Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

sealtotp.sh doesn't require owner password? #151

Closed
osresearch opened this issue Apr 1, 2017 · 1 comment
Closed

sealtotp.sh doesn't require owner password? #151

osresearch opened this issue Apr 1, 2017 · 1 comment
Labels
enhancement
Milestone
measuredboot

Comments

@osresearch
Copy link
Collaborator

osresearch commented Apr 1, 2017
edited

I'm not sure if the owner password is required on re-generating a TOTP token -- it might only be necessary for the first time to create the NVRAM space, so that die could be a warn.
@osresearch osresearch added this to the measuredboot milestone Apr 1, 2017
@osresearch
Copy link
Collaborator Author

Neither does seal-key, unless the NV space hasn't been setup yet. Perhaps we can probe it?

osresearch added a commit that referenced this issue Apr 12, 2017
@osresearch
import the seal/unseal totp scripts since they are very specialized t…
7a9ab72 
…o the heads install, skip owner password if not required (issue #151)
osresearch added a commit that referenced this issue Apr 12, 2017
@osresearch
try creating NVRAM entry before prompting for owner password (issue #151
6a73420 
)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement
Projects
None yet
Milestone
measuredboot
Development

No branches or pull requests
1 participant
@osresearch