-rt_%.bbappend │ └── linux-yocto_%.bbappend ├── meta-encrypted-storage ├── COPYING.MIT ├── README.md ├── conf │ └── layer.conf ├── recipes-base │ └── packagegroups │ │ ├── packagegroup-luks-initramfs.bb │ │ ├── packagegroup-luks.bb │ │ └── packagegroup-luks.inc ├── recipes-core │ └── systemd │ │ └── systemd_%.bbappend ├── recipes-kernel │ └── linux │ │ ├── linux-yocto-dev.bbappend │ │ ├── linux-yocto-luks.inc │ │ ├── linux-yocto-rt_%.bbappend │ │ ├── linux-yocto │ │ ├── dmcrypt.cfg │ │ └── dmcrypt.scc │ │ └── linux-yocto_%.bbappend ├── recipes-support │ ├── cryptsetup │ │ ├── cryptsetup-luks.inc │ │ └── cryptsetup_%.bbappend │ └── lvm2 │ │ ├── lvm2-luks.inc │ │ ├── lvm2 │ │ └── 0001-10-dm.rules.in-Fix-dmcrypt-hanging-on-hand-over-from.patch │ │ └── lvm2_%.bbappend └── recipes-tpm │ └── cryptfs-tpm2 │ ├── cryptfs-tpm2 │ ├── 0001-Remove-build-time-from-show_banner.patch │ ├── 0001-encrypt_secret.py-fix-for-python3.patch │ ├── 0001-env.mk-add-ld-option-noexecstack.patch │ ├── 0001-env.mk-fix-LDFLAGS-expansion.patch │ ├── 0001-luks-setup.sh-Add-support-for-qemu-with-the-swtpm.patch │ └── 0002-luks-setup.sh-Updated-TPM-Tools.patch │ └── cryptfs-tpm2_git.bb ├── meta-ids ├── COPYING.MIT ├── README.md ├── conf │ └── layer.conf ├── recipes-base │ └── packagegroups │ │ └── packagegroup-ids.bb └── recipes-ids │ └── mtree │ ├── mtree │ ├── 0001-compat-glibc-2.33.patch │ ├── configure.ac-automake-error.patch │ └── mtree-getlogin.patch │ └── mtree_git.bb ├── meta-integrity ├── COPYING.MIT ├── README.md ├── classes │ └── sign_rpm_ext.bbclass ├── conf │ └── layer.conf ├── files │ └── ima_signing_blacklist ├── recipes-base │ └── packagegroups │ │ ├── packagegroup-ima-initramfs.bb │ │ ├── packagegroup-ima.bb │ │ └── packagegroup-ima.inc ├── recipes-core │ ├── base-files │ │ ├── base-files-integrity.inc │ │ └── base-files_%.bbappend │ ├── initrdscripts │ │ ├── files │ │ │ └── init.ima │ │ └── initrdscripts-ima.bb │ ├── systemd │ │ └── systemd_%.bbappend │ └── util-linux │ │ ├── util-linux-integrity.inc │ │ └── util-linux_%.bbappend ├── recipes-devtools │ └── rpm │ │ ├── rpm-integrity.inc │ │ ├── rpm │ │ └── macros.ima │ │ └── rpm_%.bbappend ├── recipes-kernel │ └── linux │ │ ├── linux-yocto-dev.bbappend │ │ ├── linux-yocto-integrity.inc │ │ ├── linux-yocto-rt_5.%.bbappend │ │ ├── linux-yocto │ │ ├── ima.cfg │ │ ├── ima.scc │ │ ├── integrity.cfg │ │ ├── integrity.scc │ │ ├── modsign.cfg │ │ └── modsign.scc │ │ └── linux-yocto_5.%.bbappend └── recipes-support │ ├── ima-evm-utils │ ├── ima-evm-utils │ │ ├── 0001-Don-t-build-man-pages.patch │ │ ├── 0001-Install-evmctl-to-sbindir-rather-than-bindir.patch │ │ ├── 0001-ima-evm-utils-include-sys-types.h-in-header-to-fix-b.patch │ │ └── 0001-libimaevm-retrieve-correct-algo-for-v2-signature.patch │ └── ima-evm-utils_git.bb │ ├── ima-inspect │ └── ima-inspect_0.13.bb │ └── ima-policy │ ├── files │ └── ima_policy.default │ └── ima-policy_0.1.bb ├── meta-intel-sgx ├── README.md ├── conf │ └── layer.conf └── recipes-kernel │ └── intel-sgx-driver │ └── intel-sgx-driver_2.1.bb ├── meta-signing-key ├── COPYING.MIT ├── README.md ├── classes │ └── user-key-store.bbclass ├── conf │ └── layer.conf ├── files │ ├── boot_keys │ │ ├── BOOT-GPG-KEY-SecureBootCore │ │ ├── BOOT-GPG-PRIVKEY-SecureBootCore │ │ ├── boot_cfg_pw │ │ └── boot_pub_key │ ├── ima_keys │ │ ├── x509_ima.der │ │ └── x509_ima.key │ ├── modsign_keys │ │ ├── modsign_key.crt │ │ └── modsign_key.key │ ├── mok_sb_keys │ │ ├── shim_cert.crt │ │ ├── shim_cert.key │ │ ├── vendor_cert.crt │ │ ├── vendor_cert.key │ │ └── wosign_ev_cert.crt │ ├── rpm_keys │ │ ├── RPM-GPG-KEY-SecureCore │ │ └── RPM-GPG-PRIVKEY-SecureCore │ ├── secondary_trusted_keys │ │ ├── secondary_trusted_key.crt │ │ └── secondary_trusted_key.key │ ├── system_trusted_keys │ │ ├── system_trusted_key.crt │ │ └── system_trusted_key.key │ └── uefi_sb_keys │ │ ├── DB.crt │ │ ├── DB.key │ │ ├── DBX │ │ ├── DBX.crt │ │ └── DBX.key │ │ ├── KEK.crt │ │ ├── KEK.key │ │ ├── PK.crt │ │ ├── PK.key │ │ ├── ms-DB.crt │ │ └── ms-KEK.crt ├── recipes-devtools │ ├── libsign │ │ ├── files │ │ │ ├── 0001-env.mk-fix-LDFLAGS-expansion.patch │ │ │ └── 0001-selsign.c-remove-build-time-from-show_banner.patch │ │ └── libsign_git.bb │ └── sbsigntool │ │ ├── sbsigntool │ │ ├── 0001-Fix-openssl-3.0-issue-involving-ASN1-xxx_it.patch │ │ ├── 0001-Makefile.am-do-not-use-Werror.patch │ │ ├── 0001-configure-Dont-t-check-for-gnu-efi.patch │ │ ├── 0001-fileio.c-initialize-local-variables-before-use-in-fu.patch │ │ ├── 0001-src-Makefile.am-Add-read_write_all.c-to-common_SOURC.patch │ │ ├── 0002-docs-Don-t-build-man-pages.patch │ │ └── 0003-sbsign-add-x-option-to-avoid-overwrite-existing-sign.patch │ │ └── sbsigntool_git.bb ├── recipes-support │ └── key-store │ │ └── key-store_0.1.bb └── scripts │ ├── create-user-key-store.sh │ └── openssl.cnf ├── meta-tpm ├── COPYING.MIT ├── README.md ├── conf │ └── layer.conf ├── recipes-base │ └── packagegroups │ │ └── packagegroup-tpm.bb ├── recipes-kernel │ └── linux │ │ ├── linux-yocto-dev.bbappend │ │ ├── linux-yocto-rt_5.%.bbappend │ │ ├── linux-yocto-tpm.inc │ │ ├── linux-yocto │ │ ├── tpm.cfg │ │ └── tpm.scc │ │ └── linux-yocto_5.%.bbappend └── recipes-tpm │ ├── openssl-tpm-engine │ ├── files │ │ ├── 0001-create-tpm-key-support-well-known-key-option.patch │ │ ├── 0002-libtpm-support-env-TPM_SRK_PW.patch │ │ ├── 0003-tpm-openssl-tpm-engine-parse-an-encrypted-tpm-SRK-pa.patch │ │ ├── 0004-tpm-openssl-tpm-engine-change-variable-c-type-from-c.patch │ │ ├── 0005-tpm-openssl-tpm-engine-parse-an-encrypted-TPM-key-pa.patch │ │ └── openssl11_build_fix.patch │ └── openssl-tpm-engine_0.5.0.bb │ ├── pcr-extend │ └── pcr-extend_git.bb │ ├── tpm-quote-tools │ └── tpm-quote-tools_git.bb │ ├── tpm-tools │ ├── files │ │ ├── 03-fix-bool-error-parseStringWithValues.patch │ │ └── tpm-tools-extendpcr.patch │ └── tpm-tools_git.bb │ ├── trousers │ ├── files │ │ ├── Fix-segment-fault-if-client-hostname-cannot-be-retri.patch │ │ ├── fix-deadlock-and-potential-hung.patch │ │ ├── fix-event-log-parsing-problem.patch │ │ ├── fix-incorrect-report-of-insufficient-buffer.patch │ │ ├── get-user-ps-path-use-POSIX-getpwent-instead-of-getpwe.patch │ │ ├── tcsd.conf │ │ ├── tcsd.service │ │ ├── trousers-conditional-compile-DES-related-code.patch │ │ ├── trousers-udev.rules │ │ └── trousers.init.sh │ └── trousers_git.bb │ └── tss-testsuite │ ├── files │ ├── Tspi_TPM_CreateIdentityWithCallbacks_no_des.patch │ ├── Tspi_TPM_CreateIdentity_no_des.patch │ ├── Tspi_TPM_LoadMaintenancePubKey01.patch │ ├── common_c_no_des.patch │ ├── fix-failure-of-.so-LD-with-cortexa8t-neon-wrswrap-linux.patch │ ├── testsuite-transport-init.patch │ └── transport-Tspi_TPM_Delegate.patch │ └── tss-testsuite_git.bb ├── meta-tpm2 ├── COPYING.MIT ├── README.md ├── conf │ └── layer.conf ├── recipes-base │ └── packagegroups │ │ ├── packagegroup-tpm2-initramfs.bb │ │ ├── packagegroup-tpm2.bb │ │ └── packagegroup-tpm2.inc ├── recipes-kernel │ └── linux │ │ ├── linux-yocto-dev.bbappend │ │ ├── linux-yocto-rt_5.%.bbappend │ │ ├── linux-yocto-tpm2.inc │ │ ├── linux-yocto │ │ ├── tpm2.cfg │ │ └── tpm2.scc │ │ └── linux-yocto_5.%.bbappend └── recipes-tpm │ ├── tpm2-abrmd │ ├── files │ │ ├── 0001-Remove-obsolete-setting-regarding-the-Standard-Outpu.patch │ │ ├── tpm2-abrmd-init.sh │ │ └── tpm2-abrmd.default │ └── tpm2-abrmd_2.3.3.bb │ ├── tpm2-tools │ ├── files │ │ ├── 0001-build-only-use-Werror-for-non-release-builds.patch │ │ └── 0001-tests-switch-to-python3.patch │ └── tpm2-tools_4.3.2.bb │ └── tpm2-tss │ ├── tpm2-tss │ ├── 0001-Drop-support-for-OpenSSL-1.1.0.patch │ ├── 0002-Implement-EVP_PKEY-export-import-for-OpenSSL-3.0.patch │ └── 0003-Remove-deprecated-OpenSSL_add_all_algorithms.patch │ └── tpm2-tss_2.4.6.bb └── meta ├── COPYING.MIT ├── README ├── conf └── layer.conf └── recipes-core ├── images ├── kernel-initramfs.bb ├── secure-core-image-initramfs.bb ├── secure-core-image.bb ├── secure-core-image.inc └── secure-core-minimal-image.bb └── initrdscripts ├── files └── init └── initrdscripts-secure-core.bb /.github/CODEOWNERS: -------------------------------------------------------------------------------- 1 | * @jiazhang0 2 | -------------------------------------------------------------------------------- /COPYING.MIT: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/COPYING.MIT -------------------------------------------------------------------------------- /MAINTAINERS: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/MAINTAINERS -------------------------------------------------------------------------------- /README: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/README -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/README.md -------------------------------------------------------------------------------- /meta-efi-secure-boot/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/README.md -------------------------------------------------------------------------------- /meta-efi-secure-boot/conf/layer.