| Message ID | 20251208124001.775057-1-sjg@u-boot.org |
|---|---|
| Headers |
Return-Path: <concept-bounces+u-boot-concept=u-boot.org@u-boot.org> X-Original-To: u-boot-concept@u-boot.org Delivered-To: u-boot-concept@u-boot.org DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=u-boot.org; s=default; t=1765197616; bh=D1OVa+fN3yvAQ6pNqmpMgdIoTWPI4Tkfv4qrHRyb4y8=; h=From:To:Date:CC:Subject:List-Id:List-Archive:List-Help:List-Owner: List-Post:List-Subscribe:List-Unsubscribe:From; b=cqATL9ooBqhmM1QYLitxvQcvOjwXLOa4H5N6FyOzJ4tGPvRYPLAtWWHWLGfTy7M9C w5o0nWOgMUAavMKFwlQqte9BqG9nW48nuNP69u0Tbp8pMfyUfarlUqBcMdbPQawvTb 7LiPrFwH+0p8m2snB9TWHpWjogZuARU6+0A3pnZ6cPW+cgNzp8wgLBawgTJcZHdDNe MeXL/eSAd7YjPLd8WohVz6aEqYjYVOL/uFARSneu3xquD7rV7gejre6+aUqax1O8eE 9dTsc5I5lyAN/thZWMrljDwOdzK44lL4nMonOA8H7uVjeL6KIB1x0tu46E+tXoBp9F fu2P3Yu6wcePw== Received: from localhost (localhost [127.0.0.1]) by mail.u-boot.org (Postfix) with ESMTP id 9DF8A68A00 for <u-boot-concept@u-boot.org>; Mon, 8 Dec 2025 05:40:16 -0700 (MST) X-Virus-Scanned: Debian amavis at Received: from mail.u-boot.org ([127.0.0.1]) by localhost (mail.u-boot.org [127.0.0.1]) (amavis, port 10024) with ESMTP id 3CovmGiRNx3C for <u-boot-concept@u-boot.org>; Mon, 8 Dec 2025 05:40:16 -0700 (MST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=u-boot.org; s=default; t=1765197616; bh=D1OVa+fN3yvAQ6pNqmpMgdIoTWPI4Tkfv4qrHRyb4y8=; h=From:To:Date:CC:Subject:List-Id:List-Archive:List-Help:List-Owner: List-Post:List-Subscribe:List-Unsubscribe:From; b=cqATL9ooBqhmM1QYLitxvQcvOjwXLOa4H5N6FyOzJ4tGPvRYPLAtWWHWLGfTy7M9C w5o0nWOgMUAavMKFwlQqte9BqG9nW48nuNP69u0Tbp8pMfyUfarlUqBcMdbPQawvTb 7LiPrFwH+0p8m2snB9TWHpWjogZuARU6+0A3pnZ6cPW+cgNzp8wgLBawgTJcZHdDNe MeXL/eSAd7YjPLd8WohVz6aEqYjYVOL/uFARSneu3xquD7rV7gejre6+aUqax1O8eE 9dTsc5I5lyAN/thZWMrljDwOdzK44lL4nMonOA8H7uVjeL6KIB1x0tu46E+tXoBp9F fu2P3Yu6wcePw== Received: from mail.u-boot.org (localhost [127.0.0.1]) by mail.u-boot.org (Postfix) with ESMTP id 75B48689FB for <u-boot-concept@u-boot.org>; Mon, 8 Dec 2025 05:40:16 -0700 (MST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=u-boot.org; s=default; t=1765197614; bh=QbXZVdaetZXS70VlVnTx9LryQHRTbsQ3a1djPxmSbHQ=; h=From:To:Cc:Subject:Date:From; b=cmg1ROkl3RKM3c95J5pYZ3GgN1PaeXjsQFeE5pAlo+chr2o2GasRxYh7pPusNBsYu b6f7RbKI5mYMQFnoDvAi1iSKd8h7A8l692qYf4j01a9lxRo+Kth1z2P+ZVC7flfvDF IFye2SYSE04PQGWO8tsUSyGcbN87XOt455BUvL4WQlAAyPjbivMLD8L9xi6Oi0N4yb fPzfVYvO3h9GY8kclaNJ8B0k2beDk134ZKHlMBFgzelVTMrieFF7b9o+wIcgggeP1D tLOtB9fP+6nxp2kgdODHexy7z+Wy32mYUWpPsvQCkBysr0LLeixPtW/9NYobAZyVgo n0RsomUxQUstA== Received: from localhost (localhost [127.0.0.1]) by mail.u-boot.org (Postfix) with ESMTP id 85BFB68988; Mon, 8 Dec 2025 05:40:14 -0700 (MST) X-Virus-Scanned: Debian amavis at Received: from mail.u-boot.org ([127.0.0.1]) by localhost (mail.u-boot.org [127.0.0.1]) (amavis, port 10026) with ESMTP id m3TyMoL6IAYi; Mon, 8 Dec 2025 05:40:14 -0700 (MST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=u-boot.org; s=default; t=1765197609; bh=AMj5xT0MmBai6axkWUD+6V5HDEcGZC8VvcsnnVHZ+Dk=; h=From:To:Cc:Subject:Date:From; b=NUsCfgZBUOVp6MGfsM9kKDhnoyWvu4n0s70A2EhXU1LhVJO5NI+JuQoVP90tbc9Jw