| 11 Aug 2021 |
 Mic92 | So would need an activation phase that signs all keys afterwards? | 16:10:35 |
| 13 Aug 2021 |
 @grahamc:nixos.org | the work I'm doing around secureboot support is based on a more involved bootloader "install" step which could support signing modules | 19:47:39 |
| 18 Aug 2021 |
| Mic92 | https://github.com/NixOS/nixpkgs/pull/134577 | 05:30:59 |
| @grahamc:nixos.org | tpm2_unseal -c ${dev.tpm2KeyFile.persistentObject} -p ${dev.tpm2KeyFile.authString} > /crypt-ramfs/tpm/unsealed
| 14:47:23 |
| @grahamc:nixos.org | I'm thinking this should be starting an auth session (I think that is the right term) and using the session key for subsequent calls so that the channel with the TPM is all encrypted | 14:48:23 |
| @grahamc:nixos.org | is tpm2_startauthsession the command which does that? | 14:48:52 |
|  Roos joined the room. | 18:47:17 |
| 29 Aug 2021 |
|  vika (she/her) 🏳️⚧️ joined the room. | 09:45:57 |
| 31 Aug 2021 |
|  Florian | W3F changed their display name from Florian | W3F to Florian | W3F - OoO. | 08:11:03 |
| 2 Sep 2021 |
|  tnias joined the room. | 21:50:46 |
| 4 Sep 2021 |
|  [0x4A6F] joined the room. | 09:55:44 |
| 9 Sep 2021 |
|  sugi joined the room. | 22:35:18 |
| 13 Sep 2021 |
| Florian | W3F changed their display name from Florian | W3F - OoO to Florian | W3F - OoO Mon/Tue. | 11:56:00 |
