Posts
5173
Following
336
Followers
512
Linux kernel hacker and maintainer etc.

OpenPGP: 3AB05486C7752FE1
jarkko

Jarkko Sakkinen

Edited yesterday
Test code I have cleaned up relocated:

https://git.kernel.org/pub/scm/linux/kernel/git/jarkko/vcam-test.git

From this i spin off at least some kind of initial kselftest.
1
0
0
jarkko

Jarkko Sakkinen

Edited 6 days ago
Here vcam-test outputs to /dev/vcam and in sequence streams /dev/video0 and renders the output to KMS/DRM initialized frame buffer.

I need to flatten the ioctl interface of /dev/vcam a bit but otherwise this is looking pretty reasonable...
0
0
1
jarkko

Jarkko Sakkinen

lol, who would guessed: tony blair is in the executive board

... and trump just called brits who participated to Nato wars as "losers"

🇬🇧
0
1
1
jarkko

Jarkko Sakkinen

Reply to @lnl@screaminginsi.de
@lnl it would not be the same :-/
0
0
1
jarkko

Jarkko Sakkinen

Edited 28 days ago
shout out both to my personal friends (which there are many) in denmark, and also danish colleagues and collaborators in open source!

#denmark #greenland
1
1
4
jarkko

Jarkko Sakkinen

cool i did not know this but noticed by accident that gpu-screen-recorder seems to capture also audio from DAW flawlessly :-)
0
0
2
jarkko

Jarkko Sakkinen

a bit over 18 years working from home :-) could not imagine myself working in an office
0
0
2
jarkko

Jarkko Sakkinen

installed a webcam in order to make a better appearance at telcos ;-)
1
0
1
jarkko

Jarkko Sakkinen

I think it would be great if we put endorsement certificates for sysfs.

I.e. with very little code/scripting on can then provide tools and means for remote attestation server to generate challenges (e.g. during OS installation).

#linux #kernel #tpm
0
0
1
jarkko

Jarkko Sakkinen

Awesome, it went through first time. Finally had time to actually enable secure boot with sbctl.

Here’s what I did:

  1. Enabled secure boot in custom mode (i.e., not standard mode) from BIOS settings.
  2. Erased all keys. This triggers so called “setup mode” for the next boot.
  3. Typed bunch of random commands :-)

I did the script couple of weeks ago but did not have time to test it live (until now).

1
0
2
jarkko

Jarkko Sakkinen

Couple of new features:

1. Creates and loads both 'loadable' and 'importable' keys from external keys.
2. tpm2sh load has now --load flag to load a generated keyedhash key as a trusted key to the kernel keyring.

#linux #kernel #tpm #rustlang
0
0
2
jarkko

Jarkko Sakkinen

Edited 2 months ago
I've been fine-tuning the policy and caching engine in tpm2sh a lot and next version will allow to:

1. View policy as an expression via 'tpm2sh memory -p <handle>'
2. Create primary keys with arbitrary policies (was not just done nothing special in it).
3. Creating, viewing and maintaining policies for persistent keys.

These sort of come as "side-effect" of just cleaning up and polishing the groundwork :-)

#linux #tpm #rustlang
0
0
1
jarkko

Jarkko Sakkinen

tdf is superb with e.g. Intel SDM, ACPI and TCG specs :-)
1
0
1
jarkko

Jarkko Sakkinen

Reply to @jarkko
@Foxboron As you can see from this screenshot from few days ago it is "somewhat compatible". I need to test out it next with sbctl.
0
0
1
jarkko

Jarkko Sakkinen

what the fuck is youtube offering to me
1
0
0
jarkko

Jarkko Sakkinen

This screenshot shows strong evidence of:

1. OpenSSL cross-compatibility.
2. tpm2-tools cross-compatibility.
3. Linux kernel compatibility (as in trusted keys and in future also asymmetric keys).

#linux #kernel #tpm #rustlang
0
0
3
jarkko

Jarkko Sakkinen

Reply to @jarkko
0.15.21
0
0
0
jarkko

Jarkko Sakkinen

As of tpm2sh 0.15.14 my microecosystem :-)

#linux #tpm #rustlang
1
0
0
jarkko

Jarkko Sakkinen

In tpm2sh 0.15.14 TPMKey ASN.1 policy engine starts to be actually stable. I've committed into not expanding features up until key and cache management are polished and it starts to deliver results :-)

#linux #tpm #rustlang
0
0
0
jarkko

Jarkko Sakkinen

Reply to @mupuf@social.treehouse.systems
Edited 2 months ago
@mupuf,
Ya, looks great!

I've started to use this package for Typst called 'pitorita', which allows to do diagrams embedded to the document you should check this out:

https://typst.app/universe/package/pintorita/

IMHO, it's also investment to decks with typst because you get from every presentation bunch of re-usable slides and diagrams :-)
0
0
1
Show older
About social.kernel.org

Terms of service

  1. Please do not use this service in violation of the Linux Kernel Code of Conduct. Doing so will result in your account suspension with the referral of the matter to the CoC committee.

  2. "Repeating"/"boosting" someone else's status on this platform will be treated as endorsement and will fall under rule #1.

  3. You are encouraged to use this platform to promote your work on the Linux Kernel, but there is no restriction on permitted topics (with the exception of anything covered by #1 above).

  4. There is no requirement to post in English, but it should be considered the primary language of communication on this platform.

Privacy notice

The admins of this service have access to all posted statuses. They aren't looking, but if it's something they shouldn't know about, then you should not post it on this platform.

Please see the Linux Foundation Privacy Policy, which applies to this platform as well.

Getting your own account

If you would like an account on this instance, please check that the following applies to you:

  • You are listed in MAINTAINERS or CREDITS

  • OR: You have a kernel.org account or email address

  • OR: You have a long and established history of involvement with the Linux Kernel

If the above is true and you agree with the Terms of Service and Privacy Notice listed above, please use these instructions to request an account: