]> git.ipfire.org Git - thirdparty/systemd.git/commit
projects / thirdparty / systemd.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: ab39d29) | patch
Assign noDA attribute to TPM2 objects not dependant on a PIN 30728/head
authorGabríel Arthúr Pétursson <gabriel.petursson@marel.com>
Wed, 3 Jan 2024 15:59:14 +0000 (15:59 +0000)
committerGabríel Arthúr Pétursson <gabriel.petursson@marel.com>
Thu, 4 Jan 2024 15:52:37 +0000 (15:52 +0000)
commit9bf91584c837ff7d2399b51c11692de81a7ddc27
treeeed6b47a644b9ce6ef15dabf079bbaa7e06f7965tree | snapshot
parentab39d29606e5604bbf4adf50c45e78271d7482a0commit | diff
Assign noDA attribute to TPM2 objects not dependant on a PIN

All the keys are high-entropy keys that cannot be practically
bruteforced and thus don't require protection from dictionary attacks.
With the exception of PINs, of course, which are low-entropy and user
provided.

Note that a new enrollment is required for unlocking while in DA
lockdown to function. Existing enrollments are subject to DA lockout.

Fixes: #30330
src/shared/tpm2-util.c diff | blob | blame | history
Unnamed repository; edit this file 'description' to name the repository.