NhXEk3A3hoH9HCJpOpndsb/VrOxYf8gys8YSpRgenaIl1XewTFTeM4dOlE+/2tBicY 6gFg3e/TXENmuome8V9ATyQPVXD02BB7RDwjgKMgYjuCYxRcQKQTcLukS42Mztnr/l H0ZYHNpsQ5t4qPEROe2fUH2FBDtotMSlH7F9Y4wxtQTEy0GxfzDH05/cV5hS5KtuZ5 +D0MCSzZ5mlvJOV6j+qburI/OslV26XYkjcrEv/58J2b6IGaMozC7UWde3FziG2m/F j1W8tgpxRpOYw== Received: from u-boot.org (unknown [73.34.74.121]) by mail.u-boot.org (Postfix) with ESMTPSA id B54A46895C; Mon, 8 Dec 2025 05:40:09 -0700 (MST) From: Simon Glass <sjg@u-boot.org> To: U-Boot Concept <concept@u-boot.org> Date: Mon, 8 Dec 2025 05:39:49 -0700 Message-ID: <20251208124001.775057-1-sjg@u-boot.org> X-Mailer: git-send-email 2.43.0 MIME-Version: 1.0 Message-ID-Hash: QBIY3T6FMWBCFSUNYJK7OU7O4GAZEWEB X-Message-ID-Hash: QBIY3T6FMWBCFSUNYJK7OU7O4GAZEWEB X-MailFrom: sjg@u-boot.org X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; loop; banned-address; emergency; member-moderation; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header CC: Simon Glass <simon.glass@canonical.com> X-Mailman-Version: 3.3.10 Precedence: list Subject: [Concept] [PATCH 0/7] luks: Complete TKey implementation List-Id: Discussion and patches related to U-Boot Concept <concept.u-boot.org> Archived-At: <https://lists.u-boot.org/archives/list/concept@u-boot.org/message/QBIY3T6FMWBCFSUNYJK7OU7O4GAZEWEB/> List-Archive: <https://lists.u-boot.org/archives/list/concept@u-boot.org/> List-Help: <mailto:concept-request@u-boot.org?subject=help> List-Owner: <mailto:concept-owner@u-boot.org> List-Post: <mailto:concept@u-boot.org> List-Subscribe: <mailto:concept-join@u-boot.org> List-Unsubscribe: <mailto:concept-leave@u-boot.org> Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit |
| Series |
luks: Complete TKey implementation
|
|
Message
Simon Glass
Dec. 8, 2025, 12:39 p.m. UTC
From: Simon Glass <simon.glass@canonical.com>
This series finishes off the TKey implementation, including an expo
menu (bootctl), a Python script to automate common operations and some
documentation to pull it all together.
Simon Glass (7):
luks: Correct condition for calling handle_encrypted()
test: fs_helper: Support LUKS keyfile and master key
test: Add mmc13 and mmc14 devices for TKey and pre-derived
test: luks: Add test for pre-derived master key unlock
test: bootctl: Add passphrase UI and TKey unlock tests
scripts: Add tkey_fde_key.py for TKey disk encryption
doc: Add TKey full disk encryption documentation
arch/sandbox/dts/test.dts | 16 +
boot/bootctl/logic.c | 2 +-
doc/usage/blkmap.rst | 24 +
doc/usage/cmd/blkmap.rst | 2 +
doc/usage/cmd/bootflow.rst | 25 +
doc/usage/cmd/luks.rst | 2 +
doc/usage/cmd/tkey.rst | 2 +
doc/usage/index.rst | 1 +
doc/usage/luks.rst | 19 +-
doc/usage/tkey-fde.rst | 585 ++++++++++
scripts/tkey_fde_key.py | 2003 +++++++++++++++++++++++++++++++++++
test/boot/bootctl/bootctl.c | 433 +++++++-
test/boot/luks.c | 52 +
test/py/img/common.py | 13 +-
test/py/img/ubuntu.py | 12 +-
test/py/tests/fs_helper.py | 66 +-
test/py/tests/test_ut.py | 32 +
17 files changed, 3261 insertions(+), 28 deletions(-)
create mode 100644 doc/usage/tkey-fde.rst
create mode 100755 scripts/tkey_fde_key.py