dnoliver

#!/bin/bash

# Dependencies
# tpm2-tools-4.0.1-1.fc31.x86_64
# tpm2-tss-2.3.1-1.fc31.x86_64
# tpm2-tss-engine-master

set -euxo pipefail

export TPM2TOOLS_TCTI="device:/dev/tpmrm0"

dnoliver

#include <stdio.h>
#include <stdlib.h>
#include <sys/types.h>
#include <sys/stat.h>
#include <fcntl.h>
#include <string.h>
#include <unistd.h>
#include "config.h"
#include "test.h"
#if HAVE_OPENSSL_SHA_H

dnoliver

LVM Encryption Examples

dnoliver

Intel SGX

• Intel Software Guard Extensions
• After Years Of Work With 40+ Revisions, Intel SGX Looks Like It Will Land In Linux 5.11

Documentation

• Intel® 64 and IA-32 Architectures Software Developer Manuals, Volume 3D.
• Intel SGX Developer Guide
• Intel SGX Developer Reference

dnoliver

Trusted Boot Stuff

Instructions on how to enable Tboot.

Discussion thread: Tboot on Intel NUC8i7HVK and Fedora 33

Check if Intel TXT is supported

dnf install -y cpuid

dnoliver

Keylime

Setup on Microsoft Hyper-V VM

To setup in Microsoft Hyper-V VM, follow this Github Comment.

Patches Required

tpm2_main.patch

dnoliver

version: "3.7"
services:
  node-red:
    image: nodered/node-red:latest
    environment:
      - TZ=America/Argentina
    ports:
      - "1880:1880"
    networks:
      - node-red-net

dnoliver

IMA Helper Scripts

dnoliver

Qt Download URL Sample

This sample have the code to download an image using http and https.

dnoliver

FROM fedora:latest

RUN dnf install -y tpm2-pkcs11 tpm2-pkcs11-tools tpm2-tools gnutls-utils openssl-pkcs11 nodejs

VOLUME /etc/tpm2_pkcs11
VOLUME /root/test

WORKDIR /root/test

CMD bash