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/conf/layer.conf -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-base/packagegroups/packagegroup-efi-secure-boot.bb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-base/packagegroups/packagegroup-efi-secure-boot.bb -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/efitools/efitools-native_git.bb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-bsp/efitools/efitools-native_git.bb -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/efitools/efitools.inc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-bsp/efitools/efitools.inc -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/efitools/efitools/0001-console.c-Fix-compilation-against-latest-usr-include.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-bsp/efitools/efitools/0001-console.c-Fix-compilation-against-latest-usr-include.patch -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/efitools/efitools/Add-static-keyword-for-IsValidVariableHeader.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-bsp/efitools/efitools/Add-static-keyword-for-IsValidVariableHeader.patch -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/efitools/efitools/Allow-to-override-tools-for-target-build.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-bsp/efitools/efitools/Allow-to-override-tools-for-target-build.patch -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/efitools/efitools/Build-DBX-by-default.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-bsp/efitools/efitools/Build-DBX-by-default.patch -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/efitools/efitools/Don-t-build-PreLoader.efi.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-bsp/efitools/efitools/Don-t-build-PreLoader.efi.patch -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/efitools/efitools/Dynamically-load-openssl.cnf-for-openssl-1.0.x-1.1.x.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-bsp/efitools/efitools/Dynamically-load-openssl.cnf-for-openssl-1.0.x-1.1.x.patch -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/efitools/efitools/Fix-for-the-cross-compilation.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-bsp/efitools/efitools/Fix-for-the-cross-compilation.patch -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/efitools/efitools/Fix-help2man-error.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-bsp/efitools/efitools/Fix-help2man-error.patch -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/efitools/efitools/Fix-help2man-failure.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-bsp/efitools/efitools/Fix-help2man-failure.patch -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/efitools/efitools/Fix-the-wrong-dependency-for-blacklist.esl.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-bsp/efitools/efitools/Fix-the-wrong-dependency-for-blacklist.esl.patch -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/efitools/efitools/Kill-all-the-build-warning-caused-by-implicit-declar.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-bsp/efitools/efitools/Kill-all-the-build-warning-caused-by-implicit-declar.patch -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/efitools/efitools/LockDown-disable-the-entrance-into-BIOS-setup-to-re-.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-bsp/efitools/efitools/LockDown-disable-the-entrance-into-BIOS-setup-to-re-.patch -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/efitools/efitools/LockDown-enable-the-enrollment-for-DBX.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-bsp/efitools/efitools/LockDown-enable-the-enrollment-for-DBX.patch -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/efitools/efitools/LockDown-run-system-warm-reset-after-the-key-provisi.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-bsp/efitools/efitools/LockDown-run-system-warm-reset-after-the-key-provisi.patch -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/efitools/efitools/LockDown-show-the-error-message-with-3-sec-timeout.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-bsp/efitools/efitools/LockDown-show-the-error-message-with-3-sec-timeout.patch -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/efitools/efitools/Makefile-do-not-build-signed-efi-image.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-bsp/efitools/efitools/Makefile-do-not-build-signed-efi-image.patch -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/efitools/efitools/Reuse-xxdi.pl.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-bsp/efitools/efitools/Reuse-xxdi.pl.patch -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/efitools/efitools_git.bb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-bsp/efitools/efitools_git.bb -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/gnu-efi/gnu-efi_%.bbappend: -------------------------------------------------------------------------------- 1 | BBCLASSEXTEND += "nativesdk" 2 | -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/grub/grub-efi-efi-secure-boot.inc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-bsp/grub/grub-efi-efi-secure-boot.inc -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/grub/grub-efi/0001-grub-verify-Add-strict_security-variable.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-bsp/grub/grub-efi/0001-grub-verify-Add-strict_security-variable.patch -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/grub/grub-efi/0001-kern-efi-init.c-disable-inside-lockdown-and-shim_loc.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-bsp/grub/grub-efi/0001-kern-efi-init.c-disable-inside-lockdown-and-shim_loc.patch -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/grub/grub-efi/0001-pe32.h-add-header-structures-for-TE-and-DOS-executab.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-bsp/grub/grub-efi/0001-pe32.h-add-header-structures-for-TE-and-DOS-executab.patch -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/grub/grub-efi/0002-shim-add-needed-data-structures.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-bsp/grub/grub-efi/0002-shim-add-needed-data-structures.patch -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/grub/grub-efi/0003-efi-chainloader-implement-an-UEFI-Exit-service-for-s.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-bsp/grub/grub-efi/0003-efi-chainloader-implement-an-UEFI-Exit-service-for-s.patch -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/grub/grub-efi/0004-efi-chainloader-port-shim-to-grub.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-bsp/grub/grub-efi/0004-efi-chainloader-port-shim-to-grub.patch -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/grub/grub-efi/0005-efi-chainloader-use-shim-to-load-and-verify-an-image.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-bsp/grub/grub-efi/0005-efi-chainloader-use-shim-to-load-and-verify-an-image.patch -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/grub/grub-efi/0006-efi-chainloader-boot-the-image-using-shim.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-bsp/grub/grub-efi/0006-efi-chainloader-boot-the-image-using-shim.patch -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/grub/grub-efi/0007-efi-chainloader-take-care-of-unload-undershim.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-bsp/grub/grub-efi/0007-efi-chainloader-take-care-of-unload-undershim.patch -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/grub/grub-efi/Grub-get-and-set-efi-variables.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-bsp/grub/grub-efi/Grub-get-and-set-efi-variables.patch -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/grub/grub-efi/boot-menu.inc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-bsp/grub/grub-efi/boot-menu.inc -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/grub/grub-efi/chainloader-Actually-find-the-relocations-correctly-.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-bsp/grub/grub-efi/chainloader-Actually-find-the-relocations-correctly-.patch -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/grub/grub-efi/chainloader-Don-t-check-empty-section-in-file-like-..patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-bsp/grub/grub-efi/chainloader-Don-t-check-empty-section-in-file-like-..patch -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/grub/grub-efi/chainloader-handle-the-unauthenticated-image-by-shim.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-bsp/grub/grub-efi/chainloader-handle-the-unauthenticated-image-by-shim.patch -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/grub/grub-efi/efi-chainloader-implemented-for-32-bit.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-bsp/grub/grub-efi/efi-chainloader-implemented-for-32-bit.patch -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/grub/grub-efi/efi-secure-boot.inc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-bsp/grub/grub-efi/efi-secure-boot.inc -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/grub/grub-efi/grub-efi.cfg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-bsp/grub/grub-efi/grub-efi.cfg -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/grub/grub-efi/mok2verify-multiboot.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-bsp/grub/grub-efi/mok2verify-multiboot.patch -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/grub/grub-efi/mok2verify-support-to-verify-non-PE-file-with-PKCS-7.