| 18 Aug 2021 |
 Mic92 (Old) | https://github.com/NixOS/nixpkgs/pull/134577 | 05:30:59 |
 @grahamc:nixos.org | tpm2_unseal -c ${dev.tpm2KeyFile.persistentObject} -p ${dev.tpm2KeyFile.authString} > /crypt-ramfs/tpm/unsealed
| 14:47:23 |
| @grahamc:nixos.org | I'm thinking this should be starting an auth session (I think that is the right term) and using the session key for subsequent calls so that the channel with the TPM is all encrypted | 14:48:23 |
| @grahamc:nixos.org | is tpm2_startauthsession the command which does that? | 14:48:52 |
|  Roos joined the room. | 18:47:17 |
| 29 Aug 2021 |
|  vika (she/her) 🏳️⚧️ joined the room. | 09:45:57 |
| 31 Aug 2021 |
|  Florian | W3F changed their display name from Florian | W3F to Florian | W3F - OoO. | 08:11:03 |
| 2 Sep 2021 |
|  tnias joined the room. | 21:50:46 |
| 4 Sep 2021 |
|  [0x4A6F] joined the room. | 09:55:44 |
| 9 Sep 2021 |
|  tokudan joined the room. | 22:35:18 |
| 13 Sep 2021 |
| Florian | W3F changed their display name from Florian | W3F - OoO to Florian | W3F - OoO Mon/Tue. | 11:56:00 |
| 17 Sep 2021 |
|  cleverca22 joined the room. | 06:04:06 |
| 18 Sep 2021 |
|  Chinchilla Washington joined the room. | 20:51:53 |
| 20 Sep 2021 |
| Chinchilla Washington changed their display name from CornWallace to Rev. CornWallace III. | 06:45:31 |
| Chinchilla Washington changed their display name from Rev. CornWallace III to Rev. CornWallace III (tzu/tzi). | 15:22:30 |
| Chinchilla Washington changed their display name from Rev. CornWallace III (tzu/tzi) to Rev. CornWallace III (sun/tzu). | 15:24:51 |
| 21 Sep 2021 |
|  CRTified (old handle) joined the room. | 13:20:49 |
| 23 Sep 2021 |
| Mic92 (Old) | I always enjoy lennart's articles: http://0pointer.net/blog/authenticated-boot-and-disk-encryption-on-linux.html | 15:43:40 |
 colemickens | read that, came here to see what folks are doing in this space w/ nixos | 22:16:31 |
| colemickens | curious how much you're redo-ing the bootloader install process graham, I've been increasingly intererested in seeing cross-arch NixOS installs be easier. It seems like if they were written correctly, there could be a platform agnostic install script that would be runnable from any "build" platform. | 22:17:53 |
| colemickens | * curious how much you're redo-ing the bootloader install process Graham -- I've been increasingly interested in seeing cross-arch NixOS installs be easier. It seems like if they were written correctly, there could be a platform agnostic install script that would be runnable from any "build" platform. | 22:18:08 |
| 24 Sep 2021 |
| Chinchilla Washington changed their display name from Rev. CornWallace III (sun/tzu) to Rev. CornWallace III (novus ordo seclorum). | 01:00:50 |
| 1 Oct 2021 |
| colemickens | Leonnart's issues on the cryptsetup tracker are interesting, a bit tangential but somewhat related to this room: https://gitlab.com/cryptsetup/cryptsetup/-/issues/674 | 20:03:59 |
| colemickens | including the linked one about reusing LUKS ux for dm-integrity | 20:04:13 |
 andi- | just from reading the subject I want to know: But why opal? Wasn't that that stuff that was horribly broken in random drives? | 20:50:44 |
| 2 Oct 2021 |
| Mic92 (Old) | It was apparently hard to get right and most hardware vendor don't employ crypto specialists | 15:30:55 |
| 8 Oct 2021 |
| Florian | W3F changed their display name from Florian | W3F - OoO Mon/Tue to Florian | W3F. | 15:14:04 |
| 21 Oct 2021 |
|  Jan Tojnar joined the room. | 17:00:09 |
| 26 Oct 2021 |
| @grahamc:nixos.orgchanged room power levels. | 01:18:57 |
|  NixOS Moderation Bot changed their display name from mjolnir to NixOS Moderation Bot. | 02:00:09 |
