action #107488
closed[sle][security][sle15sp4]][automation]Unlocking LUKS volumes with TPM2 or FIDO2 key
100%
Description
JIRA ID¶
https://jira.suse.com/browse/SLE-20216
Description¶
[Unlocking LUKS2 volumes with TPM2, FIDO2, PKCS#11 Security Hardware on systemd 248|http://0pointer.net/blog/unlocking-luks2-volumes-with-tpm2-fido2-pkcs11-security-hardware-on-systemd-248.html]
The unlocking of full disk encryption devices via FIDO2 (notebooks) or TPM2 (Server, Edge) or often mentioned ideas in chats with customers and partners.
We should make this as easy as possible to setup and integrate it into our installer workflow and products.
Comments¶
So far, we don't have FIDO2 device, so will try to cover the tests with TPM2
Updated by rfan1 almost 3 years ago
- Copied from action #107059: [sle][security][sle15sp4]][manual]Unlocking LUKS volumes with TPM2 or FIDO2 key added
Updated by rfan1 almost 3 years ago
- Status changed from New to Blocked
- % Done changed from 0 to 20
Basic test done, but due to https://progress.opensuse.org/issues/107155, there are still some issue to pass the test.
http://openqa.suse.de/tests/8221759#step/unlock_luks2_vol_tpm2/8
Updated by rfan1 almost 3 years ago
- Related to action #107155: [tools][tw][sle][QEMUTPM][tpm2.0] swtpm devices need to be clear once test done added
Updated by rfan1 almost 3 years ago
- Status changed from Blocked to In Progress
- % Done changed from 20 to 80
The poo#107155 is fixed, so I can move on forward now
Updated by rfan1 almost 3 years ago
- Estimated time changed from 30.00 h to 50.00 h
Updated by rfan1 almost 3 years ago
- Status changed from In Progress to Feedback
- % Done changed from 80 to 90
Updated by rfan1 almost 3 years ago
- Copied to action #108470: [sle][security][backlog][TW][SLE][aarch64][automation]Unlocking LUKS volumes with TPM2 or FIDO2 key added
Updated by rfan1 almost 3 years ago
- Status changed from Feedback to Resolved
- % Done changed from 90 to 100