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-bsp/grub/grub-efi/mok2verify-support-to-verify-non-PE-file-with-PKCS-7.patch -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/grub/grub-efi/password.inc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-bsp/grub/grub-efi/password.inc -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/grub/grub-efi/uefi_verify.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-bsp/grub/grub-efi/uefi_verify.patch -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/grub/grub-efi/verify-all-buffiles.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-bsp/grub/grub-efi/verify-all-buffiles.patch -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/grub/grub-efi_%.bbappend: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-bsp/grub/grub-efi_%.bbappend -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/seloader/seloader_git.bb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-bsp/seloader/seloader_git.bb -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/shim/shim/0001-MokManager-Use-CompareMem-on-MokListNode.Type-instea.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-bsp/shim/shim/0001-MokManager-Use-CompareMem-on-MokListNode.Type-instea.patch -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/shim/shim/0001-console.c-Fix-compilation-against-latest-usr-include.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-bsp/shim/shim/0001-console.c-Fix-compilation-against-latest-usr-include.patch -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/shim/shim/0001-shim-allow-to-verify-sha1-digest-for-Authenticode.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-bsp/shim/shim/0001-shim-allow-to-verify-sha1-digest-for-Authenticode.patch -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/shim/shim/0005-Fix-signing-failure-due-to-not-finding-certificate.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-bsp/shim/shim/0005-Fix-signing-failure-due-to-not-finding-certificate.patch -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/shim/shim/0006-Prevent-from-removing-intermediate-.efi.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-bsp/shim/shim/0006-Prevent-from-removing-intermediate-.efi.patch -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/shim/shim/0008-Fix-the-world-build-failure-due-to-the-missing-rule-.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-bsp/shim/shim/0008-Fix-the-world-build-failure-due-to-the-missing-rule-.patch -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/shim/shim/0011-Update-verification_method-if-the-loaded-image-is-si.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-bsp/shim/shim/0011-Update-verification_method-if-the-loaded-image-is-si.patch -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/shim/shim/0012-netboot-replace-the-depreciated-EFI_PXE_BASE_CODE.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-bsp/shim/shim/0012-netboot-replace-the-depreciated-EFI_PXE_BASE_CODE.patch -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/shim/shim/CVE-2022-28737-0001.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-bsp/shim/shim/CVE-2022-28737-0001.patch -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/shim/shim/CVE-2022-28737-0002.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-bsp/shim/shim/CVE-2022-28737-0002.patch -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/shim/shim/LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-bsp/shim/shim/LICENSE -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-bsp/shim/shim_git.bb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-bsp/shim/shim_git.bb -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-core/images/kernel-initramfs-efi-secure-boot.inc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-core/images/kernel-initramfs-efi-secure-boot.inc -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-core/images/kernel-initramfs.bbappend: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-core/images/kernel-initramfs.bbappend -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-core/ovmf/ovmf-efi-secure-boot.inc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-core/ovmf/ovmf-efi-secure-boot.inc -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-core/ovmf/ovmf_%.bbappend: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-core/ovmf/ovmf_%.bbappend -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-core/systemd/systemd-efi-secure-boot.inc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-core/systemd/systemd-efi-secure-boot.inc -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-core/systemd/systemd_%.bbappend: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-core/systemd/systemd_%.bbappend -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-extended/mokutil/files/0001-mokutil.c-fix-typo-enrollement-enrollment.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-extended/mokutil/files/0001-mokutil.c-fix-typo-enrollement-enrollment.patch -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-extended/mokutil/mokutil_git.bb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-extended/mokutil/mokutil_git.bb -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-kernel/linux/linux-yocto-dev.bbappend: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-kernel/linux/linux-yocto-dev.bbappend -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-kernel/linux/linux-yocto-efi-secure-boot.inc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-kernel/linux/linux-yocto-efi-secure-boot.inc -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-kernel/linux/linux-yocto-rt_%.bbappend: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-kernel/linux/linux-yocto-rt_%.bbappend -------------------------------------------------------------------------------- /meta-efi-secure-boot/recipes-kernel/linux/linux-yocto_%.bbappend: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-efi-secure-boot/recipes-kernel/linux/linux-yocto_%.bbappend -------------------------------------------------------------------------------- /meta-encrypted-storage/COPYING.MIT: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-encrypted-storage/COPYING.MIT -------------------------------------------------------------------------------- /meta-encrypted-storage/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-encrypted-storage/README.md -------------------------------------------------------------------------------- /meta-encrypted-storage/conf/layer.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-encrypted-storage/conf/layer.conf -------------------------------------------------------------------------------- /meta-encrypted-storage/recipes-base/packagegroups/packagegroup-luks-initramfs.bb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-encrypted-storage/recipes-base/packagegroups/packagegroup-luks-initramfs.bb -------------------------------------------------------------------------------- /meta-encrypted-storage/recipes-base/packagegroups/packagegroup-luks.bb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-encrypted-storage/recipes-base/packagegroups/packagegroup-luks.bb -------------------------------------------------------------------------------- /meta-encrypted-storage/recipes-base/packagegroups/packagegroup-luks.inc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-encrypted-storage/recipes-base/packagegroups/packagegroup-luks.inc -------------------------------------------------------------------------------- /meta-encrypted-storage/recipes-core/systemd/systemd_%.bbappend: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-encrypted-storage/recipes-core/systemd/systemd_%.bbappend -------------------------------------------------------------------------------- /meta-encrypted-storage/recipes-kernel/linux/linux-yocto-dev.bbappend: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-encrypted-storage/recipes-kernel/linux/linux-yocto-dev.bbappend -------------------------------------------------------------------------------- /meta-encrypted-storage/recipes-kernel/linux/linux-yocto-luks.inc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-encrypted-storage/recipes-kernel/linux/linux-yocto-luks.inc -------------------------------------------------------------------------------- /meta-encrypted-storage/recipes-kernel/linux/linux-yocto-rt_%.bbappend: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-encrypted-storage/recipes-kernel/linux/linux-yocto-rt_%.bbappend -------------------------------------------------------------------------------- /meta-encrypted-storage/recipes-kernel/linux/linux-yocto/dmcrypt.cfg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-encrypted-storage/recipes-kernel/linux/linux-yocto/dmcrypt.cfg -------------------------------------------------------------------------------- /meta-encrypted-storage/recipes-kernel/linux/linux-yocto/dmcrypt.scc: -------------------------------------------------------------------------------- 1 | kconf non-hardware dmcrypt.cfg 2 | -------------------------------------------------------------------------------- /meta-encrypted-storage/recipes-kernel/linux/linux-yocto_%.bbappend: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-encrypted-storage/recipes-kernel/linux/linux-yocto_%.bbappend -------------------------------------------------------------------------------- /meta-encrypted-storage/recipes-support/cryptsetup/cryptsetup-luks.inc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-encrypted-storage/recipes-support/cryptsetup/cryptsetup-luks.inc -------------------------------------------------------------------------------- /meta-encrypted-storage/recipes-support/cryptsetup/cryptsetup_%.bbappend: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-encrypted-storage/recipes-support/cryptsetup/cryptsetup_%.bbappend -------------------------------------------------------------------------------- /meta-encrypted-storage/recipes-support/lvm2/lvm2-luks.inc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-encrypted-storage/recipes-support/lvm2/lvm2-luks.inc -------------------------------------------------------------------------------- /meta-encrypted-storage/recipes-support/lvm2/lvm2/0001-10-dm.rules.in-Fix-dmcrypt-hanging-on-hand-over-from.