From: Quirin Gylstorff <quirin.gylstorff@...> This allows testing the tpm2 encryption with qemu. Signed-off-by: Quirin Gylstorff <quirin.gylstorff@...> --- start-qemu.sh | 23 ++++++++++++++++++----- 1

From: Quirin Gylstorff <quirin.gylstorff@...> Signed-off-by: Quirin Gylstorff <quirin.gylstorff@...> --- .gitlab-ci.yml | 13 +++++++++++++ 1 file changed, 13 insertions(+) diff --git a/.gitlab-ci.yml

From: Quirin Gylstorff <quirin.gylstorff@...> Signed-off-by: Quirin Gylstorff <quirin.gylstorff@...> --- Kconfig | 8 ++++++++ 1 file changed, 8 insertions(+) diff --git a/Kconfig b/Kconfig index cd24c

From: Quirin Gylstorff <quirin.gylstorff@...> If /var shall be encrypted encrypt_partition needs to be executed before the overlay script. If the prerequisite is not available the overlay script will

From: Quirin Gylstorff <quirin.gylstorff@...> This encrypts a partition with LUKS and uses the TPM2 to unlock the partition during boot. Adapt start-qemu to support tpm2. Changes v2: - rewrite for mul

From: Quirin Gylstorff <quirin.gylstorff@...> Signed-off-by: Quirin Gylstorff <quirin.gylstorff@...> --- recipes-kernel/linux/linux-cip-common.inc | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-)

Dear Purchaser, Good day to you. This is Alice from Hard Find Electronics Ltd. We specialize in electronics component distribution like IC, capacitor, resistor, diodes, etc. ICs: Altera, Xilinx, TI, M

Changes since v4: - append default sw-description path (instead of prepending) - remove IMAGE_CLASSES used in kas in correct patch - remove IMAGE_CLASSES from documentation (is now handled automatical

This patch reworks the implementation of the swupdate type. All generic aspects are moved from the swupdate.inc file into the swupdate class and made conditional on the swu type. The sw-description fi

Hi all, Kindly be reminded to attend the weekly meeting through IRC to discuss technical topics with CIP kernel today. Our channel is the following: irc:irc.libera.chat:6667/cip The IRC meeting is sch

This patch moves the partition uuid check into a task to only execute the logic in case an swu image is built. Previously this was checked at parse time, leading to errors when not setting these varia

This patch simplifies the integration of verity with swupdate. We now directly copy the generated verity image into the swu file, instead of going via wic. This solves the issue with leading partition

This patch ensures that all variables used in the swupdate.bbclass are either only active when swu is selected, or are prefixed with SWU. By that, we avoid accidental name collisions in the image reci

This patch replaces the custom compression logic for the rootfs in the swupdate swu file by using the imagetype infrastructure. This handles some corner-cases and in general streamlines the options us

Remove the filesystem attribute from the images object, as this can only be applied to files objects. Signed-off-by: Felix Moessbauer <felix.moessbauer@...> --- recipes-core/images/swu/sw-description.

This patch reworks the generation of the swu file. Instead of using the rootfs partition created by wic, we directly use the squashfs rootfs as default. By that, we do not have to deploy the WIC parti

This patch registers the provided image classes via the bblayer.conf file. By that, no manual additions of these classes via kas is required and erronous implementations are detected early (e.g. manda

Hi ! It's this week's CVE report. This week reported 2 new CVEs and no updated CVEs. * New CVEs CVE-2022-27672: Cross-Thread Return Address Predictions CVSS v3 score is not provided When SMT is enable

This patch reworks the implementation of the swupdate type. All generic aspects are moved from the swupdate.inc file into the swupdate class and made conditional on the swu type. The sw-description fi

This patch adds the mapping between the efi architecture and the distro architecture for riscv64. Signed-off-by: Felix Moessbauer <felix.moessbauer@...> --- scripts/lib/wic/plugins/source/efibootguard