rust-keylime
rust-keylime copied to clipboard
keylime
Rust implementation of the keylime agent
Otherwise the agent will fail starting up on new systems without the keylime user.
Distro: F39 Arch: x86_64 Version: current upstream [2ca4b08](https://github.com/keylime/rust-keylime/commit/2ca4b081f6d2b0c8349e0fe637d112d3b4e19f84) IPv6 related test are failing in the keylime-tests project. https://artifacts.dev.testing-farm.io/7a7a50d9-4b3f-49cd-8f94-b5b7f982df0e/ Agent fails to start with ``` DEBUG keylime_agent > Generating new key...
It seems that this just silently not loads the certificate: https://github.com/keylime/rust-keylime/blob/2f7b3ada02382eef95d718eafa934ce753a51380/keylime/src/crypto.rs#L783-L790
We should establish a code of conduct for the project/repo. Should we adopt the same code of conduct from the keylime/keylime repo [1]? [1] https://github.com/keylime/keylime/blob/master/CODE_OF_CONDUCT.md
We should create a well defined, step-by-step process on how to deal with security issues. A good example from a project I contributed to is from libssh: https://www.libssh.org/development/security-process/
# Environment * OS / version: fedora35 * Processor architecture: x86_64 * TPM Manufacturer: swtpm * Keylime version: keylime-upstream-version # Description When I use different encryption and signing algorithm in...
Currently, the agent does not retry registering with the registrar in case of failure. This is about implementing the registration retry with exponential backoff. The idea is that the agent...
The rust agent does not support the `dmidecode` nor the `hostname` keywords for the `uuid` option.
Remove the deprecated notification via zmq. The goal is to remove deprecated functionality before the next major release.