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-encrypted-storage/recipes-support/lvm2/lvm2/0001-10-dm.rules.in-Fix-dmcrypt-hanging-on-hand-over-from.patch -------------------------------------------------------------------------------- /meta-encrypted-storage/recipes-support/lvm2/lvm2_%.bbappend: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-encrypted-storage/recipes-support/lvm2/lvm2_%.bbappend -------------------------------------------------------------------------------- /meta-encrypted-storage/recipes-tpm/cryptfs-tpm2/cryptfs-tpm2/0001-Remove-build-time-from-show_banner.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-encrypted-storage/recipes-tpm/cryptfs-tpm2/cryptfs-tpm2/0001-Remove-build-time-from-show_banner.patch -------------------------------------------------------------------------------- /meta-encrypted-storage/recipes-tpm/cryptfs-tpm2/cryptfs-tpm2/0001-encrypt_secret.py-fix-for-python3.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-encrypted-storage/recipes-tpm/cryptfs-tpm2/cryptfs-tpm2/0001-encrypt_secret.py-fix-for-python3.patch -------------------------------------------------------------------------------- /meta-encrypted-storage/recipes-tpm/cryptfs-tpm2/cryptfs-tpm2/0001-env.mk-add-ld-option-noexecstack.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-encrypted-storage/recipes-tpm/cryptfs-tpm2/cryptfs-tpm2/0001-env.mk-add-ld-option-noexecstack.patch -------------------------------------------------------------------------------- /meta-encrypted-storage/recipes-tpm/cryptfs-tpm2/cryptfs-tpm2/0001-env.mk-fix-LDFLAGS-expansion.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-encrypted-storage/recipes-tpm/cryptfs-tpm2/cryptfs-tpm2/0001-env.mk-fix-LDFLAGS-expansion.patch -------------------------------------------------------------------------------- /meta-encrypted-storage/recipes-tpm/cryptfs-tpm2/cryptfs-tpm2/0001-luks-setup.sh-Add-support-for-qemu-with-the-swtpm.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-encrypted-storage/recipes-tpm/cryptfs-tpm2/cryptfs-tpm2/0001-luks-setup.sh-Add-support-for-qemu-with-the-swtpm.patch -------------------------------------------------------------------------------- /meta-encrypted-storage/recipes-tpm/cryptfs-tpm2/cryptfs-tpm2/0002-luks-setup.sh-Updated-TPM-Tools.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-encrypted-storage/recipes-tpm/cryptfs-tpm2/cryptfs-tpm2/0002-luks-setup.sh-Updated-TPM-Tools.patch -------------------------------------------------------------------------------- /meta-encrypted-storage/recipes-tpm/cryptfs-tpm2/cryptfs-tpm2_git.bb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-encrypted-storage/recipes-tpm/cryptfs-tpm2/cryptfs-tpm2_git.bb -------------------------------------------------------------------------------- /meta-ids/COPYING.MIT: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-ids/COPYING.MIT -------------------------------------------------------------------------------- /meta-ids/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-ids/README.md -------------------------------------------------------------------------------- /meta-ids/conf/layer.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-ids/conf/layer.conf -------------------------------------------------------------------------------- /meta-ids/recipes-base/packagegroups/packagegroup-ids.bb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-ids/recipes-base/packagegroups/packagegroup-ids.bb -------------------------------------------------------------------------------- /meta-ids/recipes-ids/mtree/mtree/0001-compat-glibc-2.33.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-ids/recipes-ids/mtree/mtree/0001-compat-glibc-2.33.patch -------------------------------------------------------------------------------- /meta-ids/recipes-ids/mtree/mtree/configure.ac-automake-error.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-ids/recipes-ids/mtree/mtree/configure.ac-automake-error.patch -------------------------------------------------------------------------------- /meta-ids/recipes-ids/mtree/mtree/mtree-getlogin.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-ids/recipes-ids/mtree/mtree/mtree-getlogin.patch -------------------------------------------------------------------------------- /meta-ids/recipes-ids/mtree/mtree_git.bb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-ids/recipes-ids/mtree/mtree_git.bb -------------------------------------------------------------------------------- /meta-integrity/COPYING.MIT: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-integrity/COPYING.MIT -------------------------------------------------------------------------------- /meta-integrity/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-integrity/README.md -------------------------------------------------------------------------------- /meta-integrity/classes/sign_rpm_ext.bbclass: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-integrity/classes/sign_rpm_ext.bbclass -------------------------------------------------------------------------------- /meta-integrity/conf/layer.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-integrity/conf/layer.conf -------------------------------------------------------------------------------- /meta-integrity/files/ima_signing_blacklist: -------------------------------------------------------------------------------- 1 | kernel-devsrc 2 | -------------------------------------------------------------------------------- /meta-integrity/recipes-base/packagegroups/packagegroup-ima-initramfs.bb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-integrity/recipes-base/packagegroups/packagegroup-ima-initramfs.bb -------------------------------------------------------------------------------- /meta-integrity/recipes-base/packagegroups/packagegroup-ima.bb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-integrity/recipes-base/packagegroups/packagegroup-ima.bb -------------------------------------------------------------------------------- /meta-integrity/recipes-base/packagegroups/packagegroup-ima.inc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-integrity/recipes-base/packagegroups/packagegroup-ima.inc -------------------------------------------------------------------------------- /meta-integrity/recipes-core/base-files/base-files-integrity.inc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-integrity/recipes-core/base-files/base-files-integrity.inc -------------------------------------------------------------------------------- /meta-integrity/recipes-core/base-files/base-files_%.bbappend: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-integrity/recipes-core/base-files/base-files_%.bbappend -------------------------------------------------------------------------------- /meta-integrity/recipes-core/initrdscripts/files/init.ima: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-integrity/recipes-core/initrdscripts/files/init.ima -------------------------------------------------------------------------------- /meta-integrity/recipes-core/initrdscripts/initrdscripts-ima.bb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-integrity/recipes-core/initrdscripts/initrdscripts-ima.bb -------------------------------------------------------------------------------- /meta-integrity/recipes-core/systemd/systemd_%.bbappend: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-integrity/recipes-core/systemd/systemd_%.bbappend -------------------------------------------------------------------------------- /meta-integrity/recipes-core/util-linux/util-linux-integrity.inc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-integrity/recipes-core/util-linux/util-linux-integrity.inc -------------------------------------------------------------------------------- /meta-integrity/recipes-core/util-linux/util-linux_%.bbappend: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-integrity/recipes-core/util-linux/util-linux_%.bbappend -------------------------------------------------------------------------------- /meta-integrity/recipes-devtools/rpm/rpm-integrity.inc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-integrity/recipes-devtools/rpm/rpm-integrity.inc -------------------------------------------------------------------------------- /meta-integrity/recipes-devtools/rpm/rpm/macros.ima: -------------------------------------------------------------------------------- 1 | %_ima_sign_config_files 1 2 | -------------------------------------------------------------------------------- /meta-integrity/recipes-devtools/rpm/rpm_%.bbappend: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-integrity/recipes-devtools/rpm/rpm_%.bbappend -------------------------------------------------------------------------------- /meta-integrity/recipes-kernel/linux/linux-yocto-dev.bbappend: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-integrity/recipes-kernel/linux/linux-yocto-dev.bbappend -------------------------------------------------------------------------------- /meta-integrity/recipes-kernel/linux/linux-yocto-integrity.inc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-integrity/recipes-kernel/linux/linux-yocto-integrity.inc -------------------------------------------------------------------------------- /meta-integrity/recipes-kernel/linux/linux-yocto-rt_5.%.bbappend: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-integrity/recipes-kernel/linux/linux-yocto-rt_5.%.bbappend -------------------------------------------------------------------------------- /meta-integrity/recipes-kernel/linux/linux-yocto/ima.cfg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-integrity/recipes-kernel/linux/linux-yocto/ima.cfg -------------------------------------------------------------------------------- /meta-integrity/recipes-kernel/linux/linux-yocto/ima.scc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-integrity/recipes-kernel/linux/linux-yocto/ima.scc -------------------------------------------------------------------------------- /meta-integrity/recipes-kernel/linux/linux-yocto/integrity.cfg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-integrity/recipes-kernel/linux/linux-yocto/integrity.cfg -------------------------------------------------------------------------------- /meta-integrity/recipes-kernel/linux/linux-yocto/integrity.scc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-integrity/recipes-kernel/linux/linux-yocto/integrity.scc -------------------------------------------------------------------------------- /meta-integrity/recipes-kernel/linux/linux-yocto/modsign.cfg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-integrity/recipes-kernel/linux/linux-yocto/modsign.cfg -------------------------------------------------------------------------------- /meta-integrity/recipes-kernel/linux/linux-yocto/modsign.scc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-integrity/recipes-kernel/linux/linux-yocto/modsign.scc -------------------------------------------------------------------------------- /meta-integrity/recipes-kernel/linux/linux-yocto_5.%.bbappend: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-integrity/recipes-kernel/linux/linux-yocto_5.%.bbappend -------------------------------------------------------------------------------- /meta-integrity/recipes-support/ima-evm-utils/ima-evm-utils/0001-Don-t-build-man-pages.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-integrity/recipes-support/ima-evm-utils/ima-evm-utils/0001-Don-t-build-man-pages.patch -------------------------------------------------------------------------------- /meta-integrity/recipes-support/ima-evm-utils/ima-evm-utils/0001-Install-evmctl-to-sbindir-rather-than-bindir.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-integrity/recipes-support/ima-evm-utils/ima-evm-utils/0001-Install-evmctl-to-sbindir-rather-than-bindir.patch -------------------------------------------------------------------------------- /meta-integrity/recipes-support/ima-evm-utils/ima-evm-utils/0001-ima-evm-utils-include-sys-types.h-in-header-to-fix-b.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-integrity/recipes-support/ima-evm-utils/ima-evm-utils/0001-ima-evm-utils-include-sys-types.h-in-header-to-fix-b.patch -------------------------------------------------------------------------------- /meta-integrity/recipes-support/ima-evm-utils/ima-evm-utils/0001-libimaevm-retrieve-correct-algo-for-v2-signature.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-integrity/recipes-support/ima-evm-utils/ima-evm-utils/0001-libimaevm-retrieve-correct-algo-for-v2-signature.patch -------------------------------------------------------------------------------- /meta-integrity/recipes-support/ima-evm-utils/ima-evm-utils_git.bb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-integrity/recipes-support/ima-evm-utils/ima-evm-utils_git.bb -------------------------------------------------------------------------------- /meta-integrity/recipes-support/ima-inspect/ima-inspect_0.13.bb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-integrity/recipes-support/ima-inspect/ima-inspect_0.13.bb -------------------------------------------------------------------------------- /meta-integrity/recipes-support/ima-policy/files/ima_policy.default: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-integrity/recipes-support/ima-policy/files/ima_policy.default -------------------------------------------------------------------------------- /meta-integrity/recipes-support/ima-policy/ima-policy_0.1.bb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-integrity/recipes-support/ima-policy/ima-policy_0.1.bb -------------------------------------------------------------------------------- /meta-intel-sgx/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-intel-sgx/README.md -------------------------------------------------------------------------------- /meta-intel-sgx/conf/layer.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-intel-sgx/conf/layer.conf -------------------------------------------------------------------------------- /meta-intel-sgx/recipes-kernel/intel-sgx-driver/intel-sgx-driver_2.1.bb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-intel-sgx/recipes-kernel/intel-sgx-driver/intel-sgx-driver_2.1.bb -------------------------------------------------------------------------------- /meta-signing-key/COPYING.MIT: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-signing-key/COPYING.MIT -------------------------------------------------------------------------------- /meta-signing-key/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-signing-key/README.md -------------------------------------------------------------------------------- /meta-signing-key/classes/user-key-store.bbclass: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-signing-key/classes/user-key-store.bbclass -------------------------------------------------------------------------------- /meta-signing-key/conf/layer.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-signing-key/conf/layer.conf -------------------------------------------------------------------------------- /meta-signing-key/files/boot_keys/BOOT-GPG-KEY-SecureBootCore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-signing-key/files/boot_keys/BOOT-GPG-KEY-SecureBootCore -------------------------------------------------------------------------------- /meta-signing-key/files/boot_keys/BOOT-GPG-PRIVKEY-SecureBootCore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-signing-key/files/boot_keys/BOOT-GPG-PRIVKEY-SecureBootCore -------------------------------------------------------------------------------- /meta-signing-key/files/boot_keys/boot_cfg_pw: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-signing-key/files/boot_keys/boot_cfg_pw -------------------------------------------------------------------------------- /meta-signing-key/files/boot_keys/boot_pub_key: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-signing-key/files/boot_keys/boot_pub_key -------------------------------------------------------------------------------- /meta-signing-key/files/ima_keys/x509_ima.der: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-signing-key/files/ima_keys/x509_ima.der -------------------------------------------------------------------------------- /meta-signing-key/files/ima_keys/x509_ima.key: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-signing-key/files/ima_keys/x509_ima.key -------------------------------------------------------------------------------- /meta-signing-key/files/modsign_keys/modsign_key.crt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-signing-key/files/modsign_keys/modsign_key.crt -------------------------------------------------------------------------------- /meta-signing-key/files/modsign_keys/modsign_key.key: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-signing-key/files/modsign_keys/modsign_key.key -------------------------------------------------------------------------------- /meta-signing-key/files/mok_sb_keys/shim_cert.crt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-signing-key/files/mok_sb_keys/shim_cert.crt -------------------------------------------------------------------------------- /meta-signing-key/files/mok_sb_keys/shim_cert.key: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-signing-key/files/mok_sb_keys/shim_cert.key -------------------------------------------------------------------------------- /meta-signing-key/files/mok_sb_keys/vendor_cert.crt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-signing-key/files/mok_sb_keys/vendor_cert.crt -------------------------------------------------------------------------------- /meta-signing-key/files/mok_sb_keys/vendor_cert.key: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-signing-key/files/mok_sb_keys/vendor_cert.key -------------------------------------------------------------------------------- /meta-signing-key/files/mok_sb_keys/wosign_ev_cert.crt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-signing-key/files/mok_sb_keys/wosign_ev_cert.crt -------------------------------------------------------------------------------- /meta-signing-key/files/rpm_keys/RPM-GPG-KEY-SecureCore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-signing-key/files/rpm_keys/RPM-GPG-KEY-SecureCore -------------------------------------------------------------------------------- /meta-signing-key/files/rpm_keys/RPM-GPG-PRIVKEY-SecureCore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-signing-key/files/rpm_keys/RPM-GPG-PRIVKEY-SecureCore -------------------------------------------------------------------------------- /meta-signing-key/files/secondary_trusted_keys/secondary_trusted_key.crt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-signing-key/files/secondary_trusted_keys/secondary_trusted_key.crt -------------------------------------------------------------------------------- /meta-signing-key/files/secondary_trusted_keys/secondary_trusted_key.key: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-signing-key/files/secondary_trusted_keys/secondary_trusted_key.key -------------------------------------------------------------------------------- /meta-signing-key/files/system_trusted_keys/system_trusted_key.crt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-signing-key/files/system_trusted_keys/system_trusted_key.crt -------------------------------------------------------------------------------- /meta-signing-key/files/system_trusted_keys/system_trusted_key.key: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-signing-key/files/system_trusted_keys/system_trusted_key.key -------------------------------------------------------------------------------- /meta-signing-key/files/uefi_sb_keys/DB.crt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-signing-key/files/uefi_sb_keys/DB.crt -------------------------------------------------------------------------------- /meta-signing-key/files/uefi_sb_keys/DB.key: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-signing-key/files/uefi_sb_keys/DB.key -------------------------------------------------------------------------------- /meta-signing-key/files/uefi_sb_keys/DBX/DBX.crt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-signing-key/files/uefi_sb_keys/DBX/DBX.crt -------------------------------------------------------------------------------- /meta-signing-key/files/uefi_sb_keys/DBX/DBX.key: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-signing-key/files/uefi_sb_keys/DBX/DBX.key -------------------------------------------------------------------------------- /meta-signing-key/files/uefi_sb_keys/KEK.crt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-signing-key/files/uefi_sb_keys/KEK.crt -------------------------------------------------------------------------------- /meta-signing-key/files/uefi_sb_keys/KEK.key: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-signing-key/files/uefi_sb_keys/KEK.key -------------------------------------------------------------------------------- /meta-signing-key/files/uefi_sb_keys/PK.crt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-signing-key/files/uefi_sb_keys/PK.crt -------------------------------------------------------------------------------- /meta-signing-key/files/uefi_sb_keys/PK.key: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-signing-key/files/uefi_sb_keys/PK.key -------------------------------------------------------------------------------- /meta-signing-key/files/uefi_sb_keys/ms-DB.crt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-signing-key/files/uefi_sb_keys/ms-DB.crt -------------------------------------------------------------------------------- /meta-signing-key/files/uefi_sb_keys/ms-KEK.crt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-signing-key/files/uefi_sb_keys/ms-KEK.crt -------------------------------------------------------------------------------- /meta-signing-key/recipes-devtools/libsign/files/0001-env.mk-fix-LDFLAGS-expansion.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-signing-key/recipes-devtools/libsign/files/0001-env.mk-fix-LDFLAGS-expansion.patch -------------------------------------------------------------------------------- /meta-signing-key/recipes-devtools/libsign/files/0001-selsign.c-remove-build-time-from-show_banner.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-signing-key/recipes-devtools/libsign/files/0001-selsign.c-remove-build-time-from-show_banner.patch -------------------------------------------------------------------------------- /meta-signing-key/recipes-devtools/libsign/libsign_git.bb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-signing-key/recipes-devtools/libsign/libsign_git.bb -------------------------------------------------------------------------------- /meta-signing-key/recipes-devtools/sbsigntool/sbsigntool/0001-Fix-openssl-3.0-issue-involving-ASN1-xxx_it.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-signing-key/recipes-devtools/sbsigntool/sbsigntool/0001-Fix-openssl-3.0-issue-involving-ASN1-xxx_it.patch -------------------------------------------------------------------------------- /meta-signing-key/recipes-devtools/sbsigntool/sbsigntool/0001-Makefile.am-do-not-use-Werror.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-signing-key/recipes-devtools/sbsigntool/sbsigntool/0001-Makefile.am-do-not-use-Werror.patch -------------------------------------------------------------------------------- /meta-signing-key/recipes-devtools/sbsigntool/sbsigntool/0001-configure-Dont-t-check-for-gnu-efi.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-signing-key/recipes-devtools/sbsigntool/sbsigntool/0001-configure-Dont-t-check-for-gnu-efi.patch -------------------------------------------------------------------------------- /meta-signing-key/recipes-devtools/sbsigntool/sbsigntool/0001-fileio.c-initialize-local-variables-before-use-in-fu.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-signing-key/recipes-devtools/sbsigntool/sbsigntool/0001-fileio.c-initialize-local-variables-before-use-in-fu.patch -------------------------------------------------------------------------------- /meta-signing-key/recipes-devtools/sbsigntool/sbsigntool/0001-src-Makefile.am-Add-read_write_all.c-to-common_SOURC.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-signing-key/recipes-devtools/sbsigntool/sbsigntool/0001-src-Makefile.am-Add-read_write_all.c-to-common_SOURC.patch -------------------------------------------------------------------------------- /meta-signing-key/recipes-devtools/sbsigntool/sbsigntool/0002-docs-Don-t-build-man-pages.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-signing-key/recipes-devtools/sbsigntool/sbsigntool/0002-docs-Don-t-build-man-pages.patch -------------------------------------------------------------------------------- /meta-signing-key/recipes-devtools/sbsigntool/sbsigntool/0003-sbsign-add-x-option-to-avoid-overwrite-existing-sign.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-signing-key/recipes-devtools/sbsigntool/sbsigntool/0003-sbsign-add-x-option-to-avoid-overwrite-existing-sign.patch -------------------------------------------------------------------------------- /meta-signing-key/recipes-devtools/sbsigntool/sbsigntool_git.bb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-signing-key/recipes-devtools/sbsigntool/sbsigntool_git.bb -------------------------------------------------------------------------------- /meta-signing-key/recipes-support/key-store/key-store_0.1.bb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-signing-key/recipes-support/key-store/key-store_0.1.bb -------------------------------------------------------------------------------- /meta-signing-key/scripts/create-user-key-store.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-signing-key/scripts/create-user-key-store.sh -------------------------------------------------------------------------------- /meta-signing-key/scripts/openssl.cnf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-signing-key/scripts/openssl.cnf -------------------------------------------------------------------------------- /meta-tpm/COPYING.MIT: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm/COPYING.MIT -------------------------------------------------------------------------------- /meta-tpm/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm/README.md -------------------------------------------------------------------------------- /meta-tpm/conf/layer.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm/conf/layer.conf -------------------------------------------------------------------------------- /meta-tpm/recipes-base/packagegroups/packagegroup-tpm.bb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm/recipes-base/packagegroups/packagegroup-tpm.bb -------------------------------------------------------------------------------- /meta-tpm/recipes-kernel/linux/linux-yocto-dev.bbappend: -------------------------------------------------------------------------------- 1 | require linux-yocto-tpm.inc 2 | -------------------------------------------------------------------------------- /meta-tpm/recipes-kernel/linux/linux-yocto-rt_5.%.bbappend: -------------------------------------------------------------------------------- 1 | require linux-yocto-tpm.inc 2 | -------------------------------------------------------------------------------- /meta-tpm/recipes-kernel/linux/linux-yocto-tpm.inc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm/recipes-kernel/linux/linux-yocto-tpm.inc -------------------------------------------------------------------------------- /meta-tpm/recipes-kernel/linux/linux-yocto/tpm.cfg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm/recipes-kernel/linux/linux-yocto/tpm.cfg -------------------------------------------------------------------------------- /meta-tpm/recipes-kernel/linux/linux-yocto/tpm.scc: -------------------------------------------------------------------------------- 1 | define KFEATURE_DESCRIPTION "TPM 1.x enablement" 2 | 3 | kconf hardware tpm.cfg 4 | -------------------------------------------------------------------------------- /meta-tpm/recipes-kernel/linux/linux-yocto_5.%.bbappend: -------------------------------------------------------------------------------- 1 | require linux-yocto-tpm.inc 2 | -------------------------------------------------------------------------------- /meta-tpm/recipes-tpm/openssl-tpm-engine/files/0001-create-tpm-key-support-well-known-key-option.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm/recipes-tpm/openssl-tpm-engine/files/0001-create-tpm-key-support-well-known-key-option.patch -------------------------------------------------------------------------------- /meta-tpm/recipes-tpm/openssl-tpm-engine/files/0002-libtpm-support-env-TPM_SRK_PW.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm/recipes-tpm/openssl-tpm-engine/files/0002-libtpm-support-env-TPM_SRK_PW.patch -------------------------------------------------------------------------------- /meta-tpm/recipes-tpm/openssl-tpm-engine/files/0003-tpm-openssl-tpm-engine-parse-an-encrypted-tpm-SRK-pa.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm/recipes-tpm/openssl-tpm-engine/files/0003-tpm-openssl-tpm-engine-parse-an-encrypted-tpm-SRK-pa.patch -------------------------------------------------------------------------------- /meta-tpm/recipes-tpm/openssl-tpm-engine/files/0004-tpm-openssl-tpm-engine-change-variable-c-type-from-c.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm/recipes-tpm/openssl-tpm-engine/files/0004-tpm-openssl-tpm-engine-change-variable-c-type-from-c.patch -------------------------------------------------------------------------------- /meta-tpm/recipes-tpm/openssl-tpm-engine/files/0005-tpm-openssl-tpm-engine-parse-an-encrypted-TPM-key-pa.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm/recipes-tpm/openssl-tpm-engine/files/0005-tpm-openssl-tpm-engine-parse-an-encrypted-TPM-key-pa.patch -------------------------------------------------------------------------------- /meta-tpm/recipes-tpm/openssl-tpm-engine/files/openssl11_build_fix.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm/recipes-tpm/openssl-tpm-engine/files/openssl11_build_fix.patch -------------------------------------------------------------------------------- /meta-tpm/recipes-tpm/openssl-tpm-engine/openssl-tpm-engine_0.5.0.bb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm/recipes-tpm/openssl-tpm-engine/openssl-tpm-engine_0.5.0.bb -------------------------------------------------------------------------------- /meta-tpm/recipes-tpm/pcr-extend/pcr-extend_git.bb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm/recipes-tpm/pcr-extend/pcr-extend_git.bb -------------------------------------------------------------------------------- /meta-tpm/recipes-tpm/tpm-quote-tools/tpm-quote-tools_git.bb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm/recipes-tpm/tpm-quote-tools/tpm-quote-tools_git.bb -------------------------------------------------------------------------------- /meta-tpm/recipes-tpm/tpm-tools/files/03-fix-bool-error-parseStringWithValues.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm/recipes-tpm/tpm-tools/files/03-fix-bool-error-parseStringWithValues.patch -------------------------------------------------------------------------------- /meta-tpm/recipes-tpm/tpm-tools/files/tpm-tools-extendpcr.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm/recipes-tpm/tpm-tools/files/tpm-tools-extendpcr.patch -------------------------------------------------------------------------------- /meta-tpm/recipes-tpm/tpm-tools/tpm-tools_git.bb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm/recipes-tpm/tpm-tools/tpm-tools_git.bb -------------------------------------------------------------------------------- /meta-tpm/recipes-tpm/trousers/files/Fix-segment-fault-if-client-hostname-cannot-be-retri.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm/recipes-tpm/trousers/files/Fix-segment-fault-if-client-hostname-cannot-be-retri.patch -------------------------------------------------------------------------------- /meta-tpm/recipes-tpm/trousers/files/fix-deadlock-and-potential-hung.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm/recipes-tpm/trousers/files/fix-deadlock-and-potential-hung.patch -------------------------------------------------------------------------------- /meta-tpm/recipes-tpm/trousers/files/fix-event-log-parsing-problem.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm/recipes-tpm/trousers/files/fix-event-log-parsing-problem.patch -------------------------------------------------------------------------------- /meta-tpm/recipes-tpm/trousers/files/fix-incorrect-report-of-insufficient-buffer.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm/recipes-tpm/trousers/files/fix-incorrect-report-of-insufficient-buffer.patch -------------------------------------------------------------------------------- /meta-tpm/recipes-tpm/trousers/files/get-user-ps-path-use-POSIX-getpwent-instead-of-getpwe.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm/recipes-tpm/trousers/files/get-user-ps-path-use-POSIX-getpwent-instead-of-getpwe.patch -------------------------------------------------------------------------------- /meta-tpm/recipes-tpm/trousers/files/tcsd.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm/recipes-tpm/trousers/files/tcsd.conf -------------------------------------------------------------------------------- /meta-tpm/recipes-tpm/trousers/files/tcsd.service: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm/recipes-tpm/trousers/files/tcsd.service -------------------------------------------------------------------------------- /meta-tpm/recipes-tpm/trousers/files/trousers-conditional-compile-DES-related-code.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm/recipes-tpm/trousers/files/trousers-conditional-compile-DES-related-code.patch -------------------------------------------------------------------------------- /meta-tpm/recipes-tpm/trousers/files/trousers-udev.rules: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm/recipes-tpm/trousers/files/trousers-udev.rules -------------------------------------------------------------------------------- /meta-tpm/recipes-tpm/trousers/files/trousers.init.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm/recipes-tpm/trousers/files/trousers.init.sh -------------------------------------------------------------------------------- /meta-tpm/recipes-tpm/trousers/trousers_git.bb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm/recipes-tpm/trousers/trousers_git.bb -------------------------------------------------------------------------------- /meta-tpm/recipes-tpm/tss-testsuite/files/Tspi_TPM_CreateIdentityWithCallbacks_no_des.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm/recipes-tpm/tss-testsuite/files/Tspi_TPM_CreateIdentityWithCallbacks_no_des.patch -------------------------------------------------------------------------------- /meta-tpm/recipes-tpm/tss-testsuite/files/Tspi_TPM_CreateIdentity_no_des.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm/recipes-tpm/tss-testsuite/files/Tspi_TPM_CreateIdentity_no_des.patch -------------------------------------------------------------------------------- /meta-tpm/recipes-tpm/tss-testsuite/files/Tspi_TPM_LoadMaintenancePubKey01.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm/recipes-tpm/tss-testsuite/files/Tspi_TPM_LoadMaintenancePubKey01.patch -------------------------------------------------------------------------------- /meta-tpm/recipes-tpm/tss-testsuite/files/common_c_no_des.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm/recipes-tpm/tss-testsuite/files/common_c_no_des.patch -------------------------------------------------------------------------------- /meta-tpm/recipes-tpm/tss-testsuite/files/fix-failure-of-.so-LD-with-cortexa8t-neon-wrswrap-linux.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm/recipes-tpm/tss-testsuite/files/fix-failure-of-.so-LD-with-cortexa8t-neon-wrswrap-linux.patch -------------------------------------------------------------------------------- /meta-tpm/recipes-tpm/tss-testsuite/files/testsuite-transport-init.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm/recipes-tpm/tss-testsuite/files/testsuite-transport-init.patch -------------------------------------------------------------------------------- /meta-tpm/recipes-tpm/tss-testsuite/files/transport-Tspi_TPM_Delegate.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm/recipes-tpm/tss-testsuite/files/transport-Tspi_TPM_Delegate.patch -------------------------------------------------------------------------------- /meta-tpm/recipes-tpm/tss-testsuite/tss-testsuite_git.bb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm/recipes-tpm/tss-testsuite/tss-testsuite_git.bb -------------------------------------------------------------------------------- /meta-tpm2/COPYING.MIT: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm2/COPYING.MIT -------------------------------------------------------------------------------- /meta-tpm2/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm2/README.md -------------------------------------------------------------------------------- /meta-tpm2/conf/layer.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm2/conf/layer.conf -------------------------------------------------------------------------------- /meta-tpm2/recipes-base/packagegroups/packagegroup-tpm2-initramfs.bb: -------------------------------------------------------------------------------- 1 | require packagegroup-tpm2.inc 2 | -------------------------------------------------------------------------------- /meta-tpm2/recipes-base/packagegroups/packagegroup-tpm2.bb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm2/recipes-base/packagegroups/packagegroup-tpm2.bb -------------------------------------------------------------------------------- /meta-tpm2/recipes-base/packagegroups/packagegroup-tpm2.inc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm2/recipes-base/packagegroups/packagegroup-tpm2.inc -------------------------------------------------------------------------------- /meta-tpm2/recipes-kernel/linux/linux-yocto-dev.bbappend: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm2/recipes-kernel/linux/linux-yocto-dev.bbappend -------------------------------------------------------------------------------- /meta-tpm2/recipes-kernel/linux/linux-yocto-rt_5.%.bbappend: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm2/recipes-kernel/linux/linux-yocto-rt_5.%.bbappend -------------------------------------------------------------------------------- /meta-tpm2/recipes-kernel/linux/linux-yocto-tpm2.inc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm2/recipes-kernel/linux/linux-yocto-tpm2.inc -------------------------------------------------------------------------------- /meta-tpm2/recipes-kernel/linux/linux-yocto/tpm2.cfg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm2/recipes-kernel/linux/linux-yocto/tpm2.cfg -------------------------------------------------------------------------------- /meta-tpm2/recipes-kernel/linux/linux-yocto/tpm2.scc: -------------------------------------------------------------------------------- 1 | define KFEATURE_DESCRIPTION "TPM 2.x enablement" 2 | 3 | kconf hardware tpm2.cfg 4 | 5 | -------------------------------------------------------------------------------- /meta-tpm2/recipes-kernel/linux/linux-yocto_5.%.bbappend: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm2/recipes-kernel/linux/linux-yocto_5.%.bbappend -------------------------------------------------------------------------------- /meta-tpm2/recipes-tpm/tpm2-abrmd/files/0001-Remove-obsolete-setting-regarding-the-Standard-Outpu.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm2/recipes-tpm/tpm2-abrmd/files/0001-Remove-obsolete-setting-regarding-the-Standard-Outpu.patch -------------------------------------------------------------------------------- /meta-tpm2/recipes-tpm/tpm2-abrmd/files/tpm2-abrmd-init.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm2/recipes-tpm/tpm2-abrmd/files/tpm2-abrmd-init.sh -------------------------------------------------------------------------------- /meta-tpm2/recipes-tpm/tpm2-abrmd/files/tpm2-abrmd.default: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm2/recipes-tpm/tpm2-abrmd/files/tpm2-abrmd.default -------------------------------------------------------------------------------- /meta-tpm2/recipes-tpm/tpm2-abrmd/tpm2-abrmd_2.3.3.bb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm2/recipes-tpm/tpm2-abrmd/tpm2-abrmd_2.3.3.bb -------------------------------------------------------------------------------- /meta-tpm2/recipes-tpm/tpm2-tools/files/0001-build-only-use-Werror-for-non-release-builds.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm2/recipes-tpm/tpm2-tools/files/0001-build-only-use-Werror-for-non-release-builds.patch -------------------------------------------------------------------------------- /meta-tpm2/recipes-tpm/tpm2-tools/files/0001-tests-switch-to-python3.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm2/recipes-tpm/tpm2-tools/files/0001-tests-switch-to-python3.patch -------------------------------------------------------------------------------- /meta-tpm2/recipes-tpm/tpm2-tools/tpm2-tools_4.3.2.bb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm2/recipes-tpm/tpm2-tools/tpm2-tools_4.3.2.bb -------------------------------------------------------------------------------- /meta-tpm2/recipes-tpm/tpm2-tss/tpm2-tss/0001-Drop-support-for-OpenSSL-1.1.0.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm2/recipes-tpm/tpm2-tss/tpm2-tss/0001-Drop-support-for-OpenSSL-1.1.0.patch -------------------------------------------------------------------------------- /meta-tpm2/recipes-tpm/tpm2-tss/tpm2-tss/0002-Implement-EVP_PKEY-export-import-for-OpenSSL-3.0.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm2/recipes-tpm/tpm2-tss/tpm2-tss/0002-Implement-EVP_PKEY-export-import-for-OpenSSL-3.0.patch -------------------------------------------------------------------------------- /meta-tpm2/recipes-tpm/tpm2-tss/tpm2-tss/0003-Remove-deprecated-OpenSSL_add_all_algorithms.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm2/recipes-tpm/tpm2-tss/tpm2-tss/0003-Remove-deprecated-OpenSSL_add_all_algorithms.patch -------------------------------------------------------------------------------- /meta-tpm2/recipes-tpm/tpm2-tss/tpm2-tss_2.4.6.bb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta-tpm2/recipes-tpm/tpm2-tss/tpm2-tss_2.4.6.bb -------------------------------------------------------------------------------- /meta/COPYING.MIT: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta/COPYING.MIT -------------------------------------------------------------------------------- /meta/README: -------------------------------------------------------------------------------- 1 | ../README -------------------------------------------------------------------------------- /meta/conf/layer.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta/conf/layer.conf -------------------------------------------------------------------------------- /meta/recipes-core/images/kernel-initramfs.bb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta/recipes-core/images/kernel-initramfs.bb -------------------------------------------------------------------------------- /meta/recipes-core/images/secure-core-image-initramfs.bb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta/recipes-core/images/secure-core-image-initramfs.bb -------------------------------------------------------------------------------- /meta/recipes-core/images/secure-core-image.bb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta/recipes-core/images/secure-core-image.bb -------------------------------------------------------------------------------- /meta/recipes-core/images/secure-core-image.inc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta/recipes-core/images/secure-core-image.inc -------------------------------------------------------------------------------- /meta/recipes-core/images/secure-core-minimal-image.bb: -------------------------------------------------------------------------------- 1 | require secure-core-image.inc 2 | -------------------------------------------------------------------------------- /meta/recipes-core/initrdscripts/files/init: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta/recipes-core/initrdscripts/files/init -------------------------------------------------------------------------------- /meta/recipes-core/initrdscripts/initrdscripts-secure-core.bb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiazhang0/meta-secure-core/HEAD/meta/recipes-core/initrdscripts/initrdscripts-secure-core.bb --------------------------------------------------------------------------------